Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/82f0f1-2147-49fd-a4d6-b7b574eedc33/1/cI6ygQGiL63b_jUf8EbJMNudVls.roa
File: cI6ygQGiL63b_jUf8EbJMNudVls.roa (raw, json)
Hash identifier: jGSahsSzX8it9YtB8VHA9v9PZIZtOICWIIydubFYNX0=
Subject key identifier: 70:8E:B2:81:01:A2:2F:AD:DB:FE:35:1F:F0:46:C9:30:DB:9D:56:5B
Certificate issuer: /CN=3ae145fe3b79b2bf68aadbe007def6d72aef2ac3
Certificate serial: A6CA3C
Authority key identifier: 3A:E1:45:FE:3B:79:B2:BF:68:AA:DB:E0:07:DE:F6:D7:2A:EF:2A:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OuFF_jt5sr9oqtvgB9721yrvKsM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/82f0f1-2147-49fd-a4d6-b7b574eedc33/1/cI6ygQGiL63b_jUf8EbJMNudVls.roa
Signing time: Sat 01 Jan 2022 02:55:43 +0000
ROA not before: Sat 01 Jan 2022 02:55:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50869
IP address blocks: 194.126.235.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10930748 (0xa6ca3c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ae145fe3b79b2bf68aadbe007def6d72aef2ac3
Validity
Not Before: Jan 1 02:55:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=708eb28101a22faddbfe351ff046c930db9d565b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:7f:49:c8:e6:5a:d5:38:6a:ec:ee:3a:fa:75:
9c:ed:e5:5b:84:81:5f:b6:2b:e7:ac:a4:56:3e:9e:
81:78:aa:d6:08:c6:e8:3d:ee:db:d4:4f:63:26:07:
7c:d1:8e:bf:79:48:72:51:02:8b:d1:74:90:ee:75:
01:bc:81:96:ae:83:9b:0d:ba:8d:e2:5c:a2:d2:12:
48:29:d5:b3:30:f9:e5:d6:f0:63:81:b3:85:be:88:
5b:98:2d:18:55:a8:ce:e1:d1:bb:0c:66:be:bd:4b:
0b:5b:a8:18:6c:80:94:09:2f:e6:b6:38:b4:ef:29:
56:aa:2e:46:98:70:2a:fd:f3:ef:2b:9d:66:fd:68:
f3:6e:6d:8a:4c:0a:1b:a3:2a:ff:aa:6e:9a:d7:27:
39:ea:c6:9b:1d:b9:da:c6:c0:2b:0b:98:fb:11:7c:
44:41:21:4f:c3:3c:44:cb:e7:a9:be:22:ef:60:e6:
11:ec:c5:9a:08:25:72:a9:19:7d:66:a2:1c:00:46:
27:f9:ec:67:71:cc:46:48:ab:51:9f:0f:c4:87:da:
a0:8c:02:e6:f1:b4:aa:d4:b3:81:90:fc:84:d2:b3:
81:17:ef:56:8e:42:68:8e:17:c1:74:96:19:73:a9:
3a:c1:62:4e:f1:5e:08:63:cf:7f:a4:98:aa:a5:4d:
61:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:8E:B2:81:01:A2:2F:AD:DB:FE:35:1F:F0:46:C9:30:DB:9D:56:5B
X509v3 Authority Key Identifier:
keyid:3A:E1:45:FE:3B:79:B2:BF:68:AA:DB:E0:07:DE:F6:D7:2A:EF:2A:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OuFF_jt5sr9oqtvgB9721yrvKsM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/82f0f1-2147-49fd-a4d6-b7b574eedc33/1/cI6ygQGiL63b_jUf8EbJMNudVls.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/82f0f1-2147-49fd-a4d6-b7b574eedc33/1/OuFF_jt5sr9oqtvgB9721yrvKsM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.126.235.0/24
Signature Algorithm: sha256WithRSAEncryption
b8:83:87:79:ea:e7:af:c7:6b:82:03:d9:15:b5:51:77:91:81:
bc:bb:41:22:ce:97:7c:d1:60:a0:fc:dc:95:37:05:d2:9e:ee:
2f:4b:2d:6e:a2:00:66:46:bf:36:3d:ee:9b:c8:ea:6e:5d:05:
0c:b6:fd:6c:30:9d:f4:e9:5e:73:c6:9a:04:42:ab:9e:75:33:
95:0a:1d:66:8c:8f:70:a7:cf:30:25:d0:9d:93:ea:a6:01:d2:
87:92:e4:36:51:de:c9:4d:7b:78:13:cf:f0:2e:6c:42:ba:6c:
bd:8f:4e:2c:c0:43:9c:da:47:94:d4:a2:2a:48:d9:49:69:44:
3f:05:10:52:f9:96:02:83:e2:bb:3a:01:b5:17:3c:25:5c:b7:
48:47:13:de:ac:85:f0:d7:cd:6f:d0:1a:06:c8:88:54:d1:89:
87:b4:da:e4:f3:80:13:0b:64:b8:43:ee:51:ff:18:9f:72:17:
89:04:97:d4:fc:39:cd:f6:13:ef:e9:8d:a0:c6:eb:f7:9c:c0:
b7:15:79:dc:97:39:8c:33:21:31:e4:13:94:d4:22:7a:99:b7:
72:3a:65:c9:2f:ff:4e:86:58:e3:d9:13:d3:59:e2:d5:4c:09:
ee:ae:59:97:bb:f2:4b:7b:84:39:a2:de:13:45:0e:63:13:01:
cc:85:8a:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 21:17:09 2025 by rpki-client