Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/c92c90-0eeb-4fc2-a7e1-ba14e76548e8/1/OD_06SfZ3_hheASbKyQTBpKLvXQ.roa
File: OD_06SfZ3_hheASbKyQTBpKLvXQ.roa (raw, json)
Hash identifier: ybCs4Tm+I7vGFeJISbNMcOaCuI5hMEk5Vs5Dolkyuw4=
Subject key identifier: 38:3F:F4:E9:27:D9:DF:F8:61:78:04:9B:2B:24:13:06:92:8B:BD:74
Certificate issuer: /CN=cb257316b841d773dcb79ade8a8f3e7259f112ab
Certificate serial: 0194221F82475ABAE333C2FAE3ACF58D6057
Authority key identifier: CB:25:73:16:B8:41:D7:73:DC:B7:9A:DE:8A:8F:3E:72:59:F1:12:AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yyVzFrhB13Pct5reio8-clnxEqs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/c92c90-0eeb-4fc2-a7e1-ba14e76548e8/1/OD_06SfZ3_hheASbKyQTBpKLvXQ.roa
Signing time: Wed 01 Jan 2025 13:47:57 +0000
ROA not before: Wed 01 Jan 2025 13:47:57 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 48955
IP address blocks: 194.106.206.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:1f:82:47:5a:ba:e3:33:c2:fa:e3:ac:f5:8d:60:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb257316b841d773dcb79ade8a8f3e7259f112ab
Validity
Not Before: Jan 1 13:47:57 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=383ff4e927d9dff86178049b2b241306928bbd74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:e7:e7:88:61:61:a2:38:3e:4b:f3:74:d8:ac:
14:7a:24:ec:da:76:ea:33:43:62:ff:f4:bb:07:12:
1c:49:f7:82:19:6b:ec:45:35:e1:19:2e:a1:ce:7e:
55:e9:75:b2:fd:34:17:b4:7a:8a:33:3c:e2:50:8b:
2a:71:9d:80:13:c0:26:b8:c8:b3:d7:52:fc:e6:22:
ac:a2:f4:42:7b:6a:c8:cc:94:86:d7:5a:30:6e:44:
ce:bb:ec:70:56:9c:97:ce:27:f8:27:7c:2d:85:93:
1b:7d:65:44:9a:40:31:4d:34:98:d9:59:45:56:77:
f2:d0:2c:19:fe:ee:29:40:f3:b6:1b:c3:04:05:78:
f0:79:04:53:bb:25:e9:d0:4a:bf:69:9b:a1:24:8f:
6f:73:c9:bf:b0:22:47:b6:6d:4c:1c:89:a8:74:d5:
fb:b9:d5:bf:f2:53:5b:ff:1c:6c:a3:fd:80:c1:17:
97:c2:73:3c:7b:be:74:33:4e:28:a6:56:0b:4d:13:
2d:1b:af:bc:76:b5:b4:a8:64:f5:71:ad:f0:c5:82:
10:e7:83:e0:00:07:45:f7:14:1e:0d:82:86:fb:f7:
b4:91:49:99:25:91:e9:4f:cd:25:54:00:91:c1:a3:
2c:8a:8b:7b:7b:1c:33:68:65:4f:c6:48:b9:59:b1:
59:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:3F:F4:E9:27:D9:DF:F8:61:78:04:9B:2B:24:13:06:92:8B:BD:74
X509v3 Authority Key Identifier:
keyid:CB:25:73:16:B8:41:D7:73:DC:B7:9A:DE:8A:8F:3E:72:59:F1:12:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yyVzFrhB13Pct5reio8-clnxEqs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/c92c90-0eeb-4fc2-a7e1-ba14e76548e8/1/OD_06SfZ3_hheASbKyQTBpKLvXQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/c92c90-0eeb-4fc2-a7e1-ba14e76548e8/1/yyVzFrhB13Pct5reio8-clnxEqs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.106.206.0/24
Signature Algorithm: sha256WithRSAEncryption
9d:83:5d:2c:8b:4a:10:d4:eb:a7:94:7f:a6:0c:21:a3:20:0e:
1a:92:5d:e3:d9:de:fa:d6:84:7b:88:c2:79:92:f2:c1:63:80:
e9:47:03:e7:7f:04:39:18:9f:9d:20:c4:14:2a:9a:85:31:2e:
4c:ee:ae:77:ff:15:b8:42:d9:9e:06:41:52:cb:41:14:c7:13:
12:0e:d7:9f:90:42:29:57:0b:5d:8d:ec:e3:2c:44:ee:82:76:
a9:83:a5:f3:37:41:62:13:30:f5:e4:97:bb:89:6f:7c:ff:60:
38:cc:59:61:2e:1c:9d:63:05:0e:c6:f0:57:27:29:4c:2d:f7:
b1:7d:27:88:a4:75:13:18:53:5f:47:4c:be:fd:c4:c1:53:47:
49:d9:a6:2a:0c:cf:c0:47:ac:a0:ea:d8:3e:43:81:95:e9:cb:
1e:c2:46:97:22:17:e6:c5:1b:c4:47:9e:70:c0:55:7d:4e:b9:
8d:71:6b:36:f5:35:39:bf:90:86:a9:0f:de:a2:1a:db:b4:fd:
e0:6a:29:22:31:3c:23:ca:83:3b:0b:ed:f6:90:14:91:f2:0e:
49:ff:8f:d0:e4:e8:d4:f6:ab:82:6a:d9:fb:90:4b:30:8b:e4:
f4:1b:ce:39:ae:19:19:a2:e9:0b:93:6c:7b:d0:13:53:cf:1b:
a9:97:25:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 11:45:35 2025 by rpki-client