Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/f40486-2cd9-475b-bbe1-16cd8f4fb4b9/1/vRRL6lXZDT1QQeeextawYFp6dTk.roa
File: vRRL6lXZDT1QQeeextawYFp6dTk.roa (raw, json)
Hash identifier: OGSPwUDB+II0bvau8QxtXKLAR/Lr2UnzedciO1U9Xfg=
Subject key identifier: BD:14:4B:EA:55:D9:0D:3D:50:41:E7:9E:C6:D6:B0:60:5A:7A:75:39
Certificate issuer: /CN=f8f19e224c73f83c4fdd196d06608aeb3a881804
Certificate serial: 019427B5BEAF8ACFC1D24563318965FA98C2
Authority key identifier: F8:F1:9E:22:4C:73:F8:3C:4F:DD:19:6D:06:60:8A:EB:3A:88:18:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-PGeIkxz-DxP3RltBmCK6zqIGAQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/f40486-2cd9-475b-bbe1-16cd8f4fb4b9/1/vRRL6lXZDT1QQeeextawYFp6dTk.roa
Signing time: Thu 02 Jan 2025 15:50:09 +0000
ROA not before: Thu 02 Jan 2025 15:50:09 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 197427
IP address blocks: 195.150.9.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:b5:be:af:8a:cf:c1:d2:45:63:31:89:65:fa:98:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8f19e224c73f83c4fdd196d06608aeb3a881804
Validity
Not Before: Jan 2 15:50:09 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=bd144bea55d90d3d5041e79ec6d6b0605a7a7539
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:a7:e6:72:9a:eb:11:0b:e6:85:14:01:b6:dd:
36:95:ec:c7:5b:f9:2b:cc:d2:71:96:9a:77:24:d0:
72:5c:7e:31:ee:25:e2:bc:d5:b2:ac:d4:13:55:e2:
73:8e:ee:e4:c5:13:c4:2f:0a:6f:23:53:c8:6e:b3:
1e:57:37:b6:2d:72:70:cd:4d:c3:09:da:53:59:5e:
2d:e0:fc:1d:c8:df:55:ee:03:2f:b5:32:da:a6:78:
52:bf:b7:d4:a5:5e:03:3f:99:b0:b0:a3:a4:a8:56:
54:a7:25:51:e4:2a:0f:0d:85:e0:2a:6d:58:db:c3:
f4:5d:73:1c:e3:60:1a:6b:87:b8:1a:a8:9e:87:c5:
ea:ba:d1:11:02:e1:51:95:34:f4:51:d4:e4:25:b4:
e0:2d:14:a8:7b:f9:0d:fb:df:3e:35:73:07:40:30:
64:7e:80:a0:6a:7e:07:c2:76:ab:41:ce:91:b4:16:
68:79:41:c3:51:01:ae:b5:1c:79:49:83:f8:fc:26:
b2:76:89:57:d0:8c:42:6a:a8:f1:9f:cc:a2:1a:53:
a9:0a:d1:0d:67:83:4b:3a:5e:b8:67:1a:36:ce:24:
d8:33:22:06:38:57:0b:d1:f2:7f:99:58:14:61:2c:
70:d1:60:01:77:e8:3f:a4:57:8b:40:23:ca:79:71:
6e:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:14:4B:EA:55:D9:0D:3D:50:41:E7:9E:C6:D6:B0:60:5A:7A:75:39
X509v3 Authority Key Identifier:
keyid:F8:F1:9E:22:4C:73:F8:3C:4F:DD:19:6D:06:60:8A:EB:3A:88:18:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-PGeIkxz-DxP3RltBmCK6zqIGAQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/f40486-2cd9-475b-bbe1-16cd8f4fb4b9/1/vRRL6lXZDT1QQeeextawYFp6dTk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/f40486-2cd9-475b-bbe1-16cd8f4fb4b9/1/1-PGeIkxz-DxP3RltBmCK6zqIGAQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.150.9.0/24
Signature Algorithm: sha256WithRSAEncryption
94:f5:ad:13:ca:64:ac:e0:02:2a:b4:36:32:a8:97:9d:1b:7e:
6f:b0:4e:79:89:57:15:78:10:a6:2f:f1:7a:10:4e:05:34:6e:
fb:85:9e:a3:e8:58:c2:75:7b:86:1e:9b:29:97:2d:f9:99:ee:
cb:95:73:ee:59:62:5a:bf:61:90:a7:bd:42:eb:f6:55:7e:4f:
ec:eb:0b:5b:86:cf:38:63:27:d6:b4:17:59:04:07:f2:ff:c2:
70:85:f8:7a:26:73:3b:0d:a9:d3:d5:bf:6b:15:b6:df:d5:5c:
8d:33:e8:b5:9c:01:21:4b:2d:8b:64:4b:a3:69:ee:a7:d2:73:
77:f1:4c:4c:57:e3:32:1c:03:ca:c4:bc:f2:5e:12:ff:96:04:
56:ce:18:10:28:4a:c0:e0:8b:be:11:da:f2:cd:96:83:d7:22:
6f:58:d8:57:0b:a7:5b:9e:b6:d2:74:92:5d:05:45:20:41:fb:
8d:ef:df:cc:f4:78:bf:20:bc:b6:6d:56:58:31:f1:76:94:dc:
a3:3c:bd:aa:14:50:c8:bf:84:14:23:4c:0b:48:8d:fe:29:cf:
c6:34:dd:a5:12:bc:c3:43:b8:e4:40:dc:8d:29:32:51:2e:c1:
c9:f2:a8:4a:63:36:3d:83:f3:c5:b8:b7:84:b9:10:ea:90:d5:
f0:3a:8a:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 05:52:25 2025 by rpki-client