Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/960404-b664-40cc-9cac-54c7c4ee5bb5/1/TnfRZZa2DEP319r9F-J1M2uX-bg.roa
File: TnfRZZa2DEP319r9F-J1M2uX-bg.roa (raw, json)
Hash identifier: 96MJ1Ftk1CjXiFA2P/QFgrE4MRV/eyv9dtWF5pRgqI0=
Subject key identifier: 4E:77:D1:65:96:B6:0C:43:F7:D7:DA:FD:17:E2:75:33:6B:97:F9:B8
Certificate issuer: /CN=6465ecd615f3a6c5639c51e9e3197673152078b8
Certificate serial: 01942143C766684B46ECD1026B610022AC23
Authority key identifier: 64:65:EC:D6:15:F3:A6:C5:63:9C:51:E9:E3:19:76:73:15:20:78:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZGXs1hXzpsVjnFHp4xl2cxUgeLg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/960404-b664-40cc-9cac-54c7c4ee5bb5/1/TnfRZZa2DEP319r9F-J1M2uX-bg.roa
Signing time: Wed 01 Jan 2025 09:47:57 +0000
ROA not before: Wed 01 Jan 2025 09:47:57 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 24772
IP address blocks: 195.182.30.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:43:c7:66:68:4b:46:ec:d1:02:6b:61:00:22:ac:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6465ecd615f3a6c5639c51e9e3197673152078b8
Validity
Not Before: Jan 1 09:47:57 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=4e77d16596b60c43f7d7dafd17e275336b97f9b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:a4:df:e3:c2:21:28:56:43:f1:d7:58:ba:db:
6f:4e:d7:bb:eb:54:38:a0:78:a0:50:a5:04:22:33:
d5:96:48:46:20:8e:5c:b5:d5:a3:90:de:12:d8:4b:
bc:f8:75:bd:2f:c1:a6:35:eb:17:63:3a:ef:74:7c:
64:c8:7e:a6:97:5e:ee:97:80:35:a0:e6:d0:29:c0:
8b:57:b0:77:f1:b8:e8:01:c4:1c:47:d6:27:cc:02:
78:16:32:80:5b:16:a7:1b:e2:f2:fc:08:85:73:95:
8d:01:37:c1:a4:67:ff:20:2b:1f:6c:11:82:05:db:
11:cc:d1:5a:ee:b8:8d:e7:87:9a:8f:54:0f:e2:90:
7c:d1:e0:fa:62:89:4f:85:43:51:19:5a:c9:a9:45:
7e:85:06:01:6b:23:e9:9d:ce:dc:dd:12:eb:74:b7:
0c:82:62:58:54:ca:71:1f:84:ce:1e:f2:af:23:4f:
70:80:a6:da:b7:63:c6:f6:aa:ec:18:dc:08:84:78:
04:a7:e7:1c:bd:b1:42:d4:79:73:e0:5d:93:a7:1d:
cf:d8:03:4a:cd:78:dc:a3:d7:a5:a0:af:39:07:8c:
58:59:b2:93:04:cf:a4:73:16:55:bc:e0:69:9d:93:
6d:32:96:db:bc:5b:f8:82:d6:b2:4d:bc:ee:25:23:
ce:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:77:D1:65:96:B6:0C:43:F7:D7:DA:FD:17:E2:75:33:6B:97:F9:B8
X509v3 Authority Key Identifier:
keyid:64:65:EC:D6:15:F3:A6:C5:63:9C:51:E9:E3:19:76:73:15:20:78:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZGXs1hXzpsVjnFHp4xl2cxUgeLg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/960404-b664-40cc-9cac-54c7c4ee5bb5/1/TnfRZZa2DEP319r9F-J1M2uX-bg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/960404-b664-40cc-9cac-54c7c4ee5bb5/1/ZGXs1hXzpsVjnFHp4xl2cxUgeLg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.182.30.0/24
Signature Algorithm: sha256WithRSAEncryption
67:75:20:1c:52:ec:8c:81:db:59:54:5a:0f:e5:db:79:f4:93:
98:88:58:fc:6f:3d:a7:de:2f:2d:e2:ec:22:df:bb:07:7d:bd:
06:02:e4:6d:24:b9:d4:b4:57:08:bb:4e:20:01:51:5b:df:46:
2a:a0:a0:c5:35:28:46:4c:2d:9d:65:92:2f:1c:16:5e:77:6b:
de:4a:d5:ce:9e:7e:c0:0f:c9:49:e2:0a:68:e0:1e:f0:5b:3b:
7b:a3:91:2d:0e:b9:bf:bc:55:35:4b:a0:e0:78:70:14:31:2c:
b4:cd:39:3f:a5:9f:d3:97:82:30:50:b7:5c:05:c3:69:43:bf:
f8:b6:cc:06:d3:7a:57:4a:f3:bf:b8:6d:99:4e:a6:b2:28:9f:
68:64:82:e0:5f:6d:75:63:d2:1b:19:57:c6:2f:c6:79:83:11:
00:a8:45:02:4a:cd:24:d6:6d:3c:49:f2:b3:c9:c5:ba:6e:2b:
cc:e8:2a:92:b4:19:33:57:be:fa:cb:cc:eb:bb:00:c0:83:61:
d3:79:11:90:62:22:b5:ba:43:68:be:13:26:23:5f:49:ba:e8:
aa:93:72:1b:82:1c:69:72:d3:b6:62:3e:63:36:3f:16:ff:b3:
f2:ec:04:e4:2e:c6:c9:21:a3:30:a7:79:93:2f:b5:16:ef:fa:
10:18:52:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Feb 21 13:07:04 2025 by rpki-client