Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/ac0694-1e22-436d-82c9-17ce620e74f1/1/tdhuYGIdy-7BcAqbVeS6RaDWjiM.roa
File: tdhuYGIdy-7BcAqbVeS6RaDWjiM.roa (raw, json)
Hash identifier: Sh6aeKnHHbg/58/2+xd9mufW5cUQ13QaLyf7FAUXcc8=
Subject key identifier: B5:D8:6E:60:62:1D:CB:EE:C1:70:0A:9B:55:E4:BA:45:A0:D6:8E:23
Certificate issuer: /CN=204d7d8652a99fc17fff2d7decc49e556aa0eb80
Certificate serial: 019426D8CA1D50DAF68CEA1CEC47826A1378
Authority key identifier: 20:4D:7D:86:52:A9:9F:C1:7F:FF:2D:7D:EC:C4:9E:55:6A:A0:EB:80
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IE19hlKpn8F__y197MSeVWqg64A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/ac0694-1e22-436d-82c9-17ce620e74f1/1/tdhuYGIdy-7BcAqbVeS6RaDWjiM.roa
Signing time: Thu 02 Jan 2025 11:48:49 +0000
ROA not before: Thu 02 Jan 2025 11:48:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 14618
IP address blocks: 195.242.170.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:d8:ca:1d:50:da:f6:8c:ea:1c:ec:47:82:6a:13:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=204d7d8652a99fc17fff2d7decc49e556aa0eb80
Validity
Not Before: Jan 2 11:48:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b5d86e60621dcbeec1700a9b55e4ba45a0d68e23
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:40:69:7b:b0:c3:e0:58:a7:1d:4b:b6:aa:8d:
f4:44:f5:99:59:27:2f:6b:3c:3e:ad:21:f6:a2:a3:
19:a5:a2:1a:4a:24:0e:63:64:77:b7:9d:eb:bc:39:
a5:97:4e:c8:3f:9d:29:ff:1c:f1:6f:49:ff:11:ad:
94:24:de:86:b1:f8:31:39:1d:ce:17:cc:c5:3e:f7:
b4:25:de:67:80:be:b7:b6:36:33:00:2a:a3:73:63:
14:5c:26:0d:b1:dc:e0:44:56:1d:50:b4:9a:98:86:
fa:b2:8e:06:ac:77:f1:09:8f:fe:4c:a2:1a:0a:80:
c8:35:71:a6:ec:3f:3e:af:6b:0f:66:aa:b2:35:db:
c9:9f:ce:22:87:29:51:57:e2:2e:c9:88:12:5a:4b:
dd:9b:0d:25:8d:74:75:a9:97:5e:10:a0:6e:12:8d:
5e:01:58:26:54:ec:4f:b7:e1:7c:03:fa:38:69:d8:
8d:a8:f9:37:10:26:00:87:c9:ee:ad:bc:aa:25:46:
63:d4:e8:ff:18:51:70:eb:51:16:de:6e:4f:64:0d:
77:68:e7:f7:0e:67:c8:0d:ad:08:5e:4d:fd:97:93:
6f:a8:27:22:07:6d:23:1a:43:aa:04:d3:fa:b2:9a:
c7:24:56:ec:25:6e:c0:2b:f0:bd:85:41:b4:09:d4:
ff:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:D8:6E:60:62:1D:CB:EE:C1:70:0A:9B:55:E4:BA:45:A0:D6:8E:23
X509v3 Authority Key Identifier:
keyid:20:4D:7D:86:52:A9:9F:C1:7F:FF:2D:7D:EC:C4:9E:55:6A:A0:EB:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IE19hlKpn8F__y197MSeVWqg64A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/ac0694-1e22-436d-82c9-17ce620e74f1/1/tdhuYGIdy-7BcAqbVeS6RaDWjiM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/ac0694-1e22-436d-82c9-17ce620e74f1/1/IE19hlKpn8F__y197MSeVWqg64A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.242.170.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:87:b9:fc:2f:ae:f4:bb:71:ad:c9:17:56:12:04:9f:22:91:
d9:59:c4:b6:55:57:78:72:34:cd:29:ad:7f:77:5d:64:af:27:
6f:08:79:96:5e:90:20:a7:04:67:d6:c0:b9:b5:20:dc:9a:f2:
5d:63:af:0b:10:72:fc:99:99:19:f6:3c:36:26:e1:ba:9e:e5:
34:31:23:40:7c:69:ed:ec:03:ef:c7:02:9d:2d:c8:34:60:3a:
59:ec:20:66:5d:65:aa:e0:fb:af:3f:2e:90:49:ab:75:86:65:
0c:d3:20:eb:7a:00:2d:cf:09:3e:a1:d7:84:50:a5:71:7f:86:
ed:ca:f4:db:3e:6a:5c:05:74:d3:ba:55:a9:4c:43:0e:76:e9:
dc:d6:32:18:2b:7c:ab:f6:77:74:9d:82:7c:75:7d:8e:cb:66:
e0:c9:93:67:6d:43:50:a3:1c:25:7b:d7:6f:04:68:7c:9d:9d:
8d:e6:8d:57:79:c7:06:77:3c:10:f3:48:bc:a9:20:a7:48:25:
d9:35:3b:1a:5d:34:f6:91:bc:97:36:78:df:5a:b1:a0:0f:b4:
fc:7a:33:b3:ae:13:69:72:54:df:ec:dc:b7:fa:72:09:fd:56:
5c:84:e3:01:4e:96:84:fa:81:ac:93:87:9c:58:fa:39:f1:e0:
83:21:16:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 23:45:29 2025 by rpki-client