Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/9uszos-8gsTE5zPzVj79-hWjvo0.roa
File: 9uszos-8gsTE5zPzVj79-hWjvo0.roa (raw, json)
Hash identifier: hUoFYA3E/hYxDr9fVFtVo7hhw6p0D28h5QvImVOXlEc=
Subject key identifier: F6:EB:33:A2:CF:BC:82:C4:C4:E7:33:F3:56:3E:FD:FA:15:A3:BE:8D
Certificate issuer: /CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Certificate serial: 0194266BFB90E85D9E574141E030AECBFA99
Authority key identifier: B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/9uszos-8gsTE5zPzVj79-hWjvo0.roa
Signing time: Thu 02 Jan 2025 09:49:58 +0000
ROA not before: Thu 02 Jan 2025 09:49:58 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 209579
IP address blocks: 85.202.58.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:6b:fb:90:e8:5d:9e:57:41:41:e0:30:ae:cb:fa:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Validity
Not Before: Jan 2 09:49:58 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=f6eb33a2cfbc82c4c4e733f3563efdfa15a3be8d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:c8:c0:41:9e:2c:5a:cf:58:25:1b:82:7b:e4:
70:1f:41:77:0d:a7:37:88:18:1f:58:19:ca:41:f0:
82:86:e5:d8:f6:9c:cb:ff:20:f1:f3:3e:fd:c5:34:
dc:38:d4:b8:03:10:f2:ce:cc:ee:13:d5:8f:e0:26:
24:a9:c1:e9:57:09:3b:2e:54:17:3d:e3:3a:ec:fb:
1d:83:9a:a6:af:f4:af:54:e2:f5:92:1d:a0:95:dc:
97:9a:14:24:a7:51:81:52:de:03:fb:db:5e:21:67:
29:55:8a:a9:f5:f0:15:7c:37:46:c6:0a:99:0b:bf:
43:88:1b:2c:ad:83:95:53:f4:dc:95:49:5a:2b:f9:
6b:24:4b:43:e3:b1:b1:85:15:94:8a:7a:6e:2d:eb:
18:53:ee:79:87:58:b5:c5:8e:12:15:76:2e:ed:90:
8e:b8:50:cb:40:6b:b6:a6:79:79:f5:d5:6c:1b:a7:
bc:46:8a:91:87:8d:e5:96:9a:5c:90:0b:01:d1:01:
17:af:23:1e:2d:bf:53:05:eb:28:83:9a:9e:78:22:
79:2e:8a:e3:9f:8c:32:a0:10:2b:44:41:ef:d3:76:
6c:45:43:6b:8d:16:66:82:39:04:48:eb:fd:97:db:
c2:92:a9:31:3d:a9:05:eb:bb:e9:1e:b8:76:5f:1f:
98:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:EB:33:A2:CF:BC:82:C4:C4:E7:33:F3:56:3E:FD:FA:15:A3:BE:8D
X509v3 Authority Key Identifier:
keyid:B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/9uszos-8gsTE5zPzVj79-hWjvo0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/uZVEmZdyeKdVcLNAP006oAsbNug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.202.58.0/24
Signature Algorithm: sha256WithRSAEncryption
46:ae:44:20:ae:cb:b6:00:cf:ab:e3:a1:5b:57:f5:36:34:bb:
31:68:d4:12:3d:2f:37:97:1f:c9:28:e5:4f:c0:3b:04:99:0e:
ab:0d:5a:03:10:82:c1:99:42:74:28:b9:dd:47:5e:37:b8:c3:
9a:66:e6:14:30:ae:1f:dd:24:7b:03:f3:72:a4:72:b2:c4:04:
b1:0f:23:1b:cc:2c:b7:0c:d5:19:6a:1a:05:97:26:2e:43:16:
f7:9a:7a:c8:41:20:d0:69:31:a1:c3:e5:8b:51:81:e2:ae:08:
f0:a4:74:2b:5a:cb:d4:97:a1:00:96:e6:72:ff:22:e7:1c:fe:
10:1a:cd:76:d6:1b:ec:1c:db:4f:17:2d:49:29:24:21:26:e4:
78:87:b5:75:47:3e:c9:6d:a7:47:7a:8d:7c:8c:c9:4b:72:e9:
50:e4:c5:b4:fe:4f:06:4a:b4:43:d7:aa:4b:59:a5:7e:8e:a5:
ae:36:75:f9:7a:0a:04:58:d5:0e:61:9e:15:e1:f1:0a:5e:f3:
0c:ee:dc:5a:06:73:54:22:8f:b3:98:7c:03:fe:aa:6c:e4:f5:
8c:24:3d:4f:16:5d:f2:e0:e7:66:87:71:20:32:a0:92:be:ef:
5f:3c:b7:51:60:c6:3f:9f:13:e9:0e:27:9c:b5:5b:14:9c:db:
f3:39:e8:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 06:28:48 2025 by rpki-client