Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/a3fcae-27d9-404e-986c-c8f1834ca193/1/G4NL8fF1qlamC5OFSPsqROkJ9lA.roa
File: G4NL8fF1qlamC5OFSPsqROkJ9lA.roa (raw, json)
Hash identifier: kE+wn6E9pIzEvnE46xKmO3sqgfF69A542ClXdQodhXU=
Subject key identifier: 1B:83:4B:F1:F1:75:AA:56:A6:0B:93:85:48:FB:2A:44:E9:09:F6:50
Certificate issuer: /CN=7075bbe4538815802030afec052706ca34342ce8
Certificate serial: D47F1D
Authority key identifier: 70:75:BB:E4:53:88:15:80:20:30:AF:EC:05:27:06:CA:34:34:2C:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cHW75FOIFYAgMK_sBScGyjQ0LOg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/a3fcae-27d9-404e-986c-c8f1834ca193/1/G4NL8fF1qlamC5OFSPsqROkJ9lA.roa
Signing time: Sat 01 Jan 2022 05:53:15 +0000
ROA not before: Sat 01 Jan 2022 05:53:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49392
IP address blocks: 194.104.143.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13926173 (0xd47f1d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7075bbe4538815802030afec052706ca34342ce8
Validity
Not Before: Jan 1 05:53:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1b834bf1f175aa56a60b938548fb2a44e909f650
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:66:58:3f:a6:7e:cb:f1:ab:fd:d9:e0:94:4c:
c4:be:43:84:8b:27:b4:c2:a0:7d:10:91:4b:8e:cb:
3f:98:6a:57:39:eb:4a:af:33:00:ba:26:02:ea:8a:
54:e0:9a:49:64:5a:54:c4:92:e5:02:a8:72:e8:9c:
cc:d9:f6:bb:99:f5:83:c5:66:d0:05:83:b4:29:39:
f9:05:f8:ef:30:28:ec:91:10:3f:c5:f3:c4:b0:8b:
74:02:7c:c0:52:d6:7f:73:bc:43:44:20:0f:be:8e:
95:ab:f4:2d:0c:01:b4:41:99:93:a8:16:8c:3b:00:
6c:83:de:df:af:df:02:a7:e7:bc:e8:7a:8a:45:4d:
be:76:2a:b1:03:be:ba:c6:fd:9e:11:07:36:d1:04:
23:a2:0f:fa:46:3e:d9:fe:cb:41:21:32:9e:0a:43:
d2:6d:34:54:6f:9f:b2:57:58:aa:89:53:6a:13:ba:
a7:e2:be:ce:67:6a:32:36:92:49:4f:4d:7c:d5:4d:
8a:cd:4f:70:11:f9:43:ea:d4:79:44:6f:46:72:93:
bd:91:58:a9:0b:15:7c:e4:47:bc:20:a3:24:ec:39:
d8:a4:37:f3:d4:ca:ce:63:6b:17:1f:51:34:12:65:
6d:a3:16:f5:e7:f6:13:d5:ec:e3:3a:f4:9e:80:87:
dc:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:83:4B:F1:F1:75:AA:56:A6:0B:93:85:48:FB:2A:44:E9:09:F6:50
X509v3 Authority Key Identifier:
keyid:70:75:BB:E4:53:88:15:80:20:30:AF:EC:05:27:06:CA:34:34:2C:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cHW75FOIFYAgMK_sBScGyjQ0LOg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/a3fcae-27d9-404e-986c-c8f1834ca193/1/G4NL8fF1qlamC5OFSPsqROkJ9lA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/a3fcae-27d9-404e-986c-c8f1834ca193/1/cHW75FOIFYAgMK_sBScGyjQ0LOg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.104.143.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:a6:1f:e6:00:16:8c:e6:e7:b0:9f:aa:97:2f:2b:93:75:dd:
54:8c:5f:21:5f:11:6a:e8:4a:20:1a:d3:5a:ce:8b:aa:80:4c:
f8:a9:96:b9:a3:d7:fb:0b:99:a9:67:f2:6f:bd:1c:6e:48:cc:
44:3a:e7:6b:49:a9:93:aa:2d:b5:38:f4:45:11:c2:c0:bf:c3:
81:8c:3a:c2:b5:98:06:45:90:a8:29:57:48:28:ae:45:38:dc:
c5:2e:1a:33:bf:ea:1d:61:d7:77:f7:56:8c:c7:9b:67:e0:bf:
9a:02:ad:3a:02:85:3c:39:a7:2f:f6:aa:80:70:cb:86:0d:bf:
f9:82:a6:6d:b4:17:8e:c2:f1:53:37:55:bd:1b:76:70:33:d3:
7d:15:39:5f:a1:52:9e:88:40:1f:b9:fb:c8:b6:a2:4b:51:01:
af:f1:98:f6:85:54:c7:77:61:5f:47:2d:4c:81:64:9b:55:36:
0d:79:7d:7c:bb:87:8a:c7:f2:de:35:82:35:20:19:bb:85:8a:
05:5f:49:41:85:c8:70:06:d3:ad:66:e3:4a:5f:29:a7:1b:e4:
f6:29:17:f5:54:31:34:a9:7b:05:d2:66:89:5e:7e:91:51:0f:
38:18:7c:b8:49:bd:89:47:48:6c:c2:0d:f5:cc:c8:9a:cc:5b:
a4:13:a6:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 23:37:41 2025 by rpki-client