Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/a3fb67-d514-4aee-adb9-72bad9d73c80/1/eANGg9nd8brobQxQsq-OUws_-A0.roa
File: eANGg9nd8brobQxQsq-OUws_-A0.roa (raw, json)
Hash identifier: lEUfEgigb66go+VnP4oXCP4ZNWVGI/eBV8YRKR1wILc=
Subject key identifier: 78:03:46:83:D9:DD:F1:BA:E8:6D:0C:50:B2:AF:8E:53:0B:3F:F8:0D
Certificate issuer: /CN=d0b849b9bc9042a1557331937e4ad71518af61cf
Certificate serial: 01942520B0E6BBC2091D64541C0A20FAFC91
Authority key identifier: D0:B8:49:B9:BC:90:42:A1:55:73:31:93:7E:4A:D7:15:18:AF:61:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0LhJubyQQqFVczGTfkrXFRivYc8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/a3fb67-d514-4aee-adb9-72bad9d73c80/1/eANGg9nd8brobQxQsq-OUws_-A0.roa
Signing time: Thu 02 Jan 2025 03:48:06 +0000
ROA not before: Thu 02 Jan 2025 03:48:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 211611
IP address blocks: 194.36.143.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:20:b0:e6:bb:c2:09:1d:64:54:1c:0a:20:fa:fc:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0b849b9bc9042a1557331937e4ad71518af61cf
Validity
Not Before: Jan 2 03:48:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=78034683d9ddf1bae86d0c50b2af8e530b3ff80d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:ef:95:23:d8:d1:b5:bd:a1:74:af:5f:3a:69:
0b:da:4c:95:cf:e3:52:bb:eb:70:ed:61:f9:6e:c3:
f1:ed:f6:96:ea:47:73:2b:db:42:3b:42:d8:cb:0c:
8a:28:b6:9d:c9:37:04:f1:db:71:7e:b0:c5:07:cf:
2f:85:c0:10:00:aa:e4:b7:46:ed:85:57:d9:d5:b1:
e8:83:64:d9:da:01:d6:12:06:a1:c4:84:e6:d7:a1:
bd:79:c2:2f:84:aa:d5:24:77:55:b8:2c:a3:a9:b3:
5e:93:ab:fa:c2:a2:0f:bc:90:ab:37:98:9b:1a:f2:
fa:41:ba:0d:48:ff:bc:91:c3:27:42:d3:de:ef:34:
5f:be:c3:51:e4:5d:44:1d:b5:a9:f7:56:e6:de:a2:
98:62:1a:87:2a:c9:b7:45:a4:7f:76:8b:2f:cc:22:
09:d4:c5:51:7a:e6:21:23:7d:3d:91:da:2d:02:4f:
44:4c:b0:e6:b0:65:aa:d8:82:9e:54:d6:43:f8:fa:
40:78:d2:28:3f:10:6c:f6:18:1d:a2:9d:81:a9:ef:
45:b8:fe:8e:2d:b9:53:1b:6e:10:f3:7d:70:15:c1:
02:af:5b:6f:ef:63:a6:9f:7b:c7:d2:14:6b:0f:44:
b2:af:bd:1c:ac:95:2a:1a:a3:20:02:68:10:f3:31:
51:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:03:46:83:D9:DD:F1:BA:E8:6D:0C:50:B2:AF:8E:53:0B:3F:F8:0D
X509v3 Authority Key Identifier:
keyid:D0:B8:49:B9:BC:90:42:A1:55:73:31:93:7E:4A:D7:15:18:AF:61:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0LhJubyQQqFVczGTfkrXFRivYc8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/a3fb67-d514-4aee-adb9-72bad9d73c80/1/eANGg9nd8brobQxQsq-OUws_-A0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/a3fb67-d514-4aee-adb9-72bad9d73c80/1/0LhJubyQQqFVczGTfkrXFRivYc8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.36.143.0/24
Signature Algorithm: sha256WithRSAEncryption
11:42:f1:da:ac:ef:b5:3c:92:97:ef:97:38:f5:91:c2:13:aa:
84:4d:2e:a0:d1:59:a3:33:76:95:f2:26:b6:7a:6c:99:c2:bd:
9b:c2:eb:07:bc:66:5c:64:c0:2f:bd:2b:1e:6c:9d:d8:bd:50:
ac:c3:08:4a:22:05:fd:20:7e:59:78:a7:dc:3e:dd:dd:dd:85:
d7:2c:16:41:ff:65:5f:8a:7c:b6:c4:95:6e:d3:14:68:d5:eb:
d7:69:b6:22:0b:f2:bf:86:c0:87:bb:cc:8b:0e:d1:ab:d9:ef:
39:7b:3d:39:20:97:75:53:57:2c:96:f1:57:c7:e5:94:29:b0:
6e:81:a1:81:b9:db:e5:12:f7:21:c0:07:a7:96:f6:49:48:19:
05:c1:86:7e:ac:7a:90:a7:16:90:d3:a2:38:3f:ed:33:38:09:
bc:1b:c7:59:98:08:63:34:73:67:e8:2c:4c:7c:23:dc:06:f8:
50:44:c9:1b:62:f7:47:e3:25:bc:c7:5e:91:1d:30:7f:9c:09:
a7:84:8a:13:68:ef:99:60:7f:98:6c:07:46:45:26:a6:c3:14:
5b:d1:d3:88:74:83:b7:f0:89:77:6e:d3:19:b6:04:b3:df:86:
14:06:56:16:c3:42:de:84:f7:46:12:dc:b2:fc:d7:e1:17:a7:
51:5b:be:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 09:27:56 2025 by rpki-client