Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/c45a9b-5096-4e75-9389-bd9b42f48dde/1/kv4dAm0qVNZFItJwKuFWJ64gisU.roa
File: kv4dAm0qVNZFItJwKuFWJ64gisU.roa (raw, json)
Hash identifier: x9y6xBzPTmQTT3GYWKg5PIjV0JyF2sxTCXUsXZQdQho=
Subject key identifier: 92:FE:1D:02:6D:2A:54:D6:45:22:D2:70:2A:E1:56:27:AE:20:8A:C5
Certificate issuer: /CN=13ecf10b887f085887de8b2db64917ee2e424545
Certificate serial: 0185714C16548A68EDB488C60F665F4F344F
Authority key identifier: 13:EC:F1:0B:88:7F:08:58:87:DE:8B:2D:B6:49:17:EE:2E:42:45:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/E-zxC4h_CFiH3osttkkX7i5CRUU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/c45a9b-5096-4e75-9389-bd9b42f48dde/1/kv4dAm0qVNZFItJwKuFWJ64gisU.roa
Signing time: Mon 02 Jan 2023 07:04:49 +0000
ROA not before: Mon 02 Jan 2023 07:04:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209260
IP address blocks: 194.150.211.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:4c:16:54:8a:68:ed:b4:88:c6:0f:66:5f:4f:34:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=13ecf10b887f085887de8b2db64917ee2e424545
Validity
Not Before: Jan 2 07:04:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=92fe1d026d2a54d64522d2702ae15627ae208ac5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:fb:ea:69:c7:b7:84:f7:1b:8b:dc:fd:e8:85:
b5:e1:2c:80:69:d7:d7:42:fe:77:f8:35:64:a7:67:
d6:74:11:e1:ed:f8:ac:aa:16:be:28:b1:df:0b:4e:
2a:61:0e:51:d8:ae:46:1e:58:4b:fc:2b:c7:4e:4d:
9f:ed:20:ac:23:f5:9c:b9:47:d5:2e:08:fe:66:d2:
7a:33:ee:c1:1f:a0:14:65:35:c9:44:d5:6a:da:63:
83:38:dd:28:23:0d:68:f6:bd:44:05:99:14:ec:dc:
ab:a1:fc:fc:86:5e:96:0d:e2:61:2b:40:89:ae:6d:
8b:1b:96:94:77:fa:10:0f:7c:ad:74:66:24:38:a5:
a1:ca:a9:13:8d:bb:9c:93:21:82:5b:a7:0b:e4:2d:
3d:7c:10:b0:48:17:e4:5f:ab:79:c0:2e:99:cb:7d:
e4:42:76:b8:30:f7:e0:fc:91:5c:ac:ed:cd:0b:bf:
bd:15:22:22:22:c9:46:45:51:d0:82:5a:c1:ee:23:
fe:2f:36:f5:a5:8f:f0:73:a8:14:ed:33:fe:f3:17:
d4:90:28:e7:99:d9:23:d6:f5:e4:9d:f5:f9:c8:83:
19:43:02:62:16:ab:32:81:27:02:0d:07:d5:bb:bb:
1c:b7:49:9e:9a:60:45:48:89:71:cf:d6:48:2c:66:
d4:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:FE:1D:02:6D:2A:54:D6:45:22:D2:70:2A:E1:56:27:AE:20:8A:C5
X509v3 Authority Key Identifier:
keyid:13:EC:F1:0B:88:7F:08:58:87:DE:8B:2D:B6:49:17:EE:2E:42:45:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/E-zxC4h_CFiH3osttkkX7i5CRUU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/c45a9b-5096-4e75-9389-bd9b42f48dde/1/kv4dAm0qVNZFItJwKuFWJ64gisU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/c45a9b-5096-4e75-9389-bd9b42f48dde/1/E-zxC4h_CFiH3osttkkX7i5CRUU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.150.211.0/24
Signature Algorithm: sha256WithRSAEncryption
10:5b:df:21:74:01:10:dc:cd:47:92:31:78:23:66:ec:2a:ed:
da:fd:91:d3:ed:28:29:60:7e:c9:18:29:2c:cd:04:d6:e6:fd:
13:c6:e4:e9:e9:b6:6b:32:82:89:2d:2f:14:07:91:72:fc:7a:
27:a3:f9:8e:0d:10:00:fa:39:05:1c:e6:ad:d8:44:e4:22:43:
1a:59:76:8f:fe:eb:4a:5d:fd:2b:df:47:1a:c4:8e:bd:cc:1d:
2f:68:18:58:58:98:49:4e:8a:11:04:fc:a0:f6:ad:a7:3f:3a:
cf:06:33:e5:d7:a8:5d:e6:97:7c:e9:c2:02:a0:13:c5:50:3f:
68:ce:5e:00:01:0c:bc:6f:17:b6:94:8d:77:0b:8e:52:61:0e:
0a:bd:c5:3d:18:6c:61:8c:5f:93:f2:0e:8a:3a:65:37:d8:0a:
44:aa:0c:ab:10:72:e2:df:87:ae:ae:77:d0:53:3f:fe:41:73:
bc:6c:c7:dc:76:43:67:6c:db:bc:10:79:fb:2b:50:9e:d3:d3:
7c:a7:e7:ec:74:86:b8:50:f6:61:eb:d2:21:ec:9f:68:86:80:
0a:19:17:94:3f:fd:cf:12:d7:fe:cb:0e:ca:bd:5b:ad:a7:55:
b2:3b:8f:4f:ff:df:00:93:6e:42:54:92:2a:b2:83:dc:ac:81:
a2:cd:f5:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 02:09:37 2025 by rpki-client