Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/1bd1be-cdde-45ae-a124-a7bd83a8f56c/1/FjrlAXrbDvDS2HfDrOYX8s6VeoI.roa
File: FjrlAXrbDvDS2HfDrOYX8s6VeoI.roa (raw, json)
Hash identifier: rrLNQtMJaYm4qKAUxLrF7WkgOLeuL0rvTXSBW6y9Fvw=
Subject key identifier: 16:3A:E5:01:7A:DB:0E:F0:D2:D8:77:C3:AC:E6:17:F2:CE:95:7A:82
Certificate issuer: /CN=5f45b134c091410e31423eac2ccad0aedb8a6ec5
Certificate serial: 019424450960BFD0E0B904E20A38B7A54FD6
Authority key identifier: 5F:45:B1:34:C0:91:41:0E:31:42:3E:AC:2C:CA:D0:AE:DB:8A:6E:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X0WxNMCRQQ4xQj6sLMrQrtuKbsU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/1bd1be-cdde-45ae-a124-a7bd83a8f56c/1/FjrlAXrbDvDS2HfDrOYX8s6VeoI.roa
Signing time: Wed 01 Jan 2025 23:48:11 +0000
ROA not before: Wed 01 Jan 2025 23:48:11 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 25460
IP address blocks: 193.32.18.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:45:09:60:bf:d0:e0:b9:04:e2:0a:38:b7:a5:4f:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5f45b134c091410e31423eac2ccad0aedb8a6ec5
Validity
Not Before: Jan 1 23:48:11 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=163ae5017adb0ef0d2d877c3ace617f2ce957a82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:a6:5f:c5:db:27:78:0a:66:18:5f:e7:1e:dc:
41:6b:a0:9a:8c:51:40:fb:14:01:e0:89:2c:da:fb:
53:50:ac:03:bb:55:21:21:f2:9d:3f:8b:45:e9:a9:
27:e0:a4:07:8a:ef:f8:c4:1d:20:38:57:e0:ee:50:
60:3f:54:de:3b:73:fb:ab:92:b1:a2:b8:56:84:f5:
e4:4b:f2:b4:86:1c:5a:08:58:2c:a1:cb:09:34:99:
8e:d1:be:3d:af:25:b0:dc:2b:54:72:40:16:0e:be:
74:90:3a:f3:7e:ee:04:95:a7:4a:92:ed:7d:68:e2:
e3:7d:cc:4c:dc:f6:33:29:dc:8f:8d:64:36:6e:5b:
46:24:f0:82:39:25:6f:ed:bb:24:d9:95:b1:31:77:
83:c8:ae:8f:42:30:f8:0a:d9:a2:93:ec:55:71:f1:
ec:d4:da:0c:e0:9c:fd:90:61:e6:57:9e:24:aa:aa:
45:03:ef:a1:92:7b:d6:06:90:94:f7:49:a6:b5:b1:
0d:a8:cb:c7:aa:f5:a0:a2:73:bc:32:ab:b6:24:8e:
56:ef:6d:a5:bd:2f:8a:cf:b7:78:12:8a:e7:b8:ca:
de:2a:1d:47:a4:94:47:f7:71:c9:ae:06:3c:96:ed:
87:af:7c:fe:3f:be:0b:69:9f:a6:36:70:9b:ab:75:
0f:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:3A:E5:01:7A:DB:0E:F0:D2:D8:77:C3:AC:E6:17:F2:CE:95:7A:82
X509v3 Authority Key Identifier:
keyid:5F:45:B1:34:C0:91:41:0E:31:42:3E:AC:2C:CA:D0:AE:DB:8A:6E:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X0WxNMCRQQ4xQj6sLMrQrtuKbsU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/1bd1be-cdde-45ae-a124-a7bd83a8f56c/1/FjrlAXrbDvDS2HfDrOYX8s6VeoI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/1bd1be-cdde-45ae-a124-a7bd83a8f56c/1/X0WxNMCRQQ4xQj6sLMrQrtuKbsU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.32.18.0/24
Signature Algorithm: sha256WithRSAEncryption
26:f1:ef:fe:e3:11:c6:72:36:9d:5d:11:fe:9c:b3:4b:9a:54:
a2:76:21:49:29:ac:4c:d5:25:1c:89:3c:41:32:05:7c:b8:b0:
59:2f:26:8f:f1:47:e2:ac:33:5d:4d:d9:81:d6:f8:af:ba:c2:
20:89:09:65:a7:98:91:f2:26:1d:75:16:17:09:59:6b:64:62:
df:3b:2a:cd:97:b5:41:b4:ca:21:99:a1:89:64:2f:cc:34:bf:
d9:97:c7:aa:fd:ff:8d:ae:7e:4e:5b:7b:9f:d8:8a:4d:69:15:
d9:9c:60:41:cc:86:af:c9:8e:77:40:32:6f:3d:3a:e5:73:af:
76:aa:9e:65:c3:be:03:69:e2:e8:9f:b3:ce:6e:2a:1c:21:09:
0c:80:f9:d2:a3:10:f0:16:b5:ad:82:7e:74:b6:00:bb:4b:18:
cb:dc:0b:7d:7e:f7:01:83:38:cd:22:ae:ec:0b:89:9c:80:ae:
b1:b4:4c:cc:7e:a3:c2:19:e7:55:2d:10:e5:51:c0:bd:2f:f5:
2f:5e:69:4b:6a:40:54:bd:28:bd:83:10:fc:33:da:c5:c4:0c:
f7:78:f4:2b:80:84:6f:74:a5:91:02:23:d6:76:9e:88:40:3d:
32:21:be:fb:64:4b:21:9a:2f:17:5d:7c:4d:f8:2c:09:8f:a0:
cf:1d:ee:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 02:44:30 2025 by rpki-client