Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/4530a1-3fd0-4d04-bd95-a4647ad97ea3/1/Oz37Q-DjHdQeb4zo4haKbZAP7Vg.roa
File: Oz37Q-DjHdQeb4zo4haKbZAP7Vg.roa (raw, json)
Hash identifier: RceXMK6hlNRm9Eg3015KGWYmjK1NCmH8COEQ8jCQbyo=
Subject key identifier: 3B:3D:FB:43:E0:E3:1D:D4:1E:6F:8C:E8:E2:16:8A:6D:90:0F:ED:58
Certificate issuer: /CN=aaabc8e1e31f149029f9a255b1a446c92c922f5e
Certificate serial: 018774489CFD4327A8A26B896B326CFDEAE1
Authority key identifier: AA:AB:C8:E1:E3:1F:14:90:29:F9:A2:55:B1:A4:46:C9:2C:92:2F:5E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qqvI4eMfFJAp-aJVsaRGySySL14.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/4530a1-3fd0-4d04-bd95-a4647ad97ea3/1/Oz37Q-DjHdQeb4zo4haKbZAP7Vg.roa
Signing time: Wed 12 Apr 2023 07:05:28 +0000
ROA not before: Wed 12 Apr 2023 07:05:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211415
IP address blocks: 194.104.234.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:74:48:9c:fd:43:27:a8:a2:6b:89:6b:32:6c:fd:ea:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aaabc8e1e31f149029f9a255b1a446c92c922f5e
Validity
Not Before: Apr 12 07:05:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3b3dfb43e0e31dd41e6f8ce8e2168a6d900fed58
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:0c:40:e3:97:2c:49:3d:8e:9f:89:e5:f2:7e:
77:a1:16:78:f0:71:79:96:15:f0:a7:aa:6a:40:eb:
3f:d3:fe:bb:cc:c8:58:ba:91:26:4c:d7:3e:ae:85:
f8:c9:ab:23:41:1e:8b:3d:23:a9:75:68:f2:b7:d7:
97:8b:47:2b:cb:ad:8c:61:09:6a:82:ca:40:c7:ac:
3a:5f:f5:8a:88:9a:66:57:00:62:73:02:15:6b:b6:
fe:26:b5:84:2b:a5:9a:d0:04:d0:46:16:ad:da:12:
d3:0e:7f:c9:ba:28:54:03:a1:7d:47:9e:52:a7:9c:
03:9b:89:fc:68:29:5e:5e:bb:80:58:d7:3e:a3:7b:
73:01:61:ac:6b:3a:48:fc:f6:9c:a0:5a:7f:27:60:
64:c8:d0:50:ca:19:11:30:97:3a:d4:42:d5:8d:b4:
45:78:51:c0:c1:97:bf:8e:e0:2d:e7:b5:e3:85:6a:
8c:12:5c:f4:a5:bd:60:3d:a9:8a:be:2d:77:4d:57:
fe:5c:a6:c8:3c:cf:b2:5f:b3:46:76:c8:e3:4d:94:
1a:24:f8:08:92:df:a4:d6:72:92:12:7a:96:05:6c:
d7:d6:3b:ba:41:53:98:27:62:20:5b:f2:0c:31:94:
7c:c4:3f:d1:c9:a5:df:c0:25:ef:d9:a4:21:fd:70:
9c:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:3D:FB:43:E0:E3:1D:D4:1E:6F:8C:E8:E2:16:8A:6D:90:0F:ED:58
X509v3 Authority Key Identifier:
keyid:AA:AB:C8:E1:E3:1F:14:90:29:F9:A2:55:B1:A4:46:C9:2C:92:2F:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qqvI4eMfFJAp-aJVsaRGySySL14.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/4530a1-3fd0-4d04-bd95-a4647ad97ea3/1/Oz37Q-DjHdQeb4zo4haKbZAP7Vg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/4530a1-3fd0-4d04-bd95-a4647ad97ea3/1/qqvI4eMfFJAp-aJVsaRGySySL14.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.104.234.0/24
Signature Algorithm: sha256WithRSAEncryption
25:0e:2a:1f:8f:92:6f:9c:45:10:aa:04:cf:96:18:62:c5:cf:
01:7a:90:9c:3a:17:dd:ea:8a:7f:d9:50:71:2c:22:7c:df:a5:
b1:f6:f7:a7:c6:a2:b9:1e:75:d7:91:4c:b7:88:4d:5f:0b:19:
42:a3:50:69:7a:41:6f:b6:54:34:4b:5d:d3:4a:64:ad:8e:b7:
7b:ac:49:9b:c1:a6:80:78:38:87:6c:14:ec:41:41:9f:e3:ed:
1a:b1:f5:b0:2b:a2:d6:4f:89:58:27:5c:60:ca:5a:b2:41:5d:
11:54:2b:d3:22:c8:ee:2d:15:9b:38:16:fa:7b:c6:72:15:6f:
45:e2:d4:f4:1b:0b:f3:4c:b9:89:12:78:5d:3e:9f:14:0b:7b:
cf:23:87:c3:2e:13:51:59:93:0d:37:de:f7:13:fd:d0:58:e7:
e5:9d:10:92:db:5e:a4:66:ce:df:56:82:6c:3b:e9:e1:82:c8:
cb:16:fb:15:89:1e:18:b3:ea:ab:63:c3:c1:73:a5:db:16:98:
6a:99:95:06:b5:15:98:5b:f0:bd:3d:85:5d:c1:2f:c7:3c:ec:
2b:71:a1:3a:ea:d1:72:b4:2f:bf:d3:29:4a:b4:a6:fd:ed:e8:
55:bf:b6:d9:b7:2f:be:6c:92:2e:36:b7:c5:d6:e6:09:87:2a:
59:26:85:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:56:01 2025 by rpki-client