Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/3fa45d-61b6-4a26-8d7f-8d9d752c4f4a/1/JExy0vnBpyXtQRXrczW-rXsvlvc.roa
File: JExy0vnBpyXtQRXrczW-rXsvlvc.roa (raw, json)
Hash identifier: uayvEFxY8m7ytIfb/FnA/i1VKT8AyOarqBsheJam/Mc=
Subject key identifier: 24:4C:72:D2:F9:C1:A7:25:ED:41:15:EB:73:35:BE:AD:7B:2F:96:F7
Certificate issuer: /CN=1f74988332069e1835246a85a1094125152b3765
Certificate serial: 0194266B35D16406B1363A054405279F70E8
Authority key identifier: 1F:74:98:83:32:06:9E:18:35:24:6A:85:A1:09:41:25:15:2B:37:65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H3SYgzIGnhg1JGqFoQlBJRUrN2U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/3fa45d-61b6-4a26-8d7f-8d9d752c4f4a/1/JExy0vnBpyXtQRXrczW-rXsvlvc.roa
Signing time: Thu 02 Jan 2025 09:49:07 +0000
ROA not before: Thu 02 Jan 2025 09:49:07 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 200387
IP address blocks: 194.49.8.0/24 maxlen: 24
194.49.9.0/24 maxlen: 24
194.49.10.0/24 maxlen: 24
194.49.11.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:6b:35:d1:64:06:b1:36:3a:05:44:05:27:9f:70:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f74988332069e1835246a85a1094125152b3765
Validity
Not Before: Jan 2 09:49:07 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=244c72d2f9c1a725ed4115eb7335bead7b2f96f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:bc:64:8b:48:36:25:83:50:1b:75:d2:92:96:
fe:b1:18:d9:b4:28:e5:06:b2:cf:cd:12:b6:39:75:
c1:6b:9a:73:40:5a:18:c9:33:ab:cb:5b:f6:92:ab:
45:41:d2:d9:63:a7:f6:40:b9:18:33:84:a7:30:df:
96:91:a0:60:b3:55:ef:28:1b:e4:a5:97:a0:d0:9e:
2d:c6:8a:b8:fe:da:0c:80:19:4b:ce:bf:80:83:35:
2a:b1:79:21:fb:6d:1c:e4:5f:69:7c:fc:c5:89:4a:
fb:dd:c0:c8:45:10:81:5b:93:1f:2b:2a:ba:d4:e0:
70:58:c7:55:b2:ac:c4:73:7f:24:45:31:db:10:02:
ae:fe:64:f1:94:27:5d:df:cf:24:e8:73:a9:6f:18:
64:7c:54:fc:8d:f2:69:55:86:6d:5c:ca:6c:0b:f2:
e2:76:9c:13:8d:8c:54:82:b4:cd:c3:ce:56:96:a2:
3e:fe:f9:da:de:fc:cf:a5:74:d2:da:6c:82:6f:fc:
95:cc:01:6d:4e:e6:f2:2f:e1:50:a0:41:53:f2:2a:
26:8d:06:ef:6f:36:85:d8:a4:16:7d:7f:f9:7a:06:
2a:17:47:4f:07:de:4a:cd:65:ee:02:56:ee:4d:96:
10:91:9b:48:34:00:37:2c:f6:2d:3a:99:96:60:fb:
a4:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:4C:72:D2:F9:C1:A7:25:ED:41:15:EB:73:35:BE:AD:7B:2F:96:F7
X509v3 Authority Key Identifier:
keyid:1F:74:98:83:32:06:9E:18:35:24:6A:85:A1:09:41:25:15:2B:37:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H3SYgzIGnhg1JGqFoQlBJRUrN2U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/3fa45d-61b6-4a26-8d7f-8d9d752c4f4a/1/JExy0vnBpyXtQRXrczW-rXsvlvc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/3fa45d-61b6-4a26-8d7f-8d9d752c4f4a/1/H3SYgzIGnhg1JGqFoQlBJRUrN2U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.49.8.0/22
Signature Algorithm: sha256WithRSAEncryption
ad:24:36:63:31:fd:1e:06:1f:1d:bf:48:78:26:e9:d5:aa:a8:
eb:7d:50:9c:9e:c8:64:85:55:03:df:c6:43:57:14:c3:89:6f:
96:c8:b9:36:41:a9:c3:61:70:7f:3d:ed:ba:b9:3c:bb:36:86:
d4:8d:99:70:fb:48:96:6a:84:30:45:ee:8f:20:37:64:68:bb:
86:35:8c:62:a5:7b:14:b6:38:5e:a3:56:08:b3:ee:4a:9a:b6:
d7:d5:2e:7b:63:cb:53:89:3d:eb:4d:d4:ad:26:ec:90:12:bc:
7e:6d:e3:e6:f6:2a:11:41:48:43:d3:58:62:36:cf:cc:05:d2:
65:7f:70:b6:38:47:51:8a:94:6a:13:8f:69:16:d4:93:d3:98:
ca:c7:b5:aa:83:bc:f9:1e:db:59:1f:3e:cb:52:3e:40:4f:05:
0e:57:05:43:9a:0c:c6:9d:60:0b:d2:02:f6:f3:93:cd:21:a7:
d0:89:6a:7c:35:aa:f3:bc:15:95:43:f5:f1:99:b7:64:33:2f:
24:14:f0:63:52:1e:5f:18:c7:c2:15:a3:58:e7:5c:49:ea:68:
c3:82:c1:25:03:91:29:99:64:1b:10:37:2a:3e:b2:22:1f:4c:
d9:83:dc:af:b4:22:68:23:61:96:96:c2:7d:2b:e6:60:67:52:
cb:ad:fb:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 02:39:08 2025 by rpki-client