Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/323ec7-582d-4c12-b723-297c4b33d541/1/Pd_VEVZ-28vGVEFvbjzCqzxlWZ4.roa
File: Pd_VEVZ-28vGVEFvbjzCqzxlWZ4.roa (raw, json)
Hash identifier: 4XGSOhq1ZpZi8reYrSl/IhFh4+g+99GhX8JtBuJ7VsQ=
Subject key identifier: 3D:DF:D5:11:56:7E:DB:CB:C6:54:41:6F:6E:3C:C2:AB:3C:65:59:9E
Certificate issuer: /CN=d305f8c033cc4c096c3953585c2689c9a75d3f18
Certificate serial: 13F1D30F
Authority key identifier: D3:05:F8:C0:33:CC:4C:09:6C:39:53:58:5C:26:89:C9:A7:5D:3F:18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0wX4wDPMTAlsOVNYXCaJyaddPxg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/323ec7-582d-4c12-b723-297c4b33d541/1/Pd_VEVZ-28vGVEFvbjzCqzxlWZ4.roa
Signing time: Sat 01 Jan 2022 13:01:51 +0000
ROA not before: Sat 01 Jan 2022 13:01:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201094
IP address blocks: 194.9.70.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 334615311 (0x13f1d30f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d305f8c033cc4c096c3953585c2689c9a75d3f18
Validity
Not Before: Jan 1 13:01:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3ddfd511567edbcbc654416f6e3cc2ab3c65599e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:c5:1c:b6:3a:cb:b6:b3:b7:1f:31:f4:e3:97:
ed:19:8c:4d:a9:1e:c4:89:f7:f3:b0:4b:c3:67:4b:
46:27:5e:8f:05:08:75:ce:fa:82:f9:74:62:ec:64:
38:e3:f0:00:13:a6:84:5b:8b:be:26:e0:d1:02:97:
c7:3b:76:a8:e8:78:ba:6d:47:80:e6:41:fa:fc:f7:
41:55:df:1e:6c:9b:96:3c:87:fe:0b:26:bb:d8:53:
18:22:58:31:fe:d4:83:a5:a6:b6:cb:7c:f8:ce:09:
50:b3:43:f1:2f:c0:79:d6:5a:ec:8e:b0:4b:f1:a2:
29:57:86:8d:6b:51:91:29:0c:36:a1:09:31:3a:ce:
32:72:5c:fc:7d:c8:85:8f:2b:c5:e1:7e:0c:79:3b:
09:63:13:a4:c1:e5:50:56:0c:57:23:ff:85:98:25:
d7:91:f9:08:f4:31:d7:58:11:30:b0:b6:54:93:9e:
2a:2d:0c:87:f7:a7:bd:11:99:47:55:b3:0a:42:39:
63:34:b5:13:8f:a7:6f:d7:cc:2a:59:e8:55:d1:49:
40:98:59:b5:ba:30:1a:28:7b:1e:33:15:4e:e0:c3:
85:30:ad:24:7b:01:bf:34:7f:e6:3a:44:e2:48:e9:
df:e0:a8:87:4e:7f:8c:39:a1:95:f2:c0:4e:fe:24:
21:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:DF:D5:11:56:7E:DB:CB:C6:54:41:6F:6E:3C:C2:AB:3C:65:59:9E
X509v3 Authority Key Identifier:
keyid:D3:05:F8:C0:33:CC:4C:09:6C:39:53:58:5C:26:89:C9:A7:5D:3F:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0wX4wDPMTAlsOVNYXCaJyaddPxg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/323ec7-582d-4c12-b723-297c4b33d541/1/Pd_VEVZ-28vGVEFvbjzCqzxlWZ4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/323ec7-582d-4c12-b723-297c4b33d541/1/0wX4wDPMTAlsOVNYXCaJyaddPxg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.9.70.0/23
Signature Algorithm: sha256WithRSAEncryption
25:33:bd:91:fb:3a:bc:eb:05:8f:da:65:8e:09:86:47:ac:50:
27:f9:7e:cb:d9:a4:0a:4b:d1:53:d2:81:72:be:6b:4c:79:c4:
2e:6a:0d:94:99:32:69:3e:19:87:e2:2a:57:9c:6a:f6:e3:ff:
08:61:22:bc:fe:20:60:7d:3a:72:75:e6:2a:2b:44:05:68:78:
7f:d2:6e:fa:ff:86:9f:dd:81:5e:96:52:30:26:d5:4f:fe:f4:
15:2f:aa:0f:82:37:21:83:89:e9:bb:17:f3:9d:7f:77:f4:c0:
18:17:e5:4d:b3:5b:97:60:f8:49:0c:0d:71:06:e5:df:9f:e3:
e5:b3:fe:1a:ff:f5:03:19:29:7f:cc:87:ba:80:f1:69:75:9e:
8a:cf:1d:53:a6:da:19:e1:c1:f7:97:ae:70:b8:0e:ef:46:e4:
44:59:89:53:8a:4f:07:71:d3:66:e3:38:2f:d2:7b:95:79:4e:
29:2c:d1:e4:ac:78:05:73:be:d5:ec:6f:2b:0f:bf:ac:59:d2:
81:6f:06:da:56:63:67:cf:8c:cb:be:81:c5:d2:33:0e:8f:fd:
20:95:ae:2d:48:99:de:09:c2:ba:75:75:04:0b:61:8f:f6:c3:
b0:3b:af:56:ea:42:16:5c:f4:4b:c7:56:46:a3:8f:c1:4a:29:
c7:bd:64:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 15:22:53 2025 by rpki-client