Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/qTDw9qEq4kdb9iYCVqUAtyIb9YE.roa
File: qTDw9qEq4kdb9iYCVqUAtyIb9YE.roa (raw, json)
Hash identifier: /6ttU1Y0T3Jw6JQ+/VADNIgQ65ArdeWuY9F0LXznTLs=
Subject key identifier: A9:30:F0:F6:A1:2A:E2:47:5B:F6:26:02:56:A5:00:B7:22:1B:F5:81
Certificate issuer: /CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Certificate serial: 019494122D96A5DDE5BDFABAB111897976EC
Authority key identifier: D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/qTDw9qEq4kdb9iYCVqUAtyIb9YE.roa
Signing time: Thu 23 Jan 2025 16:50:06 +0000
ROA not before: Thu 23 Jan 2025 16:50:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 43991
IP address blocks: 194.26.135.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:94:12:2d:96:a5:dd:e5:bd:fa:ba:b1:11:89:79:76:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Validity
Not Before: Jan 23 16:50:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=a930f0f6a12ae2475bf6260256a500b7221bf581
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:24:22:4e:b5:d5:f0:76:9a:54:f3:cf:52:53:
ab:79:73:a7:f8:cb:9c:60:fd:03:35:62:2b:92:06:
b8:e8:eb:63:a3:42:0a:5d:ac:3b:2b:8e:8d:21:35:
76:4d:23:8c:d0:1e:f8:32:a0:5d:6f:51:26:ba:9c:
0d:20:fb:0d:3b:c4:1f:0e:70:23:0f:18:d0:66:f7:
2b:95:80:13:f2:d3:88:49:fa:46:db:08:bb:0c:b5:
8e:c9:f3:33:69:d5:fa:13:7c:24:8c:4b:12:1b:34:
e5:5a:af:8e:cb:a0:e8:bc:33:79:28:c8:68:36:72:
d1:2c:47:b6:58:cd:2d:a3:c1:7e:be:e9:8d:35:93:
fa:9e:ad:78:31:ab:28:b0:c1:4b:a1:96:c0:75:24:
90:bb:08:d0:af:a8:27:67:fe:e5:1b:d2:13:97:3e:
a8:d5:b4:ca:c6:66:38:76:3c:df:20:e8:08:23:24:
39:78:4b:dd:78:0e:e0:43:86:34:5b:fe:0b:1a:36:
6a:1a:20:dc:5c:8b:20:a8:f0:cf:6f:5b:66:af:d7:
80:74:8e:65:33:94:97:fa:6d:0a:69:5c:2f:26:99:
ce:95:64:25:fd:03:1c:27:e8:33:48:32:c3:ae:d3:
f2:96:18:3b:07:0d:f5:ed:57:1b:fd:a1:1e:7e:1c:
2c:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:30:F0:F6:A1:2A:E2:47:5B:F6:26:02:56:A5:00:B7:22:1B:F5:81
X509v3 Authority Key Identifier:
keyid:D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/qTDw9qEq4kdb9iYCVqUAtyIb9YE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/12u0jpPooAWMXHKoGoeZRVMH7lY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.26.135.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:e7:c8:8b:dc:fe:34:59:09:31:20:6f:f4:71:b7:43:b0:5b:
46:af:51:4c:ab:8b:e9:b9:99:4b:7a:c7:f9:51:f6:64:90:e7:
d7:99:ed:2d:d0:e3:fc:31:7e:f9:e6:cd:37:b6:6f:e5:02:da:
ab:70:f8:32:7b:94:de:cd:28:2a:c1:20:33:6f:75:7d:e9:55:
49:db:58:ee:f4:a9:5d:27:25:3e:a2:57:f2:da:83:b5:46:14:
93:ba:15:b0:90:06:7e:1b:3a:ed:88:b7:91:7c:d4:4e:c6:4d:
22:f8:18:52:12:14:6e:ce:19:11:9e:6a:79:25:7b:c9:46:63:
e2:32:e1:4b:b7:bf:72:ec:34:56:96:c6:b0:14:20:22:36:20:
e3:a7:69:57:06:4c:5d:28:30:92:8a:f9:a1:15:da:1e:1e:50:
4c:b4:9c:66:3c:e7:dc:28:6b:d5:e8:5f:80:3f:63:e6:07:d8:
b1:04:90:d7:f9:31:92:3f:61:d0:9f:3b:8d:9c:b0:9a:7c:a7:
ef:38:ee:d7:1b:45:93:4c:fa:47:71:fa:94:df:ad:1f:50:ea:
f2:4d:de:94:ef:bd:f9:80:28:f9:cb:c1:73:36:a4:d5:81:b8:
88:33:96:81:6e:05:0e:e7:03:35:9e:55:ba:d8:75:12:03:20:
66:31:11:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 17:37:55 2025 by rpki-client