Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/0d3b13-c4a1-41c0-a839-aede3ffa4457/1/Ba4SlKoMZ9q6ECDPH87BfMLJbzU.roa
File: Ba4SlKoMZ9q6ECDPH87BfMLJbzU.roa (raw, json)
Hash identifier: YAIa3hTN3xi/FjuYq1h109HoBba1AtnZB1zV6y4ai0Q=
Subject key identifier: 05:AE:12:94:AA:0C:67:DA:BA:10:20:CF:1F:CE:C1:7C:C2:C9:6F:35
Certificate issuer: /CN=658290fe9814fcb062ab71e32ec1f96da9973a33
Certificate serial: 1175A92B
Authority key identifier: 65:82:90:FE:98:14:FC:B0:62:AB:71:E3:2E:C1:F9:6D:A9:97:3A:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZYKQ_pgU_LBiq3HjLsH5bamXOjM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/0d3b13-c4a1-41c0-a839-aede3ffa4457/1/Ba4SlKoMZ9q6ECDPH87BfMLJbzU.roa
Signing time: Sat 01 Jan 2022 03:57:02 +0000
ROA not before: Sat 01 Jan 2022 03:57:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209568
IP address blocks: 194.187.24.0/22 maxlen: 22
2a09:1840::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 292923691 (0x1175a92b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=658290fe9814fcb062ab71e32ec1f96da9973a33
Validity
Not Before: Jan 1 03:57:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=05ae1294aa0c67daba1020cf1fcec17cc2c96f35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:80:8c:8a:ff:76:91:16:44:f9:d6:66:d2:0c:
4b:b2:34:c4:79:f4:53:2a:18:28:12:4c:ec:1b:cb:
33:81:42:94:e1:65:bf:ea:0f:4a:57:2e:fc:ea:39:
e6:46:37:b5:90:ea:ef:c9:43:28:71:be:75:da:e5:
f8:b6:8e:a8:f7:6e:ac:9f:77:b3:96:e5:7b:fc:55:
f5:9e:7d:36:e7:c6:f3:70:1b:b0:be:39:f0:78:d3:
32:a8:0c:df:19:fc:bc:1d:bd:57:70:60:cf:b7:a6:
e6:92:62:51:fb:86:55:7f:5d:0c:f6:b4:51:96:2c:
88:94:cf:a0:a6:3b:26:98:bd:57:f9:69:fd:24:be:
bb:8d:b3:c8:1c:32:07:6e:38:da:e5:f1:d3:d4:e0:
f4:bf:d0:f5:93:d9:fb:a1:61:44:f7:69:fa:ca:d0:
89:59:31:00:a1:c9:7e:b4:89:2f:dd:cb:3b:95:db:
a7:d2:b9:df:5e:03:db:08:b7:3a:b3:a5:e4:cd:78:
53:e3:da:67:7b:e9:96:4a:ec:03:fe:c0:a6:4e:27:
c6:e7:b1:b2:61:bd:4d:0f:f5:d4:e5:d3:7d:0e:63:
ba:16:7e:f4:c1:f0:78:de:9b:21:78:d0:6e:42:50:
5b:46:31:9b:e5:ec:f6:e5:7b:72:36:40:9f:aa:7b:
17:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:AE:12:94:AA:0C:67:DA:BA:10:20:CF:1F:CE:C1:7C:C2:C9:6F:35
X509v3 Authority Key Identifier:
keyid:65:82:90:FE:98:14:FC:B0:62:AB:71:E3:2E:C1:F9:6D:A9:97:3A:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZYKQ_pgU_LBiq3HjLsH5bamXOjM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/0d3b13-c4a1-41c0-a839-aede3ffa4457/1/Ba4SlKoMZ9q6ECDPH87BfMLJbzU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/0d3b13-c4a1-41c0-a839-aede3ffa4457/1/ZYKQ_pgU_LBiq3HjLsH5bamXOjM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.187.24.0/22
IPv6:
2a09:1840::/32
Signature Algorithm: sha256WithRSAEncryption
71:32:dd:1c:8a:ac:a1:80:30:64:e5:e0:14:33:d0:d1:ff:ec:
8b:4d:8a:e3:22:2f:fd:c5:4f:70:72:8d:ac:c2:7e:8e:70:c5:
7a:35:8e:30:83:52:99:63:ca:53:3b:89:d8:de:a3:e6:7b:72:
70:ea:6c:f3:45:ae:af:62:4c:52:de:da:ad:1e:cf:58:be:e4:
4a:1e:f3:5c:03:36:01:49:d7:97:8c:12:66:7b:bc:83:88:0a:
84:e1:42:f2:13:b9:76:bf:be:fe:8e:5e:b4:f3:e8:5d:81:2b:
8f:82:84:78:72:d3:a9:4d:ad:f9:12:9b:db:c3:78:e5:ed:8b:
ad:b4:78:25:c2:fe:bd:a5:bb:86:0a:89:37:f3:29:58:10:c0:
e6:a0:b0:3a:8e:70:25:af:e0:03:03:52:45:dd:30:e7:30:c4:
52:ed:6b:b5:22:70:9c:87:8d:64:f2:26:b9:35:e0:eb:a4:74:
a7:9f:d6:79:02:3f:45:7f:4a:08:eb:15:dc:a8:ee:68:3f:7d:
dd:69:10:7b:e2:5f:f4:49:88:f5:62:b9:2f:d4:38:df:ec:62:
8c:1a:d4:f9:04:ca:e1:39:04:4f:72:1c:04:1f:f4:cc:2d:81:
b2:15:d6:94:1d:a8:36:de:af:53:f3:06:f9:3e:ca:cc:1e:bf:
d9:51:4a:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 23:39:11 2025 by rpki-client