Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/48cb86-2750-4d6a-8a71-1be525576863/1/39Un2irT3vRnFLuHxGBE878fMjY.roa
File: 39Un2irT3vRnFLuHxGBE878fMjY.roa (raw, json)
Hash identifier: VXPju17S+n3lT0ANkh7ZgkvfMovpQZS4rP8PB69G+3w=
Subject key identifier: DF:D5:27:DA:2A:D3:DE:F4:67:14:BB:87:C4:60:44:F3:BF:1F:32:36
Certificate issuer: /CN=c8f6f5dec09bc7a1203045699ba058295d38e346
Certificate serial: 03E42ADD
Authority key identifier: C8:F6:F5:DE:C0:9B:C7:A1:20:30:45:69:9B:A0:58:29:5D:38:E3:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yPb13sCbx6EgMEVpm6BYKV0440Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/48cb86-2750-4d6a-8a71-1be525576863/1/39Un2irT3vRnFLuHxGBE878fMjY.roa
Signing time: Sat 01 Jan 2022 00:57:11 +0000
ROA not before: Sat 01 Jan 2022 00:57:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207239
IP address blocks: 195.64.140.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65284829 (0x3e42add)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c8f6f5dec09bc7a1203045699ba058295d38e346
Validity
Not Before: Jan 1 00:57:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dfd527da2ad3def46714bb87c46044f3bf1f3236
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:e5:b1:2c:31:0d:e8:9c:7c:a0:9e:c1:cc:16:
01:35:1f:d0:b1:83:1b:b6:b0:92:d9:ca:69:5a:65:
ae:8a:a4:7d:cc:bb:b3:af:08:30:e4:38:17:b6:48:
6a:be:c7:44:2e:28:a0:56:1b:eb:8e:b6:d8:95:bd:
1b:90:12:14:32:f9:4a:15:9b:e7:6e:b3:ca:f5:93:
d0:8c:e3:ff:5e:14:c0:ad:9f:d6:cc:c3:68:4f:2c:
6d:bc:d2:eb:53:2b:f0:87:62:56:8f:45:26:9b:55:
ca:9e:13:52:7f:7e:2d:b5:d2:36:f4:c4:43:93:f4:
e9:7a:57:3a:34:3e:cb:6c:f8:2f:89:1c:26:4e:48:
92:33:d6:82:41:a5:77:bf:36:5e:b1:7c:ab:ef:13:
87:96:fa:b4:b1:6b:06:1b:97:6e:ee:c5:4e:b8:47:
a9:7c:c9:3a:b7:59:c2:f0:d1:b9:df:13:1a:f1:b5:
aa:03:d6:21:9a:e0:91:88:da:de:93:c8:e2:aa:ac:
04:91:4b:1c:6c:fc:90:54:43:cc:65:e5:cb:f1:e2:
4e:b1:f0:17:55:ba:ff:9b:2f:23:09:f5:32:ab:4b:
27:75:c4:50:61:5e:c5:8a:4d:80:81:8b:72:aa:6c:
53:d3:af:78:24:be:65:1a:3a:bb:ba:6a:af:28:de:
1d:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:D5:27:DA:2A:D3:DE:F4:67:14:BB:87:C4:60:44:F3:BF:1F:32:36
X509v3 Authority Key Identifier:
keyid:C8:F6:F5:DE:C0:9B:C7:A1:20:30:45:69:9B:A0:58:29:5D:38:E3:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yPb13sCbx6EgMEVpm6BYKV0440Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/48cb86-2750-4d6a-8a71-1be525576863/1/39Un2irT3vRnFLuHxGBE878fMjY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/48cb86-2750-4d6a-8a71-1be525576863/1/yPb13sCbx6EgMEVpm6BYKV0440Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.64.140.0/24
Signature Algorithm: sha256WithRSAEncryption
20:1f:d7:2d:8c:48:e7:68:05:3d:53:1a:16:fe:0c:c8:77:23:
33:e2:35:a4:3c:00:fc:2e:64:7c:23:fc:a0:85:07:e5:47:23:
d4:7e:65:55:06:50:3b:13:ae:a4:fa:e2:39:08:02:5c:bd:2c:
b2:e9:87:d4:94:e7:30:a6:ea:ef:fe:da:db:96:7b:74:8a:95:
ac:0b:d3:a5:a6:61:f8:fb:90:bd:54:8d:d0:3a:df:10:ee:96:
3a:18:93:af:81:d9:46:80:8a:e9:c8:1e:90:60:b3:c3:9c:3d:
a1:38:9f:ac:c5:23:88:77:de:b9:48:9d:35:42:2d:0f:bf:30:
f5:cb:b2:24:1a:cc:4a:3c:1d:8f:1e:af:8a:1b:d8:15:12:48:
67:ac:01:e5:c4:db:1e:e0:72:98:ab:1c:b2:1b:bf:41:2c:f0:
d4:62:69:3f:a0:41:78:43:dd:be:fe:3e:5e:49:ef:21:94:fe:
2e:57:e2:ac:55:20:9b:db:e7:a7:85:4e:2e:78:1a:53:75:0a:
73:b7:2b:06:31:53:82:91:7a:34:f2:e7:a3:9d:26:ec:86:b7:
31:aa:e0:06:5e:78:bf:6b:c0:c7:67:24:56:2e:e6:5e:11:75:
ca:c9:b4:b8:d4:e7:bb:43:61:32:67:68:42:57:bb:84:73:ea:
93:e0:6e:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 18:44:22 2025 by rpki-client