Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/18c498-2171-4e1c-8d80-a6c49eb28287/1/a1U9llCdwrEqU4GkcwBsuwGny80.roa
File: a1U9llCdwrEqU4GkcwBsuwGny80.roa (raw, json)
Hash identifier: x9+7kA4QQzpZS4+gdNTWeXV2Ehq7i5FwV0w3Ws0zS7A=
Subject key identifier: 6B:55:3D:96:50:9D:C2:B1:2A:53:81:A4:73:00:6C:BB:01:A7:CB:CD
Certificate issuer: /CN=74e3c336972094b1a8c13d41816857d197a3aae9
Certificate serial: 019422FB5FDB1EA040BAFD294181F4133A45
Authority key identifier: 74:E3:C3:36:97:20:94:B1:A8:C1:3D:41:81:68:57:D1:97:A3:AA:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dOPDNpcglLGowT1BgWhX0Zejquk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/18c498-2171-4e1c-8d80-a6c49eb28287/1/a1U9llCdwrEqU4GkcwBsuwGny80.roa
Signing time: Wed 01 Jan 2025 17:48:06 +0000
ROA not before: Wed 01 Jan 2025 17:48:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 60298
IP address blocks: 194.183.190.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:fb:5f:db:1e:a0:40:ba:fd:29:41:81:f4:13:3a:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=74e3c336972094b1a8c13d41816857d197a3aae9
Validity
Not Before: Jan 1 17:48:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=6b553d96509dc2b12a5381a473006cbb01a7cbcd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:a6:a2:82:84:88:95:ba:fd:21:af:c7:9f:57:
cc:13:76:41:67:62:86:83:0f:19:10:29:27:6b:53:
98:a4:fb:d7:4e:68:a9:62:83:f1:67:ac:54:4b:74:
7d:84:14:17:13:3f:dd:af:2f:b7:f5:3f:80:55:08:
d3:36:4c:01:76:b2:75:d7:cf:bd:0c:e8:67:61:da:
86:64:0c:bf:b4:25:bc:74:8b:17:9b:29:e9:4d:bf:
af:1c:28:14:ba:47:d7:c0:a8:45:b8:39:7b:9f:1b:
0b:83:84:49:a5:98:f4:93:a7:e1:2b:fc:c2:c1:bb:
09:a5:fe:54:39:63:55:fd:40:ec:c0:41:4a:9c:72:
94:da:c6:6c:a2:b4:c8:df:f8:03:48:02:02:95:b5:
4c:67:9f:64:b0:2b:cd:98:a8:aa:c4:f7:fa:c2:02:
fe:c9:b6:b5:79:73:a3:64:27:57:96:07:5f:c7:0d:
d5:2f:a1:34:f7:05:0e:e4:69:e3:1c:d7:03:de:0e:
3b:eb:6d:72:32:a0:6f:10:6c:83:a9:e3:58:58:ce:
95:a3:26:e9:c9:15:dc:73:00:dd:e8:4d:f5:9b:e4:
45:cc:33:6e:49:bd:c6:e1:7f:b0:33:2c:ad:04:4a:
6a:b6:7f:87:20:01:1c:2d:20:41:88:a0:f5:90:2b:
4d:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:55:3D:96:50:9D:C2:B1:2A:53:81:A4:73:00:6C:BB:01:A7:CB:CD
X509v3 Authority Key Identifier:
keyid:74:E3:C3:36:97:20:94:B1:A8:C1:3D:41:81:68:57:D1:97:A3:AA:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dOPDNpcglLGowT1BgWhX0Zejquk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/18c498-2171-4e1c-8d80-a6c49eb28287/1/a1U9llCdwrEqU4GkcwBsuwGny80.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/18c498-2171-4e1c-8d80-a6c49eb28287/1/dOPDNpcglLGowT1BgWhX0Zejquk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.183.190.0/24
Signature Algorithm: sha256WithRSAEncryption
a7:1d:cb:dc:84:97:44:57:71:4e:63:52:eb:27:2b:6c:cc:16:
df:18:f2:a5:41:63:8a:04:0d:8c:d5:49:03:b8:60:25:6e:18:
31:6f:3c:85:b7:f2:ab:36:15:8a:71:81:4f:c3:70:23:94:29:
ac:e1:72:a8:c8:b3:2c:67:e3:69:84:a7:b6:d2:d2:62:83:e9:
2a:d0:8d:a1:68:8a:de:e1:51:93:52:44:4e:81:fc:ae:9f:3d:
87:72:b7:2c:5f:46:f7:e5:05:89:29:6c:dc:cb:eb:c8:23:6d:
3c:0d:e7:a6:50:4f:c7:90:60:78:31:a9:ea:92:c1:6f:89:c5:
3a:a2:39:20:da:0d:36:97:ec:46:a5:59:cf:ac:96:82:72:e5:
19:24:4e:72:52:b1:ff:69:8b:14:68:b5:d0:16:ce:89:d1:00:
ae:e5:63:f3:7d:19:df:1b:52:98:03:b8:4e:35:3f:6a:9e:ff:
55:90:25:71:10:b8:b6:77:ff:e1:b3:76:8c:c0:f0:be:a6:ba:
23:7c:30:58:90:b6:7d:ea:59:3b:ca:50:af:2e:c2:61:71:5b:
53:51:55:6c:f5:85:45:9d:3c:e4:c0:c9:4a:71:e7:1e:0a:f9:
15:21:7f:54:89:08:bb:2a:7a:66:6d:ab:52:1d:64:60:50:0f:
94:35:a4:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 13:34:14 2025 by rpki-client