Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/ac9c32-7dbc-4d6c-bc08-5d584fbc5d27/1/oWrtd0aFvC95N4Z6gxyZZ1SWrJs.roa
File: oWrtd0aFvC95N4Z6gxyZZ1SWrJs.roa (raw, json)
Hash identifier: AlvH9oYmiwAzp0Z4dOdOt5RLv8lOGK9l5kvoT65TGlA=
Subject key identifier: A1:6A:ED:77:46:85:BC:2F:79:37:86:7A:83:1C:99:67:54:96:AC:9B
Certificate issuer: /CN=ba9d30e6035be8b8386061f271481c707e04ce2b
Certificate serial: 0194228E0CBD72FA9B103B468382435362F3
Authority key identifier: BA:9D:30:E6:03:5B:E8:B8:38:60:61:F2:71:48:1C:70:7E:04:CE:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/up0w5gNb6Lg4YGHycUgccH4Ezis.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/ac9c32-7dbc-4d6c-bc08-5d584fbc5d27/1/oWrtd0aFvC95N4Z6gxyZZ1SWrJs.roa
Signing time: Wed 01 Jan 2025 15:48:42 +0000
ROA not before: Wed 01 Jan 2025 15:48:42 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 60027
IP address blocks: 195.214.154.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:8e:0c:bd:72:fa:9b:10:3b:46:83:82:43:53:62:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba9d30e6035be8b8386061f271481c707e04ce2b
Validity
Not Before: Jan 1 15:48:42 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=a16aed774685bc2f7937867a831c99675496ac9b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:95:22:70:3f:18:96:2d:8e:ff:40:42:1d:3b:
9d:b1:eb:4c:65:8c:9a:d3:17:4d:99:cf:bf:97:c8:
12:e0:00:30:c7:85:d5:13:a3:48:01:e4:97:40:8c:
06:7a:55:b3:4d:33:df:68:c9:04:b0:2f:1c:ff:82:
f3:6b:2e:49:ba:8d:60:5f:d6:54:59:66:e2:59:cc:
df:9f:fa:90:4d:24:2f:f1:94:7d:34:77:d5:01:6e:
fa:14:f0:59:fa:ab:6f:37:3b:32:d2:1c:84:2b:af:
5e:a0:eb:2c:87:86:ad:74:b2:9d:73:60:4e:95:45:
2c:89:ec:e3:13:8c:b2:e1:bb:c6:37:7b:75:87:ee:
e8:1d:72:3f:ac:86:5d:98:21:fc:86:47:40:ae:0c:
3f:ae:e9:10:87:42:c5:f7:59:9e:e5:7d:55:bb:4c:
c1:c0:24:68:ae:8b:d7:97:2b:4a:fa:b0:63:7c:c9:
83:98:56:2a:d0:72:43:ad:9e:68:3d:32:3a:d5:8d:
4c:f2:f2:2e:10:bb:35:cc:31:bb:37:3c:74:6e:2c:
7a:28:03:56:10:19:55:b4:f9:d4:3e:d2:5f:a6:92:
ec:41:77:ac:ed:30:15:4f:f6:ba:5f:a8:09:14:11:
ca:74:49:51:e3:02:a3:46:8d:27:94:14:cb:8f:26:
d3:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:6A:ED:77:46:85:BC:2F:79:37:86:7A:83:1C:99:67:54:96:AC:9B
X509v3 Authority Key Identifier:
keyid:BA:9D:30:E6:03:5B:E8:B8:38:60:61:F2:71:48:1C:70:7E:04:CE:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/up0w5gNb6Lg4YGHycUgccH4Ezis.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ac9c32-7dbc-4d6c-bc08-5d584fbc5d27/1/oWrtd0aFvC95N4Z6gxyZZ1SWrJs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ac9c32-7dbc-4d6c-bc08-5d584fbc5d27/1/up0w5gNb6Lg4YGHycUgccH4Ezis.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.214.154.0/24
Signature Algorithm: sha256WithRSAEncryption
ac:ea:c6:a1:41:f3:e6:60:64:79:b6:2c:82:b2:fb:87:ef:24:
06:42:3b:18:0e:76:20:e4:7a:16:97:83:14:68:7a:4b:d6:9e:
ef:bc:37:c9:23:c2:a8:33:7e:cc:d5:c8:d9:9b:a7:c2:b0:86:
a0:80:05:60:58:2f:50:13:70:eb:be:61:8b:fa:ab:ca:8d:99:
a9:bc:4f:88:58:93:25:e9:1e:15:47:0b:4a:87:6f:e7:bf:b4:
c6:53:18:86:ef:81:b9:ce:ba:7e:36:ff:4e:9b:1b:2d:d5:00:
ec:b6:37:e2:ca:25:46:a6:b7:b6:c6:a5:d3:8e:c1:e5:87:cf:
cc:a8:29:8a:76:04:14:b0:1f:36:32:cd:a7:3e:d9:33:49:3d:
2c:e4:c9:cc:ee:42:b3:66:8e:d9:42:b0:a4:89:d1:b8:3e:c5:
ea:a0:cd:14:44:00:c2:04:84:20:da:ff:0e:30:f0:15:92:19:
d1:66:18:df:17:26:d0:db:d3:a8:04:ca:ab:11:60:6e:2c:b8:
2e:13:93:04:7e:98:90:00:7b:44:22:17:5c:e4:cc:7b:b4:21:
4a:64:b7:ac:c4:7c:5f:4d:38:4a:e5:10:19:93:82:34:28:7c:
36:d5:47:36:71:8e:ce:e1:b9:e2:6d:64:9b:29:13:cd:6a:58:
b1:d5:83:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 12:43:43 2025 by rpki-client