Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/c60ece-561b-4d19-8abf-c1ffa7e5b04a/1/rACXREtTYR55FSlb_tpWJuVFmbM.roa
File: rACXREtTYR55FSlb_tpWJuVFmbM.roa (raw, json)
Hash identifier: k2MH3SiDfGFvqAml+hnCCEFjjgjlUFmmoLlbgPyK8uc=
Subject key identifier: AC:00:97:44:4B:53:61:1E:79:15:29:5B:FE:DA:56:26:E5:45:99:B3
Certificate issuer: /CN=e9cb1687488cf43a7334f9efa4d9cdf635724e9c
Certificate serial: 0185704BAD0DA0F2518E50C71C8BBF03461F
Authority key identifier: E9:CB:16:87:48:8C:F4:3A:73:34:F9:EF:A4:D9:CD:F6:35:72:4E:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6csWh0iM9DpzNPnvpNnN9jVyTpw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/c60ece-561b-4d19-8abf-c1ffa7e5b04a/1/rACXREtTYR55FSlb_tpWJuVFmbM.roa
Signing time: Mon 02 Jan 2023 02:24:45 +0000
ROA not before: Mon 02 Jan 2023 02:24:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 136526
IP address blocks: 194.126.219.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:4b:ad:0d:a0:f2:51:8e:50:c7:1c:8b:bf:03:46:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e9cb1687488cf43a7334f9efa4d9cdf635724e9c
Validity
Not Before: Jan 2 02:24:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ac0097444b53611e7915295bfeda5626e54599b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:f4:bd:bc:fe:b8:2c:49:b1:d9:7b:89:65:9b:
15:64:ef:ea:3d:92:e5:81:b0:70:35:ca:0a:a5:8c:
c1:de:9b:65:fa:97:31:19:d3:44:0e:55:82:f2:cb:
f2:b1:25:7a:bd:c9:ad:2e:0d:b4:a9:71:9f:f5:30:
e8:8d:8f:dd:7f:88:6f:4d:8e:da:2a:e2:ee:cf:0c:
66:f8:12:56:4a:0c:31:8f:ca:c0:a3:a2:63:eb:a1:
8e:e3:be:a9:ec:7a:47:9b:9a:2e:38:5e:80:81:83:
b4:b3:df:34:41:5d:cd:b5:42:45:43:aa:04:cd:7b:
60:c7:6d:b4:5c:da:e9:1d:e1:19:17:1e:da:b9:ba:
84:bf:5a:d6:7d:f1:47:db:fe:8d:a9:19:ae:02:8e:
17:89:50:fa:38:65:46:9a:35:e0:a1:b1:dd:36:0c:
b0:01:fe:94:eb:97:44:46:9d:13:b9:52:77:70:58:
8a:9e:f2:ae:75:43:81:d2:86:8b:02:e7:49:84:e4:
2a:ea:6d:1f:bc:29:54:93:4a:2a:f0:a0:a8:b5:c0:
b2:d9:d2:a2:02:6c:c3:14:7f:40:41:83:43:f6:82:
75:34:ad:4c:ea:c8:d3:d0:3d:97:c0:e7:b1:1c:13:
20:47:d8:27:ab:ab:2c:c1:90:7e:c2:b7:cc:64:f3:
a9:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:00:97:44:4B:53:61:1E:79:15:29:5B:FE:DA:56:26:E5:45:99:B3
X509v3 Authority Key Identifier:
keyid:E9:CB:16:87:48:8C:F4:3A:73:34:F9:EF:A4:D9:CD:F6:35:72:4E:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6csWh0iM9DpzNPnvpNnN9jVyTpw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/c60ece-561b-4d19-8abf-c1ffa7e5b04a/1/rACXREtTYR55FSlb_tpWJuVFmbM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/c60ece-561b-4d19-8abf-c1ffa7e5b04a/1/6csWh0iM9DpzNPnvpNnN9jVyTpw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.126.219.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:8c:5a:93:aa:ec:59:f1:4e:8f:22:14:a2:7c:bc:d1:0e:a9:
09:7b:85:59:a4:44:30:a7:5b:45:dd:b5:da:d3:d4:15:3c:8a:
71:a9:f0:0d:0c:99:85:33:d4:11:33:a9:29:a0:04:18:7a:d8:
10:1d:f7:67:91:f0:f9:b5:fb:48:66:39:b7:fc:77:50:29:0b:
77:ac:89:98:49:de:02:f9:33:f2:6f:92:aa:8f:fb:7f:0f:37:
ca:80:d0:d6:1f:86:fa:03:4f:8c:b5:e1:16:d6:91:d3:2c:1f:
33:37:87:2e:65:07:b6:e8:a1:6c:b0:60:ef:21:f6:00:ba:41:
97:5d:c9:26:91:ba:77:2b:a3:42:74:95:72:ea:ab:2e:5d:18:
e3:10:0c:03:9d:72:4e:7f:57:92:58:ef:96:12:f6:23:49:78:
e9:d9:43:5a:91:35:ac:eb:0c:f1:4c:5d:9f:33:a5:95:41:f3:
12:35:47:6b:28:31:96:94:cd:41:29:40:f6:ba:ef:29:18:f9:
54:99:10:7b:43:89:23:4b:2a:f3:fd:a3:47:4d:52:4e:dc:b5:
59:f5:ef:d6:97:9c:e6:c0:64:8f:4c:c2:aa:7d:15:b8:4e:6d:
9c:86:0b:b9:44:2d:4b:c0:26:b0:ce:67:3d:58:17:5f:81:be:
85:c8:a7:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 12 12:59:37 2025 by rpki-client