Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/Al2CJ-hFhvhuWEtIzZImb5wPqoE.roa
File: Al2CJ-hFhvhuWEtIzZImb5wPqoE.roa (raw, json)
Hash identifier: JfweM1MnWIdlm+tgCPvMzrYBE+YTTb8JHr9Agsw8o6g=
Subject key identifier: 02:5D:82:27:E8:45:86:F8:6E:58:4B:48:CD:92:26:6F:9C:0F:AA:81
Certificate issuer: /CN=279dbfdf4c20bdae8d6118566ece76444e46d171
Certificate serial: 0194228D8B39BF6BCDCC1EFB0CCDA28DA7F6
Authority key identifier: 27:9D:BF:DF:4C:20:BD:AE:8D:61:18:56:6E:CE:76:44:4E:46:D1:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J52_30wgva6NYRhWbs52RE5G0XE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/Al2CJ-hFhvhuWEtIzZImb5wPqoE.roa
Signing time: Wed 01 Jan 2025 15:48:09 +0000
ROA not before: Wed 01 Jan 2025 15:48:09 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 3291
IP address blocks: 194.158.26.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:8d:8b:39:bf:6b:cd:cc:1e:fb:0c:cd:a2:8d:a7:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=279dbfdf4c20bdae8d6118566ece76444e46d171
Validity
Not Before: Jan 1 15:48:09 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=025d8227e84586f86e584b48cd92266f9c0faa81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:bb:42:17:2c:37:28:89:5d:51:7f:ce:39:d6:
f4:14:2c:f5:55:e5:b6:0a:8a:99:42:c8:81:39:fc:
22:5b:5b:82:b1:ab:d0:ae:55:3a:ee:a7:e6:4c:d1:
4f:b5:a4:84:c1:7d:3b:f4:29:5a:f8:d8:0e:f7:38:
08:45:ab:db:be:19:41:f2:9b:79:56:05:c0:45:2e:
86:88:1d:92:bc:77:4e:05:0f:8b:f2:4e:ed:86:b0:
9c:36:2e:75:4e:a1:b3:eb:d2:d9:66:68:e6:d1:8e:
d6:ae:71:42:7d:84:ab:fe:09:e9:37:1c:1a:8e:66:
80:ca:b3:03:97:07:3f:f5:2a:7f:2a:72:9b:a7:04:
47:14:16:89:c5:be:25:30:41:da:2d:f2:b1:c8:a3:
3f:ba:01:2d:bb:7c:ac:95:c7:b8:9d:31:36:09:19:
98:6d:fe:62:5b:f7:9f:5b:10:e5:5c:cf:2f:99:08:
27:10:df:f3:51:40:17:ed:49:25:1e:32:27:44:8f:
79:34:b0:70:dc:09:20:9e:4f:60:2c:d3:18:6d:ae:
9b:87:86:3c:ec:c3:ce:b5:14:8e:e2:e1:61:08:13:
71:02:96:e3:d7:c9:cb:b2:91:cd:9e:72:1c:9a:1a:
c2:09:69:20:fc:0c:5b:64:d6:7b:78:03:21:66:b7:
ad:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:5D:82:27:E8:45:86:F8:6E:58:4B:48:CD:92:26:6F:9C:0F:AA:81
X509v3 Authority Key Identifier:
keyid:27:9D:BF:DF:4C:20:BD:AE:8D:61:18:56:6E:CE:76:44:4E:46:D1:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J52_30wgva6NYRhWbs52RE5G0XE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/Al2CJ-hFhvhuWEtIzZImb5wPqoE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/J52_30wgva6NYRhWbs52RE5G0XE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.158.26.0/24
Signature Algorithm: sha256WithRSAEncryption
d5:b4:4d:e3:46:12:08:dd:21:db:d4:bf:50:25:ed:f6:61:45:
2b:7c:e2:d3:00:2d:b0:8c:94:c0:a3:a9:66:02:8d:48:f3:73:
71:37:7e:f1:dc:34:ae:f5:fa:8f:ee:03:88:a4:be:19:17:cf:
2d:02:cd:55:5d:41:1d:1a:42:db:f6:5e:f1:e8:81:83:7a:19:
da:1c:87:6b:ef:1d:33:dd:da:a6:87:a0:34:28:b7:17:54:cc:
48:82:6a:56:cd:4c:b8:88:d3:83:7c:ff:e5:0b:39:1f:5b:15:
da:ff:8c:21:b1:7c:c0:d8:db:9a:1d:82:06:3c:c2:48:54:0a:
85:43:ab:80:12:81:dd:e1:00:4e:10:00:bf:05:7b:4e:85:33:
ee:b3:61:c4:b1:ad:9f:9f:e9:c5:bc:eb:e0:92:1d:bc:40:ea:
bb:be:c5:88:1d:f1:6f:ef:8d:59:9d:3e:80:ca:57:a6:cd:d8:
d6:44:e5:3b:64:96:76:3a:95:c8:94:b7:c6:0e:8d:67:50:ff:
c3:16:e2:81:9b:50:f6:73:e7:c8:aa:f1:e4:df:45:aa:3a:92:
e5:67:a1:22:65:f7:73:6e:9c:59:78:17:cb:ff:5e:8c:b0:7f:
43:18:fd:65:6b:46:31:a6:7b:71:56:d2:90:47:3b:57:03:ce:
15:56:56:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:25:31 2025 by rpki-client