Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/b6b167-07d4-47bb-be0e-434bc4ad390a/1/BG-f1LRU9DvD1flwP_FVmeNYmRg.roa
File: BG-f1LRU9DvD1flwP_FVmeNYmRg.roa (raw, json)
Hash identifier: 8wxnzFBGiKRdcFixh5bbCy7WA9o15jlX/O3Qnyc8n6A=
Subject key identifier: 04:6F:9F:D4:B4:54:F4:3B:C3:D5:F9:70:3F:F1:55:99:E3:58:99:18
Certificate issuer: /CN=00b032f0261a0ea46fdc19a334e40e35c087f1c7
Certificate serial: 018CC6B92F571C13B17C920DEB7E292FDC40
Authority key identifier: 00:B0:32:F0:26:1A:0E:A4:6F:DC:19:A3:34:E4:0E:35:C0:87:F1:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ALAy8CYaDqRv3BmjNOQONcCH8cc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/b6b167-07d4-47bb-be0e-434bc4ad390a/1/BG-f1LRU9DvD1flwP_FVmeNYmRg.roa
Signing time: Mon 01 Jan 2024 20:31:14 +0000
ROA not before: Mon 01 Jan 2024 20:31:14 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 62240
IP address blocks: 185.94.67.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:b9:2f:57:1c:13:b1:7c:92:0d:eb:7e:29:2f:dc:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00b032f0261a0ea46fdc19a334e40e35c087f1c7
Validity
Not Before: Jan 1 20:31:14 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=046f9fd4b454f43bc3d5f9703ff15599e3589918
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:bf:dc:68:cd:72:42:f7:cc:27:e3:d1:c2:45:
78:08:31:b4:ba:1b:73:9d:78:0e:2e:17:f0:99:ac:
98:2c:e6:ed:24:cd:2c:99:20:a1:08:ed:76:87:29:
7d:e9:a3:93:73:9e:e0:00:5c:14:fe:a8:ec:46:89:
d3:e0:8c:66:02:4c:31:e0:79:33:80:3c:74:db:4b:
11:ef:ed:e9:d6:6f:5a:39:6f:b9:59:0c:ec:65:42:
f9:7b:93:83:90:7b:03:5a:c1:07:fb:50:7f:1d:63:
cf:2c:7f:18:d5:ad:86:0a:09:b4:2b:0a:a7:c7:ad:
a9:a4:ad:aa:af:ef:c6:26:57:cc:dc:10:31:8a:0c:
66:c0:b0:af:f6:6d:6a:9a:3f:35:d0:95:1e:d6:ad:
e3:05:01:29:ac:19:11:6d:49:e5:4b:0e:d4:f2:cf:
b8:7e:65:01:e0:43:93:49:0f:fa:b7:9b:68:bd:1e:
78:3a:9e:8a:31:12:08:3b:ef:58:3e:4d:b7:37:b5:
f1:87:be:88:56:8d:8f:b2:a4:cd:51:e2:1a:21:4f:
a6:ab:43:a3:6f:b6:11:15:20:a9:8c:87:1e:a3:8a:
39:81:ce:69:e6:86:2a:73:8d:57:73:cf:a6:45:4a:
48:f0:df:8b:33:fd:62:97:94:46:20:b7:97:f4:6c:
16:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:6F:9F:D4:B4:54:F4:3B:C3:D5:F9:70:3F:F1:55:99:E3:58:99:18
X509v3 Authority Key Identifier:
keyid:00:B0:32:F0:26:1A:0E:A4:6F:DC:19:A3:34:E4:0E:35:C0:87:F1:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ALAy8CYaDqRv3BmjNOQONcCH8cc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/b6b167-07d4-47bb-be0e-434bc4ad390a/1/BG-f1LRU9DvD1flwP_FVmeNYmRg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/b6b167-07d4-47bb-be0e-434bc4ad390a/1/ALAy8CYaDqRv3BmjNOQONcCH8cc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.94.67.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:51:e4:b6:90:ac:58:46:d2:16:78:fe:f4:ab:e0:39:3b:ec:
0e:42:8f:3f:b9:b7:81:9b:58:e2:0d:e9:ba:a0:d8:b0:a2:31:
12:28:5f:ac:03:23:3b:0c:1f:9a:04:77:69:fc:71:4b:5a:f0:
59:ad:6a:6a:43:d8:0b:f6:bb:90:d7:c0:08:5a:d4:d2:32:a8:
01:b1:b3:33:2a:f1:36:60:fa:2d:8c:26:8f:65:17:da:dd:e2:
ce:cc:7f:ad:df:6d:76:28:75:78:a8:4d:10:df:23:6c:e4:34:
53:18:ae:d0:2b:36:c3:f9:e4:25:f3:d8:4b:db:1d:79:bb:6a:
17:ea:de:41:eb:86:ad:eb:6e:2a:1b:06:07:4d:53:91:52:37:
be:58:d9:6b:67:15:02:1f:61:28:87:10:8b:3b:19:98:52:6f:
49:f7:26:23:52:d9:6f:15:83:b9:bd:0c:92:49:ae:d2:aa:01:
21:a0:25:27:47:b7:d8:91:d6:b6:53:70:28:e2:85:aa:35:f1:
df:bf:0f:54:b3:3b:c5:dd:60:03:bd:4e:ff:1a:f0:f4:91:3b:
bc:49:7f:01:1a:d1:9f:d4:ec:2a:a0:76:1a:f3:02:2a:34:dc:
be:f1:ab:4c:cb:91:5d:c5:6c:c9:2c:c1:ab:e0:92:d4:3d:33:
48:4a:26:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 04:10:07 2025 by rpki-client