Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/4448a7-1ac1-46ad-a727-d96393af2f20/1/e99v7pEfrFm4Dg1SnIaNO39I8Ws.roa
File: e99v7pEfrFm4Dg1SnIaNO39I8Ws.roa (raw, json)
Hash identifier: GWy1k4OaIi0pC/Ap0hgLnIy0Gp664zirmOTGWdfBTaE=
Subject key identifier: 7B:DF:6F:EE:91:1F:AC:59:B8:0E:0D:52:9C:86:8D:3B:7F:48:F1:6B
Certificate issuer: /CN=4c6b6371b945a35e9df308ff43803e2617851069
Certificate serial: 0194221FD6CF103DA40729F7B45A036AB8AA
Authority key identifier: 4C:6B:63:71:B9:45:A3:5E:9D:F3:08:FF:43:80:3E:26:17:85:10:69
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TGtjcblFo16d8wj_Q4A-JheFEGk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/4448a7-1ac1-46ad-a727-d96393af2f20/1/e99v7pEfrFm4Dg1SnIaNO39I8Ws.roa
Signing time: Wed 01 Jan 2025 13:48:19 +0000
ROA not before: Wed 01 Jan 2025 13:48:19 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 58282
IP address blocks: 195.231.224.0/19 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:1f:d6:cf:10:3d:a4:07:29:f7:b4:5a:03:6a:b8:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4c6b6371b945a35e9df308ff43803e2617851069
Validity
Not Before: Jan 1 13:48:19 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=7bdf6fee911fac59b80e0d529c868d3b7f48f16b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:1c:d8:5d:ae:51:cf:98:dc:09:2b:d8:af:50:
19:16:ea:5e:9f:6a:fb:85:f5:0c:ab:9b:80:ff:72:
f7:b1:40:72:d9:07:6b:56:c1:18:72:b0:f3:8f:ef:
a6:77:98:75:a5:ce:22:ef:cb:e6:6e:c6:0e:d8:12:
2a:3d:eb:31:ee:07:e3:45:9b:f7:48:47:48:42:37:
56:b6:a7:a9:a5:73:5b:ab:7b:69:97:d1:76:8c:9d:
4e:05:91:ed:d6:34:55:23:4e:81:c0:2a:2b:ad:9d:
1c:2a:50:f8:3d:b7:5a:45:4e:23:89:b4:10:31:6a:
1a:62:77:ec:ba:97:16:33:19:1c:81:cb:c8:f3:63:
b1:2f:60:f9:b6:96:23:2f:7c:93:ef:07:b0:17:a7:
d0:1d:a5:55:0f:5e:7b:f3:6e:18:bc:af:f4:73:e0:
dc:1a:47:f9:b3:06:73:1c:fd:72:cd:ef:4e:72:e5:
62:d2:bd:b6:1b:f0:68:f8:44:a2:c0:32:88:95:30:
b5:ea:75:ce:69:b4:39:8f:ff:b0:c1:e6:90:d8:53:
85:84:55:c2:7c:a1:25:5f:e1:99:46:7a:b5:1b:25:
2e:06:17:71:93:f6:c0:d6:4f:a9:0f:7f:b7:62:31:
23:08:f6:af:18:0d:10:7f:60:6a:e2:d5:d3:c0:a0:
df:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:DF:6F:EE:91:1F:AC:59:B8:0E:0D:52:9C:86:8D:3B:7F:48:F1:6B
X509v3 Authority Key Identifier:
keyid:4C:6B:63:71:B9:45:A3:5E:9D:F3:08:FF:43:80:3E:26:17:85:10:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TGtjcblFo16d8wj_Q4A-JheFEGk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/4448a7-1ac1-46ad-a727-d96393af2f20/1/e99v7pEfrFm4Dg1SnIaNO39I8Ws.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/4448a7-1ac1-46ad-a727-d96393af2f20/1/TGtjcblFo16d8wj_Q4A-JheFEGk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.231.224.0/19
Signature Algorithm: sha256WithRSAEncryption
5b:59:29:06:c4:8b:d7:bc:8b:e9:d4:58:d6:43:fa:c4:3a:0d:
88:00:af:e8:db:ae:3d:91:ae:3e:61:a4:91:4c:0d:0e:8e:8e:
3d:76:ee:74:42:f3:61:a8:22:57:9b:d4:ff:14:07:62:81:3e:
b9:c2:33:37:61:00:6b:0a:a5:27:e0:84:cb:38:65:1f:b0:e4:
b3:96:21:4f:e7:aa:2f:80:7d:ed:50:55:e5:ed:2f:ff:d6:45:
15:e7:11:2d:85:7c:4a:e8:83:fa:e6:18:33:ca:30:5b:23:04:
00:01:96:58:bf:f9:d4:1f:c9:2c:18:80:bb:95:99:03:a6:66:
23:1d:f7:55:74:c3:d1:31:23:41:44:a7:ad:d3:5f:66:cd:8f:
2b:21:b9:f3:1a:64:ef:a3:54:a9:27:6e:f3:db:85:ac:b1:28:
b8:47:75:b8:9e:1a:fe:46:7e:c5:ae:bb:09:db:69:fc:87:e9:
17:bb:4f:25:93:ad:7f:1f:00:a0:44:03:1e:93:ed:37:05:4a:
fa:b4:c4:e0:08:ee:58:ec:75:c6:b0:01:0c:44:09:15:ae:d9:
74:06:d2:e8:92:a4:d5:67:cf:d1:db:c9:ae:9a:57:30:84:9c:
7e:ae:6b:48:91:1d:66:9b:8f:0a:3d:0f:db:9c:58:41:f5:e9:
34:27:1a:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 03:30:54 2025 by rpki-client