Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/dd5a28-df9d-4627-809d-bd5d3f00fbb2/1/Ne1wDkAoXexyRMeb7LkluC7W2u8.roa
File: Ne1wDkAoXexyRMeb7LkluC7W2u8.roa (raw, json)
Hash identifier: UqoCfCK7TtdatTRzhydWCboIM4X4eJ234dMe6Bc7n6o=
Subject key identifier: 35:ED:70:0E:40:28:5D:EC:72:44:C7:9B:EC:B9:25:B8:2E:D6:DA:EF
Certificate issuer: /CN=9f312e9297bc1d27ebeb476dea0ee15dd756542d
Certificate serial: 0193D01D03333820B84F03BABD42AD4AEA1A
Authority key identifier: 9F:31:2E:92:97:BC:1D:27:EB:EB:47:6D:EA:0E:E1:5D:D7:56:54:2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nzEukpe8HSfr60dt6g7hXddWVC0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/dd5a28-df9d-4627-809d-bd5d3f00fbb2/1/Ne1wDkAoXexyRMeb7LkluC7W2u8.roa
Signing time: Mon 16 Dec 2024 15:36:22 +0000
ROA not before: Mon 16 Dec 2024 15:36:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 328543
IP address blocks: 195.78.48.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:d0:1d:03:33:38:20:b8:4f:03:ba:bd:42:ad:4a:ea:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9f312e9297bc1d27ebeb476dea0ee15dd756542d
Validity
Not Before: Dec 16 15:36:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=35ed700e40285dec7244c79becb925b82ed6daef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:1d:59:e0:b2:29:db:8d:60:08:27:5b:3f:12:
47:77:2e:f0:65:f9:f5:aa:7f:af:48:0b:95:e9:e0:
df:16:89:d4:ce:d6:c7:30:5c:7e:aa:fe:d9:c7:d5:
cc:28:04:5b:d8:83:99:2b:b1:15:c5:25:b6:3e:ed:
1e:3d:b2:6a:79:5d:30:86:cc:65:d3:5d:55:21:1e:
98:61:db:3e:03:3a:cc:bb:f2:23:20:49:8e:76:a1:
28:46:61:71:35:f4:49:ee:8f:12:ce:86:fd:83:6b:
d0:18:b7:20:28:ff:67:f7:8c:35:0a:52:2c:d6:74:
ca:b4:7a:eb:c8:49:e5:75:3f:de:f3:98:75:91:bf:
aa:a3:0c:db:fa:53:86:fa:c9:d4:55:35:1b:1a:29:
4a:7b:be:bb:29:68:85:2a:ad:e5:3b:ac:f4:7f:d5:
66:1d:10:c1:2e:56:7c:af:6b:69:8f:fd:73:85:d0:
50:31:b4:ff:f1:3d:61:a8:df:16:5b:43:c6:7a:64:
ea:02:25:df:32:fd:a8:56:79:7d:c0:c6:98:ee:f3:
0d:1a:76:0c:4c:7f:4a:af:78:53:4f:f8:33:ea:a4:
c0:89:77:1b:38:1e:b3:a3:fa:10:94:a7:8f:a6:f1:
ec:f8:af:9c:73:ad:b9:30:ed:95:79:e6:68:3b:bf:
c9:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:ED:70:0E:40:28:5D:EC:72:44:C7:9B:EC:B9:25:B8:2E:D6:DA:EF
X509v3 Authority Key Identifier:
keyid:9F:31:2E:92:97:BC:1D:27:EB:EB:47:6D:EA:0E:E1:5D:D7:56:54:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nzEukpe8HSfr60dt6g7hXddWVC0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/dd5a28-df9d-4627-809d-bd5d3f00fbb2/1/Ne1wDkAoXexyRMeb7LkluC7W2u8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/dd5a28-df9d-4627-809d-bd5d3f00fbb2/1/nzEukpe8HSfr60dt6g7hXddWVC0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.78.48.0/23
Signature Algorithm: sha256WithRSAEncryption
34:73:93:38:80:9f:e7:eb:c4:6e:8d:4f:bb:d3:09:f6:12:37:
a4:8e:5c:fe:dd:2f:be:a4:70:99:d4:ed:2c:73:8f:27:29:77:
22:1f:d1:82:95:a9:36:a9:44:95:c4:d3:7c:81:14:ca:84:bb:
1e:bb:c9:e5:27:0f:cc:47:22:aa:15:58:1b:33:65:bf:ea:cb:
42:56:ae:81:59:a6:5b:17:d1:58:90:db:8d:53:d9:c1:fd:ae:
2f:88:bc:c9:fe:33:e5:d2:ec:24:66:fd:a5:28:e0:e7:e9:49:
ca:ac:d4:22:eb:e9:14:1e:20:c5:c7:87:ca:b4:73:c6:b0:70:
34:2c:a4:ca:e0:1f:1a:53:42:d7:27:4f:61:14:f9:04:5d:7a:
72:82:84:da:c3:c7:5f:08:7d:d1:a4:05:1e:d7:b5:e7:2f:39:
cf:5e:50:a3:ed:4d:4b:25:1a:0b:c5:11:c8:a8:86:0c:20:be:
d8:a9:ee:f4:f8:65:76:c6:4f:21:be:bd:74:a6:eb:f7:4f:eb:
36:60:8f:53:85:ea:63:d4:07:4f:7f:a9:12:fe:cf:41:92:79:
4c:e4:c5:aa:b0:2c:d2:10:65:e9:46:08:01:e4:49:1f:0f:c2:
0b:5c:b1:c3:d5:26:fc:e1:19:37:5b:37:63:69:60:a0:bf:62:
f8:60:be:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 03:05:20 2025 by rpki-client