Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/d1fac7-7c5b-4fa6-b7e5-9a5d8ba7d803/1/sKDfEqmn_kqAsXwIWzhhmd12UOw.roa
File: sKDfEqmn_kqAsXwIWzhhmd12UOw.roa (raw, json)
Hash identifier: 2ezt4kpAYkFChMkExewFBLhQhfWgH+bVjVxwiW1M4xE=
Subject key identifier: B0:A0:DF:12:A9:A7:FE:4A:80:B1:7C:08:5B:38:61:99:DD:76:50:EC
Certificate issuer: /CN=6552d2cb5a9e8d5689fad67a9605149c6d5ef7ba
Certificate serial: 019424458789E6028BFE5F56A48CF387CD59
Authority key identifier: 65:52:D2:CB:5A:9E:8D:56:89:FA:D6:7A:96:05:14:9C:6D:5E:F7:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZVLSy1qejVaJ-tZ6lgUUnG1e97o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/d1fac7-7c5b-4fa6-b7e5-9a5d8ba7d803/1/sKDfEqmn_kqAsXwIWzhhmd12UOw.roa
Signing time: Wed 01 Jan 2025 23:48:43 +0000
ROA not before: Wed 01 Jan 2025 23:48:43 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 20570
IP address blocks: 194.93.96.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:45:87:89:e6:02:8b:fe:5f:56:a4:8c:f3:87:cd:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6552d2cb5a9e8d5689fad67a9605149c6d5ef7ba
Validity
Not Before: Jan 1 23:48:43 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b0a0df12a9a7fe4a80b17c085b386199dd7650ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:3c:a3:6b:b4:d0:08:fc:30:e0:a8:f4:9a:8d:
3b:86:5e:24:6a:12:71:fb:2b:3d:d3:7f:ff:75:d2:
a6:63:28:b1:81:63:14:c5:14:19:5f:40:f5:20:77:
8e:62:e2:96:77:8a:0e:42:bc:76:b3:56:c5:c9:0e:
07:fd:0e:14:e8:fa:e4:af:56:be:e2:4c:5e:d4:55:
64:57:8f:d7:9a:af:c5:d8:09:fd:d6:cb:f5:21:63:
88:b7:24:f9:6a:c4:96:40:8b:6f:36:72:da:b3:92:
6a:fd:2b:9d:c8:5a:2a:2f:a1:48:c6:56:2b:a1:ff:
83:64:50:0f:2f:c0:6d:f5:6e:fc:ff:14:ee:99:a6:
70:1e:0e:c1:44:2e:68:a5:42:96:ee:b5:f0:f7:f4:
8c:36:c7:52:13:11:72:a4:01:72:21:cd:24:60:37:
c2:2d:68:24:b6:b4:be:e5:69:27:8b:b8:67:ee:23:
40:51:ce:a5:b9:df:b5:e9:69:c8:9f:eb:38:92:c4:
80:b2:be:e8:61:eb:a3:0a:42:44:87:fc:4a:64:f1:
0b:2f:c3:a8:49:f4:7d:37:2e:36:ed:d3:6a:59:5d:
fd:b5:1d:ae:02:67:15:de:69:33:44:d6:fe:b8:3f:
37:e1:ce:51:12:14:fe:3b:d6:a3:1f:1a:ea:e1:ae:
8c:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:A0:DF:12:A9:A7:FE:4A:80:B1:7C:08:5B:38:61:99:DD:76:50:EC
X509v3 Authority Key Identifier:
keyid:65:52:D2:CB:5A:9E:8D:56:89:FA:D6:7A:96:05:14:9C:6D:5E:F7:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZVLSy1qejVaJ-tZ6lgUUnG1e97o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/d1fac7-7c5b-4fa6-b7e5-9a5d8ba7d803/1/sKDfEqmn_kqAsXwIWzhhmd12UOw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/d1fac7-7c5b-4fa6-b7e5-9a5d8ba7d803/1/ZVLSy1qejVaJ-tZ6lgUUnG1e97o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.93.96.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:c3:2d:10:02:ae:62:bb:71:91:df:83:5b:51:02:00:ec:b1:
39:09:49:84:c9:9a:af:05:71:ed:f9:e4:b5:df:19:70:0e:56:
f4:94:9f:24:dd:79:8b:4f:0b:7f:36:3f:29:c6:97:63:2e:63:
ae:30:da:39:0a:3d:28:3b:a1:80:a6:2b:bb:b9:1b:ec:77:fd:
07:32:1d:19:83:b9:f7:32:ac:c8:66:75:69:bd:5f:2e:98:5d:
97:90:11:49:98:99:6c:d4:e3:d5:d6:0b:08:d5:61:0e:34:75:
e9:04:a1:0f:a4:78:95:29:1d:92:c9:07:ef:30:b9:61:81:cc:
c4:3c:dc:50:7f:64:15:4a:04:0e:48:e9:71:47:e1:fe:7e:e6:
48:c7:40:a7:9e:43:69:a8:4e:d3:1e:3c:f3:f8:a6:fe:26:c9:
5a:b4:83:62:db:75:bc:bd:39:f5:db:74:2d:81:f4:19:51:bd:
4c:25:4a:aa:94:7b:3e:e6:54:1f:19:22:ec:4c:9d:07:56:a4:
52:2c:33:fa:1d:6a:b3:1b:3c:3e:42:2e:00:c8:81:bf:92:49:
ca:00:b6:5b:65:08:5f:8b:24:27:10:0f:cd:20:46:4a:bb:43:
30:8f:9d:2e:f5:16:c7:72:90:dc:5e:e5:ee:7d:3b:18:bf:36:
21:f2:ba:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 03:18:37 2025 by rpki-client