Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/6a8a62-f54a-4150-adde-19d33e055857/1/Vu1Wz44tBW3Recvb-qbKbp0p19Y.roa
File: Vu1Wz44tBW3Recvb-qbKbp0p19Y.roa (raw, json)
Hash identifier: tPI+cxeowqV5RgJALeFjFG5FAryHW0I6Zz9wqBq7kIA=
Subject key identifier: 56:ED:56:CF:8E:2D:05:6D:D1:79:CB:DB:FA:A6:CA:6E:9D:29:D7:D6
Certificate issuer: /CN=c401a6483dc6f66b78a7a4112d5873dc56647a19
Certificate serial: 01942444E1CB16D4FFA9C81E4503E750D372
Authority key identifier: C4:01:A6:48:3D:C6:F6:6B:78:A7:A4:11:2D:58:73:DC:56:64:7A:19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xAGmSD3G9mt4p6QRLVhz3FZkehk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/6a8a62-f54a-4150-adde-19d33e055857/1/Vu1Wz44tBW3Recvb-qbKbp0p19Y.roa
Signing time: Wed 01 Jan 2025 23:48:01 +0000
ROA not before: Wed 01 Jan 2025 23:48:01 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 8461
IP address blocks: 193.254.216.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:44:e1:cb:16:d4:ff:a9:c8:1e:45:03:e7:50:d3:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c401a6483dc6f66b78a7a4112d5873dc56647a19
Validity
Not Before: Jan 1 23:48:01 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=56ed56cf8e2d056dd179cbdbfaa6ca6e9d29d7d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:58:d3:82:a3:99:45:2e:44:ed:c5:9e:cb:81:
64:b0:d9:17:df:79:77:a1:ae:04:a4:70:d9:a8:55:
3c:3f:64:3c:a8:18:61:c8:48:9c:23:54:25:a2:7c:
6c:05:c0:37:4e:8a:a1:c4:a3:23:19:00:8e:61:d8:
3e:b1:a9:c2:17:52:63:72:b6:66:15:9c:6d:47:14:
a7:74:03:f1:3c:a0:1b:65:05:35:19:f4:bb:3c:1c:
a8:ae:71:98:d7:fc:f2:df:64:3b:df:9b:ac:55:65:
8e:4d:1f:5f:0e:57:19:07:56:17:3e:a9:a1:3a:8a:
66:7d:8e:37:63:f6:77:fe:17:86:92:8d:ea:74:a3:
70:ad:4c:e5:dc:80:b1:04:49:8f:bc:d7:76:c2:46:
4b:63:53:87:87:4f:10:a2:4b:fd:85:6a:c5:fa:91:
bc:61:98:30:fc:c9:05:76:86:5a:ec:21:3d:4f:c0:
c9:f0:33:d3:c5:ff:24:8f:00:25:4b:74:a4:f0:47:
5f:98:31:3f:5a:31:ce:a6:ce:8e:eb:88:f7:0a:61:
34:35:06:95:bc:b6:1c:df:2f:f8:d8:f2:d6:e3:d5:
7c:22:3d:d2:ca:df:74:d5:ef:fd:cc:b2:16:45:c9:
73:93:2f:fd:85:b9:a2:73:43:dc:a2:04:98:fc:d6:
aa:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:ED:56:CF:8E:2D:05:6D:D1:79:CB:DB:FA:A6:CA:6E:9D:29:D7:D6
X509v3 Authority Key Identifier:
keyid:C4:01:A6:48:3D:C6:F6:6B:78:A7:A4:11:2D:58:73:DC:56:64:7A:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xAGmSD3G9mt4p6QRLVhz3FZkehk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/6a8a62-f54a-4150-adde-19d33e055857/1/Vu1Wz44tBW3Recvb-qbKbp0p19Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/6a8a62-f54a-4150-adde-19d33e055857/1/xAGmSD3G9mt4p6QRLVhz3FZkehk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.254.216.0/23
Signature Algorithm: sha256WithRSAEncryption
3d:5d:ee:76:00:3f:b9:53:c3:09:3e:ed:f2:5c:f6:57:f3:02:
33:4c:63:ec:32:ef:6a:fd:f8:7d:9e:cf:c4:78:85:60:92:8b:
b0:0e:b0:d6:45:93:42:80:65:b8:f2:42:8b:61:75:f6:ed:dd:
fa:1d:f5:91:f6:1d:61:38:1e:73:07:c9:15:ab:6a:f5:d0:6d:
4b:d3:ea:09:d9:67:51:2e:f4:58:d3:7a:7c:0e:70:15:05:36:
5b:2e:1a:9b:b7:aa:fc:8f:ef:86:b8:cc:d3:4d:99:17:67:08:
42:d6:29:3b:2d:0b:82:4a:22:d9:88:4f:11:e3:03:f6:73:20:
63:b4:26:79:16:c2:9d:d5:51:0e:67:b9:3b:5f:ca:56:f7:72:
89:a0:c4:fc:fc:da:76:5e:4f:33:bf:72:e8:89:cd:e1:45:bf:
f4:bd:93:db:b9:4a:a7:ed:47:bf:10:db:5c:6a:24:23:31:65:
a7:c9:c1:9f:dd:64:26:fb:a1:50:d0:07:75:0b:ff:41:c9:13:
cf:e3:06:31:93:46:77:b0:5c:ac:31:56:36:ac:4a:2f:6d:b5:
03:50:46:c3:d4:a2:fc:2e:bc:81:3f:b0:8e:ca:17:13:db:a6:
7d:06:8b:15:33:d8:5f:22:a8:e8:a7:c7:13:82:11:36:8e:a0:
e7:c8:64:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Feb 21 13:00:21 2025 by rpki-client