Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/6453af-df05-4eb8-8c9f-fb2048eb6a4c/1/ODKF9Uri4baXPmooG4gqhNkWntU.roa
File: ODKF9Uri4baXPmooG4gqhNkWntU.roa (raw, json)
Hash identifier: wwA4wRqSUWBxvlZXDCrbyieqIapPLghGXD6RCpwhVZA=
Subject key identifier: 38:32:85:F5:4A:E2:E1:B6:97:3E:6A:28:1B:88:2A:84:D9:16:9E:D5
Certificate issuer: /CN=b04a937aae2c67e50fe10ad9945649f455584d1a
Certificate serial: 032C9318
Authority key identifier: B0:4A:93:7A:AE:2C:67:E5:0F:E1:0A:D9:94:56:49:F4:55:58:4D:1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sEqTeq4sZ-UP4QrZlFZJ9FVYTRo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/6453af-df05-4eb8-8c9f-fb2048eb6a4c/1/ODKF9Uri4baXPmooG4gqhNkWntU.roa
Signing time: Sat 01 Jan 2022 11:04:07 +0000
ROA not before: Sat 01 Jan 2022 11:04:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208685
IP address blocks: 194.107.77.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 53252888 (0x32c9318)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b04a937aae2c67e50fe10ad9945649f455584d1a
Validity
Not Before: Jan 1 11:04:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=383285f54ae2e1b6973e6a281b882a84d9169ed5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:fa:53:88:27:bd:f0:74:56:a7:44:84:02:03:
4a:cb:31:f7:e1:2d:3a:81:fd:f3:31:01:46:de:7a:
9b:50:1a:f5:47:92:81:0e:26:bf:60:78:1d:f2:0f:
ec:3d:dc:e7:f2:90:b0:24:d8:b6:eb:c4:d6:b8:85:
6a:94:1c:66:28:45:f4:56:38:4a:4b:37:fb:29:c7:
b2:9a:49:f6:4f:68:b5:06:8b:07:a7:cc:cf:cf:d2:
51:8e:d0:9a:0c:0d:0b:c9:2a:8f:47:ab:6d:50:e3:
97:27:03:5d:8e:bf:69:00:e2:6f:5b:1b:5d:d2:23:
c7:94:9c:26:93:1c:95:f5:69:e9:e1:85:39:06:2c:
bc:b8:db:2c:fe:c0:d1:39:33:a0:e2:6d:3f:ec:6e:
08:fc:7f:b3:cb:08:ff:29:0f:a5:b3:a8:00:ca:01:
95:66:76:79:f2:1c:9b:ed:b0:76:62:48:ae:03:a3:
c3:b3:01:ed:31:e2:3c:9a:7a:22:1f:db:c1:b7:2f:
c5:da:72:7a:b0:12:cc:8b:3f:e4:a7:83:b5:8c:2c:
03:30:86:2d:4e:43:56:fb:83:d4:a6:f4:f6:4e:3b:
0d:03:cc:12:87:cd:a2:5d:54:8a:fb:da:e4:8a:c8:
13:1d:46:29:a7:d7:92:7b:12:78:6d:d7:5d:35:e3:
c3:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:32:85:F5:4A:E2:E1:B6:97:3E:6A:28:1B:88:2A:84:D9:16:9E:D5
X509v3 Authority Key Identifier:
keyid:B0:4A:93:7A:AE:2C:67:E5:0F:E1:0A:D9:94:56:49:F4:55:58:4D:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sEqTeq4sZ-UP4QrZlFZJ9FVYTRo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/6453af-df05-4eb8-8c9f-fb2048eb6a4c/1/ODKF9Uri4baXPmooG4gqhNkWntU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/79/6453af-df05-4eb8-8c9f-fb2048eb6a4c/1/sEqTeq4sZ-UP4QrZlFZJ9FVYTRo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.107.77.0/24
Signature Algorithm: sha256WithRSAEncryption
69:ff:c8:86:5c:b5:c1:79:a5:8e:3d:03:d9:9d:49:1a:15:33:
aa:ca:95:90:f1:70:d3:11:85:ff:ee:9c:90:97:98:72:d6:ee:
74:e5:93:0f:e3:d7:6f:33:ff:cb:dd:bc:ed:78:1a:24:c8:6d:
b3:d3:2a:64:80:29:5c:d0:e7:c1:19:00:6c:43:54:cd:a5:23:
eb:5d:d4:2c:a3:d0:56:a6:1f:8d:b8:c0:c3:ab:96:43:90:00:
f4:f5:02:6b:68:c0:ea:f8:05:fe:08:d7:6f:4c:e8:1e:6b:51:
f0:a8:be:af:88:9b:d8:3a:f7:da:fa:32:0a:8b:3f:d1:6e:49:
45:39:9b:52:60:4f:7d:00:51:10:7a:bb:0b:d8:b3:11:59:18:
85:24:b9:43:4f:d0:ea:bc:f9:db:7f:67:44:41:86:f2:ba:15:
48:7d:8c:e1:b4:06:67:d1:1c:d9:82:1a:b8:0e:ce:e4:0e:70:
59:e0:80:3e:e6:c8:b0:fa:d9:e9:ef:77:25:01:ee:44:da:80:
e4:a6:51:06:d9:7a:96:23:46:b8:d5:40:f6:df:6a:b7:80:9a:
06:c1:cb:8f:81:6f:db:8e:94:91:44:6c:df:42:42:16:e6:9c:
f7:16:e5:fd:0a:b4:4f:76:d9:e9:96:90:eb:00:7c:10:ff:16:
a0:1f:7e:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 20:53:07 2025 by rpki-client