Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/f58645-00ae-43e2-a4df-015cb0b82d4c/1/OeftclWQ6FftnkQzMc4XTWWtYGU.roa
File: OeftclWQ6FftnkQzMc4XTWWtYGU.roa (raw, json)
Hash identifier: PxLO4t+TW0W4QgcGFqIAj6dBpPxQBXVheZSyTwYws9s=
Subject key identifier: 39:E7:ED:72:55:90:E8:57:ED:9E:44:33:31:CE:17:4D:65:AD:60:65
Certificate issuer: /CN=9766354188ee68dd038f8b90a6574cce8e95add3
Certificate serial: 01857102C6959DF69F950E37EF12F6ACC410
Authority key identifier: 97:66:35:41:88:EE:68:DD:03:8F:8B:90:A6:57:4C:CE:8E:95:AD:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l2Y1QYjuaN0Dj4uQpldMzo6VrdM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/f58645-00ae-43e2-a4df-015cb0b82d4c/1/OeftclWQ6FftnkQzMc4XTWWtYGU.roa
Signing time: Mon 02 Jan 2023 05:44:45 +0000
ROA not before: Mon 02 Jan 2023 05:44:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 195.96.129.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:02:c6:95:9d:f6:9f:95:0e:37:ef:12:f6:ac:c4:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9766354188ee68dd038f8b90a6574cce8e95add3
Validity
Not Before: Jan 2 05:44:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=39e7ed725590e857ed9e443331ce174d65ad6065
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:31:e8:32:e9:25:e5:b3:01:38:5d:2b:ec:bd:
b1:7c:45:5a:74:b0:f7:4c:2f:12:cd:f7:8d:b8:6e:
90:75:db:1b:9c:61:29:30:13:0b:cb:ad:99:6d:bb:
8a:5f:34:24:75:94:a6:f0:06:f0:37:b3:e9:06:9e:
15:61:1c:3a:6f:d8:2b:75:6a:0f:a5:e0:e4:48:17:
a7:ae:d0:9b:e9:67:1e:9c:6a:32:06:88:a9:7b:65:
3f:86:f2:75:4e:5f:2a:60:98:c3:cc:c0:fd:37:1b:
55:8c:5d:2c:f9:37:91:54:e7:d2:ae:6c:d2:2a:68:
ac:77:11:fc:d0:f3:40:56:c8:71:19:bc:b0:41:0f:
d4:ee:c0:01:c1:be:47:3e:4a:5b:dc:43:36:3f:85:
17:b5:c7:6d:af:b8:27:ff:5d:fc:34:4c:30:bf:ef:
79:ae:94:d9:8f:89:e3:37:bb:4e:0d:30:52:fa:0a:
be:77:5a:d0:e9:9d:e1:f5:98:59:90:e0:4d:9b:43:
5c:75:4e:dd:0f:8c:54:5d:ac:07:63:0a:b1:ac:42:
74:c0:09:98:b7:f7:7e:d7:51:79:34:af:55:72:c6:
f1:72:20:46:32:ca:af:34:7a:f3:1d:d9:78:90:1d:
6f:40:4e:ec:a0:1c:df:7b:d2:ec:71:68:3b:ab:94:
6a:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:E7:ED:72:55:90:E8:57:ED:9E:44:33:31:CE:17:4D:65:AD:60:65
X509v3 Authority Key Identifier:
keyid:97:66:35:41:88:EE:68:DD:03:8F:8B:90:A6:57:4C:CE:8E:95:AD:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l2Y1QYjuaN0Dj4uQpldMzo6VrdM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f58645-00ae-43e2-a4df-015cb0b82d4c/1/OeftclWQ6FftnkQzMc4XTWWtYGU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f58645-00ae-43e2-a4df-015cb0b82d4c/1/l2Y1QYjuaN0Dj4uQpldMzo6VrdM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.96.129.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:52:0b:dd:4f:6f:31:41:86:b9:26:1b:f6:f0:6d:f2:a3:08:
bd:14:52:16:aa:e6:2a:77:32:50:a1:f5:84:c3:85:2a:92:d3:
58:e2:40:9a:db:69:9c:d5:83:5f:14:01:4e:83:45:7e:de:41:
1c:72:9c:c0:04:7e:d4:9b:aa:77:70:b8:bb:e3:71:bc:15:e7:
0c:64:11:33:5b:b8:47:f8:aa:52:b4:48:68:41:e3:4d:ce:b0:
25:5e:be:79:42:10:1e:09:c2:fb:97:5c:2d:05:bf:59:3d:cb:
dc:9d:54:b4:43:d8:07:fc:70:20:cc:e1:9b:aa:d4:50:17:56:
57:e2:65:6d:84:fc:72:32:54:47:c1:6e:e7:c5:43:57:60:c4:
a6:d3:59:e1:be:66:1f:49:07:c8:cb:7e:8f:f5:a7:16:50:d7:
62:da:84:5c:04:69:b7:59:af:55:1c:3c:fd:65:d5:0f:b5:3e:
ce:05:be:f5:21:f9:e6:ed:08:1f:6d:6b:1b:ae:60:b7:f8:6a:
e9:9b:53:56:17:19:18:6e:41:5f:f7:5a:4c:16:b3:28:3c:19:
7f:18:79:79:67:a2:a6:33:b5:fb:56:af:2c:30:76:bf:e2:89:
f6:47:8b:5a:21:fc:08:69:5b:e0:39:3d:1f:de:30:7d:33:8e:
d6:39:23:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 10:30:43 2025 by rpki-client