Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/84eedc-a2f6-4a39-a918-f9d9c03d4b4c/1/pGJ6hykI0SezIUBll3Bejkc4eK8.roa
File: pGJ6hykI0SezIUBll3Bejkc4eK8.roa (raw, json)
Hash identifier: LOy2PAU5LyGNlvT8G9Ei0trOR6p2w0dY/EWeeNGTATo=
Subject key identifier: A4:62:7A:87:29:08:D1:27:B3:21:40:65:97:70:5E:8E:47:38:78:AF
Certificate issuer: /CN=68c0f2d0776f7e1d349075881c35e9d387463405
Certificate serial: 0194236A12DB35DD3D263AB7748FEC1E7F4E
Authority key identifier: 68:C0:F2:D0:77:6F:7E:1D:34:90:75:88:1C:35:E9:D3:87:46:34:05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aMDy0Hdvfh00kHWIHDXp04dGNAU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/84eedc-a2f6-4a39-a918-f9d9c03d4b4c/1/pGJ6hykI0SezIUBll3Bejkc4eK8.roa
Signing time: Wed 01 Jan 2025 19:49:01 +0000
ROA not before: Wed 01 Jan 2025 19:49:01 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 214295
IP address blocks: 194.0.234.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:6a:12:db:35:dd:3d:26:3a:b7:74:8f:ec:1e:7f:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68c0f2d0776f7e1d349075881c35e9d387463405
Validity
Not Before: Jan 1 19:49:01 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=a4627a872908d127b321406597705e8e473878af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:b1:25:26:91:89:b4:97:5a:1e:58:14:2b:f2:
5b:8d:bd:c7:21:81:21:1d:40:e6:da:4a:85:6b:c9:
73:38:cf:94:90:77:ff:e6:d6:d5:31:29:8d:14:8f:
25:59:d4:9d:2c:93:ec:91:91:0a:0a:ae:01:8b:12:
61:d5:d9:1d:45:c5:39:af:c0:0c:4b:98:7e:87:b8:
c2:0e:96:da:61:c1:95:0c:4a:33:5b:b1:a8:8c:b0:
98:b8:8c:2f:3b:a0:bd:e8:15:49:94:d9:35:4e:8d:
b6:38:b2:81:d6:4d:49:c7:19:75:66:ee:7c:a7:92:
50:7f:e6:32:32:f6:0a:11:11:73:f7:b1:52:80:b5:
27:dd:76:f7:3f:e2:40:7c:ee:d9:ff:3a:87:40:a1:
7f:3a:cd:a3:52:79:de:0a:94:7d:ef:90:a8:01:39:
f0:1a:03:b7:71:39:45:c3:5f:6d:e0:60:1b:40:ab:
21:09:a7:3f:8c:c7:25:62:50:98:7e:14:41:e2:e4:
83:28:df:a0:57:bf:d9:45:c2:df:21:e7:f3:5b:d2:
17:fa:b7:29:30:53:7d:4e:72:c8:db:53:5c:05:12:
c0:39:7c:dc:f9:7d:35:bd:d3:f6:5c:18:fb:4d:e0:
dc:9f:4a:d5:e4:b0:4a:d4:78:fa:d0:71:eb:ca:92:
c7:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:62:7A:87:29:08:D1:27:B3:21:40:65:97:70:5E:8E:47:38:78:AF
X509v3 Authority Key Identifier:
keyid:68:C0:F2:D0:77:6F:7E:1D:34:90:75:88:1C:35:E9:D3:87:46:34:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aMDy0Hdvfh00kHWIHDXp04dGNAU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/84eedc-a2f6-4a39-a918-f9d9c03d4b4c/1/pGJ6hykI0SezIUBll3Bejkc4eK8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/84eedc-a2f6-4a39-a918-f9d9c03d4b4c/1/aMDy0Hdvfh00kHWIHDXp04dGNAU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.0.234.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:fa:ba:d3:03:65:1f:18:8c:0a:c1:bd:bc:72:b1:c5:ef:45:
88:c0:bf:cf:94:3d:1c:58:27:c1:1e:1b:ae:73:76:a3:c9:68:
0b:06:fb:96:2e:7f:56:92:7f:52:30:25:23:14:2b:e4:a5:60:
b8:68:48:74:f1:8d:17:fc:fc:93:bb:45:78:d2:7a:7d:51:e9:
02:6f:e1:d6:70:9e:27:d5:0c:64:1f:76:d2:66:d4:d0:6e:55:
b8:fa:de:71:f9:38:52:46:5d:61:37:cf:2c:19:8c:77:0b:d1:
34:18:03:26:c9:cd:5a:f0:5f:27:a6:38:d6:73:6f:8a:39:e9:
84:0a:a5:43:f3:cf:41:3b:61:e5:f6:46:54:c8:b2:d8:31:82:
4f:37:d0:4f:c9:04:bd:ed:c8:6a:5c:5a:3b:cd:cb:70:d8:bf:
9a:bc:4f:a9:dd:ad:e5:11:ba:b5:9c:62:55:e8:a1:b3:34:64:
e0:08:4e:de:1e:04:62:f4:ac:b8:23:ad:3c:16:e4:21:9c:e1:
fd:b6:5e:9c:ed:bd:dc:e4:2c:f2:fc:ce:a0:11:50:fd:f0:c7:
75:19:77:18:e5:22:98:0e:97:96:f9:a7:9d:7d:f3:fe:65:70:
f4:c3:ca:e6:a6:21:73:43:74:d6:ea:f0:4f:1c:e5:c8:27:c4:
cf:ab:cf:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Feb 21 11:03:02 2025 by rpki-client