Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/nS3HJQFCcJCliyhf1G44SpbZLdc.roa
File: nS3HJQFCcJCliyhf1G44SpbZLdc.roa (raw, json)
Hash identifier: G1dkFQMkZwcnS3Hx0tkxvxaFRDKpgskrluy+Y9ft8vQ=
Subject key identifier: 9D:2D:C7:25:01:42:70:90:A5:8B:28:5F:D4:6E:38:4A:96:D9:2D:D7
Certificate issuer: /CN=2663f3db152e055ac145bdbb429e018654204c8d
Certificate serial: 50E75EED
Authority key identifier: 26:63:F3:DB:15:2E:05:5A:C1:45:BD:BB:42:9E:01:86:54:20:4C:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JmPz2xUuBVrBRb27Qp4BhlQgTI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/nS3HJQFCcJCliyhf1G44SpbZLdc.roa
Signing time: Sat 01 Jan 2022 16:01:59 +0000
ROA not before: Sat 01 Jan 2022 16:01:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205492
IP address blocks: 194.209.80.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1357340397 (0x50e75eed)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2663f3db152e055ac145bdbb429e018654204c8d
Validity
Not Before: Jan 1 16:01:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9d2dc72501427090a58b285fd46e384a96d92dd7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:bd:7a:ff:41:11:7b:e0:f2:cf:be:91:01:6c:
47:17:ca:b1:37:76:66:63:76:e6:16:92:5c:08:52:
75:9d:3b:87:e9:b8:13:8b:a9:e0:e5:9b:47:87:22:
9a:56:56:27:d8:98:a5:c0:61:0c:70:a1:6d:08:a6:
e8:75:9e:4d:67:7d:50:06:50:eb:d0:eb:d6:5e:6b:
fd:f4:de:bb:fd:27:e7:b4:8b:b3:b9:6c:68:61:66:
2e:ef:1e:4b:06:39:68:5c:f2:f0:dc:83:ae:4c:8f:
35:5d:55:c2:88:b9:51:44:f0:12:01:57:f9:3c:fd:
c0:f3:aa:b6:24:c7:93:8b:f1:8b:76:e9:14:b0:bd:
8a:45:2f:67:a1:3d:b5:70:a1:59:97:9d:59:0b:4c:
c5:43:a4:49:e2:51:14:69:b9:f9:06:8e:87:9b:e1:
76:9f:2a:d5:a6:a8:37:61:cf:aa:34:bc:a8:8e:4a:
b6:00:ed:f4:46:51:fd:41:e4:5e:e2:e8:f7:43:f2:
36:16:82:70:6b:d6:84:de:e3:46:97:68:09:3b:77:
32:c7:b4:e3:79:e4:4e:97:24:b6:7f:3d:f7:30:52:
92:fc:a8:80:1a:15:8b:70:a1:cd:71:ac:07:8e:13:
3a:c8:1b:62:cd:04:f9:6b:65:f0:16:28:a3:96:5d:
b9:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:2D:C7:25:01:42:70:90:A5:8B:28:5F:D4:6E:38:4A:96:D9:2D:D7
X509v3 Authority Key Identifier:
keyid:26:63:F3:DB:15:2E:05:5A:C1:45:BD:BB:42:9E:01:86:54:20:4C:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JmPz2xUuBVrBRb27Qp4BhlQgTI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/nS3HJQFCcJCliyhf1G44SpbZLdc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/JmPz2xUuBVrBRb27Qp4BhlQgTI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.209.80.0/24
Signature Algorithm: sha256WithRSAEncryption
68:93:96:7d:b5:3d:24:b4:08:9e:c8:2a:5d:30:fd:6e:02:75:
d4:f6:91:dc:23:60:79:2b:e2:fe:57:f8:75:99:29:24:05:71:
fa:c6:39:39:a1:51:0a:41:a6:ac:72:fe:14:98:2c:21:d8:f8:
d5:d6:f4:5f:58:dc:11:e8:af:49:64:86:87:a5:61:c8:e1:87:
75:f9:04:26:9a:09:a9:65:f2:ae:91:3e:a7:eb:c2:1b:2c:1a:
dd:04:3e:a3:9e:71:be:2c:50:48:01:ec:e1:c0:99:76:3c:d8:
fd:63:6c:0b:94:ab:3d:9a:19:62:ed:4b:bb:67:cb:12:8e:39:
a5:62:a6:c7:71:ee:78:2a:d2:d5:dd:3c:f3:88:1f:ce:24:7e:
a6:07:f8:77:26:3d:64:1f:0f:a2:94:4a:06:7f:e6:1c:57:b4:
83:ea:40:c4:e2:c8:7a:36:38:3f:fa:86:8d:06:4c:67:42:1c:
4a:ce:21:2b:15:15:7f:0a:2c:21:c2:61:4e:2f:18:7c:e6:ae:
ff:1a:a2:62:45:4a:2c:67:51:ba:df:2e:22:fe:b7:c4:30:7a:
3f:88:f2:34:d0:f4:ab:49:a0:86:35:11:ea:c8:3b:28:90:5e:
9f:70:6c:8e:cb:1d:0f:f6:60:96:67:c4:2c:72:fe:5a:4a:6c:
e2:bb:c5:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 12:32:28 2025 by rpki-client