Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/1-1lRKLu371HDTHk8c8EivyJBtuU.roa
File: 1-1lRKLu371HDTHk8c8EivyJBtuU.roa (raw, json)
Hash identifier: JU9c2IXBDe8sTydlUA5qMPVW4/hxpmRR4ICEo97INqw=
Subject key identifier: FB:59:51:28:BB:B7:EF:51:C3:4C:79:3C:73:C1:22:BF:22:41:B6:E5
Certificate issuer: /CN=17d03f298180cc109f19d4b1992c7d71c56c8dcc
Certificate serial: 019424B3A4FDC6EF263D69B738BD91C831D2
Authority key identifier: 17:D0:3F:29:81:80:CC:10:9F:19:D4:B1:99:2C:7D:71:C5:6C:8D:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/1-1lRKLu371HDTHk8c8EivyJBtuU.roa
Signing time: Thu 02 Jan 2025 01:49:00 +0000
ROA not before: Thu 02 Jan 2025 01:49:00 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 208949
IP address blocks: 194.76.0.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:b3:a4:fd:c6:ef:26:3d:69:b7:38:bd:91:c8:31:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17d03f298180cc109f19d4b1992c7d71c56c8dcc
Validity
Not Before: Jan 2 01:49:00 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=fb595128bbb7ef51c34c793c73c122bf2241b6e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:90:4a:32:2b:c7:16:c7:54:0e:66:c3:79:45:
4f:b0:19:7a:24:82:b4:b1:70:7f:2b:c1:9b:8e:a0:
5d:f8:8c:59:98:fb:4a:72:ae:e5:22:cb:45:3c:92:
ea:c2:78:a5:48:87:f1:0b:e6:2e:ca:8f:e6:9e:5a:
38:d9:86:45:c2:c5:e5:23:16:a9:79:9b:5c:5d:0a:
0a:3f:13:a1:2b:de:83:a9:b3:8f:a5:4d:b9:74:59:
23:a2:14:63:0f:d7:8e:ba:0e:76:6c:c5:da:0b:73:
cb:cb:3d:4a:97:11:34:1e:78:e1:46:b3:c7:c0:68:
22:7d:1d:05:b9:df:f8:f9:79:76:0b:20:75:38:7f:
0d:50:ed:e2:64:b9:01:f9:78:f7:1f:7f:ea:d0:21:
5a:c8:22:4b:1e:e8:a3:74:89:9b:57:3b:5d:21:c8:
0d:99:ac:d1:6d:b8:b5:2e:11:dd:64:49:02:4c:da:
83:55:db:e8:12:17:b3:b2:88:9f:aa:7e:0d:e9:c4:
e1:3f:7d:c3:a4:9e:52:db:1f:2b:82:6d:c2:c1:90:
a4:ff:ed:a8:7f:1c:3f:ea:6d:b5:c1:2f:30:1f:91:
6f:64:55:e3:48:35:fc:5d:c7:27:c2:90:d7:64:3b:
29:05:19:53:59:48:dd:8b:8f:8e:24:db:d8:34:80:
45:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:59:51:28:BB:B7:EF:51:C3:4C:79:3C:73:C1:22:BF:22:41:B6:E5
X509v3 Authority Key Identifier:
keyid:17:D0:3F:29:81:80:CC:10:9F:19:D4:B1:99:2C:7D:71:C5:6C:8D:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/1-1lRKLu371HDTHk8c8EivyJBtuU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/F9A_KYGAzBCfGdSxmSx9ccVsjcw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.76.0.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:94:93:cc:09:b8:33:f6:e7:86:d4:7d:08:99:3b:81:e5:87:
1a:68:f1:a0:65:97:0c:3e:bc:fa:03:9d:92:e1:51:a7:1f:7c:
88:08:38:5f:04:87:13:fd:76:c6:1c:9d:f9:02:7b:81:c9:62:
55:f0:2e:2a:7a:ca:1a:e8:4e:ab:15:82:57:c1:e3:c7:33:5f:
12:5e:5c:a9:9e:b7:9d:d0:72:d5:d1:53:a1:91:67:17:46:ca:
ab:46:90:6c:cc:30:63:2d:80:7c:2a:01:71:4e:32:0f:ba:4b:
b5:77:6b:e4:8e:cd:bf:19:d2:86:7b:a7:3a:d9:67:55:ae:a4:
7f:a2:8f:b5:4f:2d:df:43:46:37:b4:e6:86:a3:0b:ee:78:63:
77:b8:c2:26:cf:dc:23:3e:3d:b4:9d:04:4d:bf:3d:ff:0e:e3:
42:f1:73:ba:ca:cf:ab:3c:9c:98:55:1c:6e:ac:40:a4:06:56:
c5:72:0d:5f:ec:ed:c3:46:f4:43:18:fe:84:51:d5:e5:83:f3:
17:df:43:0e:c4:6a:38:43:9a:06:d5:d2:f4:36:f4:f1:88:de:
e0:1b:16:e7:b9:ab:c6:eb:4d:2b:3e:95:3a:5d:24:c5:e7:5a:
be:41:53:a3:91:0b:7d:73:88:38:e6:f7:f7:20:b9:99:51:d5:
41:49:87:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 02:43:10 2025 by rpki-client