Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/1940dc-37ad-4cb8-ad3c-56854cc3b4bf/1/6WhV3LR1t3Kf03iFl2ze3ubZXrk.roa
File: 6WhV3LR1t3Kf03iFl2ze3ubZXrk.roa (raw, json)
Hash identifier: OuaG5vVIMMkVzZXz0FD7S9XZn2re5pNRlVsq0jMk/zk=
Subject key identifier: E9:68:55:DC:B4:75:B7:72:9F:D3:78:85:97:6C:DE:DE:E6:D9:5E:B9
Certificate issuer: /CN=99c50f5110d95000de5cbf0113b2ad6d99cb8814
Certificate serial: 018CC64B4059535878CAA2BA45D2D9B5C0B9
Authority key identifier: 99:C5:0F:51:10:D9:50:00:DE:5C:BF:01:13:B2:AD:6D:99:CB:88:14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mcUPURDZUADeXL8BE7KtbZnLiBQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/1940dc-37ad-4cb8-ad3c-56854cc3b4bf/1/6WhV3LR1t3Kf03iFl2ze3ubZXrk.roa
Signing time: Mon 01 Jan 2024 18:31:09 +0000
ROA not before: Mon 01 Jan 2024 18:31:09 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 43872
IP address blocks: 195.234.28.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:4b:40:59:53:58:78:ca:a2:ba:45:d2:d9:b5:c0:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=99c50f5110d95000de5cbf0113b2ad6d99cb8814
Validity
Not Before: Jan 1 18:31:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e96855dcb475b7729fd37885976cdedee6d95eb9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:ac:53:85:bc:2e:c3:1c:cb:3f:6d:b5:54:98:
a9:8b:09:ad:b0:80:9b:9b:7e:c4:f0:b9:62:02:7f:
be:84:a1:4a:1d:57:c6:dc:ab:2f:c8:85:07:1c:7d:
ae:1f:9c:bb:b0:a9:08:03:f5:c1:8e:0e:17:8a:5e:
a1:49:66:6c:2e:72:c3:6e:27:11:2e:fa:15:3e:56:
3e:66:9b:e8:cb:d0:85:9f:37:49:ff:56:48:ca:ec:
23:59:77:bf:2f:9e:07:b0:30:7d:bf:b0:3c:99:a2:
0b:a0:b7:8e:82:88:7a:a9:9b:6d:11:df:28:7a:38:
e1:c5:59:c0:30:f6:cc:85:80:fb:26:a1:4c:79:78:
84:2d:08:14:1d:96:6d:b3:65:78:d7:78:69:51:35:
40:b2:11:8f:f8:f1:32:00:08:7a:ca:87:1a:e5:60:
9f:a0:c4:14:c9:25:b5:8b:42:ff:cc:b2:42:63:e5:
67:cb:e6:e8:4d:3c:ae:c4:e3:bf:59:ff:01:e4:fe:
24:d4:29:33:91:17:c3:37:93:56:30:90:54:da:0c:
48:89:61:cb:a3:66:0a:c9:c6:d9:83:29:a3:08:7a:
f2:1f:96:c7:27:bf:9a:ca:c3:25:2f:bb:2a:e0:75:
0d:88:42:5b:f6:a7:b2:37:f2:88:02:42:48:e2:5e:
8b:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:68:55:DC:B4:75:B7:72:9F:D3:78:85:97:6C:DE:DE:E6:D9:5E:B9
X509v3 Authority Key Identifier:
keyid:99:C5:0F:51:10:D9:50:00:DE:5C:BF:01:13:B2:AD:6D:99:CB:88:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mcUPURDZUADeXL8BE7KtbZnLiBQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/1940dc-37ad-4cb8-ad3c-56854cc3b4bf/1/6WhV3LR1t3Kf03iFl2ze3ubZXrk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/1940dc-37ad-4cb8-ad3c-56854cc3b4bf/1/mcUPURDZUADeXL8BE7KtbZnLiBQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.234.28.0/24
Signature Algorithm: sha256WithRSAEncryption
56:de:87:1c:41:56:40:3d:21:c7:f6:88:3d:9d:61:b4:c6:b6:
92:dc:65:8b:75:51:9d:d9:78:55:cb:f2:bc:b8:15:3b:90:82:
4a:09:2d:bd:ad:c9:c9:cb:1f:52:12:6c:7e:c4:d3:05:b8:da:
5c:6d:e4:30:d4:c8:8d:e3:17:67:ac:97:bf:c1:ec:fd:a2:5b:
28:e8:8a:99:b0:15:ef:0d:ae:ac:3b:83:3d:ad:83:04:65:40:
13:5d:7b:f8:c5:69:48:04:a2:58:45:9c:ff:11:dc:fe:44:2f:
f9:96:60:b7:a9:17:46:5f:0c:50:f5:67:85:3b:a8:54:09:fc:
2a:2f:fa:23:c1:3b:0f:8c:ef:61:3c:5e:52:fb:25:32:ae:5e:
2b:ae:a4:c0:8c:f5:82:fe:a2:c2:d6:10:5f:60:c7:e1:b2:eb:
5f:e0:00:cd:2d:c4:5c:cb:3b:16:60:fa:6c:22:10:0d:e7:27:
37:56:04:b9:8f:ba:68:53:e4:82:23:d2:d2:5b:6f:b7:c7:93:
dd:4c:c0:13:71:9a:02:98:9e:4b:f2:64:7e:1f:82:4c:c7:87:
01:26:dd:59:9b:78:bf:65:a0:f3:45:ee:f1:14:0d:cc:e8:5f:
59:53:5b:7c:18:cc:4e:b5:88:0e:78:fd:25:fd:30:88:c2:04:
5a:a2:70:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:37:57 2025 by rpki-client