Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/f663a3-684e-4779-88b9-14e6ec020bfa/1/ebKQop9j6C8Jd62F7ue25JuDgWs.roa
File: ebKQop9j6C8Jd62F7ue25JuDgWs.roa (raw, json)
Hash identifier: FqOT4Eu6V5AfcUcuw2gXk+K+VJY6kHg+9mF4TAN1HTA=
Subject key identifier: 79:B2:90:A2:9F:63:E8:2F:09:77:AD:85:EE:E7:B6:E4:9B:83:81:6B
Certificate issuer: /CN=8c36ad879c645aee98ac4a89fc800b9a974e941f
Certificate serial: 019423D6CCF2F04623D28CEE7AD1C6E6E18A
Authority key identifier: 8C:36:AD:87:9C:64:5A:EE:98:AC:4A:89:FC:80:0B:9A:97:4E:94:1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jDath5xkWu6YrEqJ_IALmpdOlB8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/f663a3-684e-4779-88b9-14e6ec020bfa/1/ebKQop9j6C8Jd62F7ue25JuDgWs.roa
Signing time: Wed 01 Jan 2025 21:47:47 +0000
ROA not before: Wed 01 Jan 2025 21:47:47 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 209792
IP address blocks: 194.93.20.0/22 maxlen: 24
2a09:2280::/48 maxlen: 64
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:d6:cc:f2:f0:46:23:d2:8c:ee:7a:d1:c6:e6:e1:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8c36ad879c645aee98ac4a89fc800b9a974e941f
Validity
Not Before: Jan 1 21:47:47 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=79b290a29f63e82f0977ad85eee7b6e49b83816b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:b3:3d:15:cf:1d:a2:e9:9a:53:6f:87:7c:d7:
89:cc:52:52:24:b1:7b:13:8c:9d:8f:7b:27:66:63:
83:bb:5f:78:97:ba:b7:12:e9:9c:5a:08:27:0b:03:
43:59:9d:16:7e:97:6a:40:29:68:be:82:b8:77:9f:
96:ed:b8:52:d4:2d:f7:85:ce:b4:eb:da:0c:da:c3:
19:96:30:4f:e2:5e:3f:8e:0c:20:f9:3b:cd:4b:5a:
85:73:01:a2:f9:6f:b9:fb:c0:7b:2e:ed:5c:fa:b3:
62:73:93:02:7c:a0:2f:ea:23:55:1e:a2:f4:12:a2:
78:ae:0a:8c:d9:1f:c1:8b:3b:59:f3:0c:61:18:b4:
84:34:ad:3b:9c:15:e5:af:1b:ee:fa:8e:d6:5d:d8:
d3:e6:f8:2a:c5:90:d1:8c:91:70:7f:cf:ee:28:3e:
fc:c4:66:1a:ef:ad:74:2f:c2:4f:6a:a8:60:3d:83:
46:f5:ba:ec:8a:c9:e1:38:12:6a:a0:8d:be:83:fe:
8b:de:a3:e9:69:33:5c:06:a2:ed:96:91:a8:99:46:
fa:1b:d0:67:c4:51:c0:a5:ea:1d:97:4e:16:f8:69:
17:80:b0:7c:7c:8a:72:47:96:b9:ae:f3:48:3b:36:
e5:81:11:e2:2f:59:f0:dd:d7:1b:42:bc:99:b9:24:
fc:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:B2:90:A2:9F:63:E8:2F:09:77:AD:85:EE:E7:B6:E4:9B:83:81:6B
X509v3 Authority Key Identifier:
keyid:8C:36:AD:87:9C:64:5A:EE:98:AC:4A:89:FC:80:0B:9A:97:4E:94:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jDath5xkWu6YrEqJ_IALmpdOlB8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/f663a3-684e-4779-88b9-14e6ec020bfa/1/ebKQop9j6C8Jd62F7ue25JuDgWs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/f663a3-684e-4779-88b9-14e6ec020bfa/1/jDath5xkWu6YrEqJ_IALmpdOlB8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.93.20.0/22
IPv6:
2a09:2280::/48
Signature Algorithm: sha256WithRSAEncryption
01:cc:b3:18:db:fe:14:83:b0:04:e8:f4:43:ef:3b:f1:a2:a4:
c0:68:2c:a3:52:5e:06:a9:63:6b:d8:9f:5a:4a:33:ca:4f:c7:
25:ad:0e:c8:33:98:36:7b:39:66:4e:07:2b:c5:58:d2:f2:8e:
28:c8:cd:be:d5:27:e4:95:70:fe:98:52:b2:0d:88:1b:2c:ea:
44:7c:9d:b3:ce:4b:eb:ad:27:c8:92:9f:45:3c:2e:67:a3:2f:
49:c7:d6:23:41:d0:92:24:d0:5f:b1:28:32:61:04:c2:ab:82:
05:ec:2f:63:e4:8f:f4:c8:5d:cb:c3:c8:98:00:2f:bd:b3:dd:
ea:4a:db:6e:8d:fc:99:36:38:73:6e:8f:70:97:9b:d5:3c:39:
e9:3c:9f:1e:94:32:84:f1:69:db:4a:7e:5c:6a:b3:5e:cf:7f:
6b:96:42:e1:28:27:19:f5:d5:aa:18:8b:83:c4:31:c8:74:2e:
e5:96:fc:23:39:34:5d:7f:40:2b:75:d6:8b:3c:da:72:7d:6b:
a1:8a:de:23:ad:eb:1c:61:38:5a:2a:4f:04:93:3f:0c:53:3b:
b8:d8:5c:de:91:0a:c3:b1:03:3f:14:c8:c0:24:19:d3:74:aa:
32:9b:4d:ed:9c:c4:0f:28:c4:36:1a:c3:42:be:51:0c:4d:8e:
6c:6a:64:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 06:39:58 2025 by rpki-client