Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/bb2bdb-747d-4855-8945-7f9a3e45256e/1/6IVQyX8RgUoO3Q58rf7sMqHJv54.roa
File: 6IVQyX8RgUoO3Q58rf7sMqHJv54.roa (raw, json)
Hash identifier: 7oxYbSUUgVn0A9C0QrCdMuBwwgHYFbY1shMdIhdZPLk=
Subject key identifier: E8:85:50:C9:7F:11:81:4A:0E:DD:0E:7C:AD:FE:EC:32:A1:C9:BF:9E
Certificate issuer: /CN=bc1e66efa005a6de53b1d0c91f37554bdf4676bd
Certificate serial: 0194228DBEC141FFD2FD9DDB7027D916B090
Authority key identifier: BC:1E:66:EF:A0:05:A6:DE:53:B1:D0:C9:1F:37:55:4B:DF:46:76:BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vB5m76AFpt5TsdDJHzdVS99Gdr0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/bb2bdb-747d-4855-8945-7f9a3e45256e/1/6IVQyX8RgUoO3Q58rf7sMqHJv54.roa
Signing time: Wed 01 Jan 2025 15:48:22 +0000
ROA not before: Wed 01 Jan 2025 15:48:22 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 39274
IP address blocks: 195.250.33.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:8d:be:c1:41:ff:d2:fd:9d:db:70:27:d9:16:b0:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bc1e66efa005a6de53b1d0c91f37554bdf4676bd
Validity
Not Before: Jan 1 15:48:22 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=e88550c97f11814a0edd0e7cadfeec32a1c9bf9e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:8e:22:44:c8:79:04:f4:d5:da:86:ae:96:7f:
3a:63:19:07:d6:ae:68:79:b1:fe:a5:b6:7d:10:ac:
5f:2a:64:e4:5e:35:0f:19:12:d5:65:4c:89:1e:cf:
c1:e1:93:7d:71:3e:68:bc:cd:e7:af:a6:99:41:24:
9a:41:d1:2f:d9:77:f1:bf:c8:ca:a5:52:22:ba:df:
31:38:8a:64:49:fe:f3:42:f1:23:e6:28:f6:5d:bb:
e4:21:9c:6a:16:ec:8f:49:c4:cb:8c:f9:a3:14:db:
bd:bc:29:79:23:54:99:89:94:5f:78:82:17:c4:98:
f8:fd:af:d1:ff:bb:fb:87:7c:76:d8:e0:9a:c1:95:
f8:45:d7:91:aa:38:c4:cd:f9:6d:a8:f7:46:ea:70:
1e:cf:bb:8a:66:fd:04:82:45:37:7c:ab:8b:81:40:
51:3f:3d:9a:06:bf:e4:89:09:11:19:56:83:43:6c:
e9:ff:2f:c1:be:9a:30:4a:5c:e5:4d:c6:bf:20:04:
d3:6f:62:99:47:95:6f:22:ed:fd:23:9b:ae:56:f2:
fc:e6:b2:f1:eb:18:d4:49:de:a9:19:02:e8:97:e7:
44:27:e7:58:06:d6:3b:fd:15:e7:bb:1c:88:13:09:
ab:a7:87:35:fb:bb:c6:9f:16:6d:1f:50:ba:f5:ae:
33:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:85:50:C9:7F:11:81:4A:0E:DD:0E:7C:AD:FE:EC:32:A1:C9:BF:9E
X509v3 Authority Key Identifier:
keyid:BC:1E:66:EF:A0:05:A6:DE:53:B1:D0:C9:1F:37:55:4B:DF:46:76:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vB5m76AFpt5TsdDJHzdVS99Gdr0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/bb2bdb-747d-4855-8945-7f9a3e45256e/1/6IVQyX8RgUoO3Q58rf7sMqHJv54.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/bb2bdb-747d-4855-8945-7f9a3e45256e/1/vB5m76AFpt5TsdDJHzdVS99Gdr0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.250.33.0/24
Signature Algorithm: sha256WithRSAEncryption
c1:c4:52:93:79:a0:da:d6:dd:c3:96:e6:d1:3f:08:5d:26:21:
27:0e:b7:71:57:b4:f2:28:32:1d:87:e8:cc:c1:81:34:ad:3e:
96:c5:77:02:e0:0f:97:04:ed:8a:f9:fd:09:97:97:d8:5d:b9:
bd:5f:cd:a5:f5:83:76:c5:a3:c6:0f:df:a7:d8:17:32:f3:be:
ef:06:b5:7b:95:5a:f0:a9:ab:bd:74:8d:72:43:96:40:69:0f:
71:23:e1:0e:25:02:00:ac:20:0e:dc:c8:5f:5c:d9:ac:14:9d:
19:1c:f1:a9:d8:4b:04:3c:a0:47:e3:98:b4:a2:63:84:df:f8:
1e:21:4c:77:41:ef:ee:a8:e0:50:c7:e9:d5:66:10:5f:46:42:
20:b5:06:28:70:09:ba:4a:65:88:44:eb:9b:18:4e:d2:ff:8b:
bc:5a:87:d2:f9:41:70:9c:f5:3e:7d:66:9d:1c:d4:cf:7e:3b:
a0:ce:4e:50:f9:6e:30:bd:b1:5d:4b:b7:cc:85:34:7d:78:d3:
f7:52:c6:97:d6:65:aa:72:98:f7:9a:d3:5f:76:85:e2:ce:1d:
f8:c5:d4:a2:5f:bc:5c:1e:8d:65:87:f1:9a:58:4d:61:49:9d:
d1:46:f7:8c:8e:50:15:c8:a0:fd:58:d1:84:33:70:d3:ff:6d:
4c:bc:88:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 02:43:20 2025 by rpki-client