Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/ca795e-716d-4be0-9cd9-0a6a5041d0aa/1/pBlChRm5yQvrB2OQudIiKupSooI.roa
File: pBlChRm5yQvrB2OQudIiKupSooI.roa (raw, json)
Hash identifier: +ifbOBWmLNEac9fqKjvL8RlV0D1xTR/enuU2rsReAxI=
Subject key identifier: A4:19:42:85:19:B9:C9:0B:EB:07:63:90:B9:D2:22:2A:EA:52:A2:82
Certificate issuer: /CN=2e766f7f1ba1dab9a7060d012e1e40931efc7488
Certificate serial: 01857094FAF559DC3295A807FE8CE59C3210
Authority key identifier: 2E:76:6F:7F:1B:A1:DA:B9:A7:06:0D:01:2E:1E:40:93:1E:FC:74:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LnZvfxuh2rmnBg0BLh5Akx78dIg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/ca795e-716d-4be0-9cd9-0a6a5041d0aa/1/pBlChRm5yQvrB2OQudIiKupSooI.roa
Signing time: Mon 02 Jan 2023 03:44:49 +0000
ROA not before: Mon 02 Jan 2023 03:44:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39104
IP address blocks: 195.110.12.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:94:fa:f5:59:dc:32:95:a8:07:fe:8c:e5:9c:32:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2e766f7f1ba1dab9a7060d012e1e40931efc7488
Validity
Not Before: Jan 2 03:44:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a419428519b9c90beb076390b9d2222aea52a282
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:3f:87:62:61:58:68:dc:fc:d1:d4:3e:2d:9c:
c5:10:4b:34:fb:7c:35:e9:b3:94:8e:6a:16:98:2b:
53:bb:36:5d:a1:86:ad:e4:a0:a1:28:9f:c2:38:54:
d7:0e:28:f5:a9:07:f8:8f:b3:e0:c7:dc:ef:c5:05:
ce:e3:c9:a9:c8:40:19:1f:26:6f:20:85:98:10:a2:
80:07:91:73:7e:26:30:c0:c5:b0:c8:e9:ce:01:5b:
9b:41:d1:9a:59:59:2c:85:05:40:c6:86:8d:ba:60:
a3:af:8f:39:98:82:da:8d:96:6c:55:1c:31:f9:70:
98:a9:58:c2:95:48:bc:ac:34:13:90:cc:dd:ab:bb:
7b:20:40:4a:21:b2:c6:a2:e4:ca:2c:91:b0:52:96:
2b:f3:15:13:29:f7:ef:5f:71:22:4d:58:46:94:3a:
a9:a7:b3:3f:c1:5e:d9:c6:7b:9a:e9:34:32:24:3b:
42:1f:ac:3a:f4:20:ad:5c:48:aa:2b:29:7c:51:50:
f2:74:55:1f:48:c7:79:a5:0f:fb:fe:6e:03:63:48:
b7:ad:1c:00:c5:ac:2c:7f:a7:f3:77:8a:f0:70:22:
11:c4:95:2f:06:4f:1d:e2:db:aa:6d:d2:f1:35:a3:
bd:5b:fb:43:c5:7f:c7:2b:c7:71:33:03:0e:0c:ce:
ee:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:19:42:85:19:B9:C9:0B:EB:07:63:90:B9:D2:22:2A:EA:52:A2:82
X509v3 Authority Key Identifier:
keyid:2E:76:6F:7F:1B:A1:DA:B9:A7:06:0D:01:2E:1E:40:93:1E:FC:74:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LnZvfxuh2rmnBg0BLh5Akx78dIg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/ca795e-716d-4be0-9cd9-0a6a5041d0aa/1/pBlChRm5yQvrB2OQudIiKupSooI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/ca795e-716d-4be0-9cd9-0a6a5041d0aa/1/LnZvfxuh2rmnBg0BLh5Akx78dIg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.110.12.0/23
Signature Algorithm: sha256WithRSAEncryption
2a:6c:8a:b2:38:f7:11:65:5d:83:56:f2:bb:4d:32:e2:b4:01:
d5:b8:8d:92:6a:b5:04:45:d5:40:62:ac:4b:dc:13:aa:a5:e1:
e3:fd:8e:26:b7:8b:b1:ee:45:90:9a:60:75:9c:8f:e0:b3:26:
9e:55:54:96:45:da:5e:dd:0c:bc:04:f8:57:0e:4a:2a:27:5f:
67:3c:23:ad:33:b7:56:94:2e:90:bb:b8:28:f3:1b:99:24:65:
df:40:a4:47:cc:ad:01:14:f7:c3:42:94:21:cb:f0:12:e5:0f:
48:fc:87:71:48:eb:a3:76:35:f2:12:db:d0:1f:5c:62:4f:34:
a9:4a:85:08:87:25:85:e0:dc:1e:8b:57:da:2c:2f:be:fe:44:
c5:b2:5b:72:79:32:ec:21:53:b6:e3:8d:d6:2a:b4:0f:ed:08:
fe:fb:b4:e2:92:99:f9:07:d1:37:40:a3:af:fd:1b:55:b5:03:
65:f6:a8:09:0d:7f:4a:6f:6e:b2:06:70:67:74:c6:1c:c5:30:
77:94:54:03:e4:dd:49:37:12:33:1a:0b:6f:fd:64:ad:d2:d7:
7f:f2:d8:69:dd:e9:92:d0:db:3b:d0:c2:31:ed:ab:2c:8e:79:
79:77:0a:91:af:00:7c:a3:80:d1:00:b4:78:a4:0b:7c:6e:06:
ab:59:10:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:56:22 2025 by rpki-client