Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/VfJKBKeK5aSxS2VSWQYwmNyzZPQ.roa
File: VfJKBKeK5aSxS2VSWQYwmNyzZPQ.roa (raw, json)
Hash identifier: 5DK/DASn/lfYJCuTqK1ubCE9GH4dmpjU1EOTSnYsGXA=
Subject key identifier: 55:F2:4A:04:A7:8A:E5:A4:B1:4B:65:52:59:06:30:98:DC:B3:64:F4
Certificate issuer: /CN=253a3b5f51808168c212c094a2baaff38e16464a
Certificate serial: 019425FD6278A0D4DD7D82C671D1D6B6E249
Authority key identifier: 25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/VfJKBKeK5aSxS2VSWQYwmNyzZPQ.roa
Signing time: Thu 02 Jan 2025 07:49:10 +0000
ROA not before: Thu 02 Jan 2025 07:49:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 203493
IP address blocks: 194.226.42.0/24 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:fd:62:78:a0:d4:dd:7d:82:c6:71:d1:d6:b6:e2:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=253a3b5f51808168c212c094a2baaff38e16464a
Validity
Not Before: Jan 2 07:49:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=55f24a04a78ae5a4b14b655259063098dcb364f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:a8:bb:83:f0:1f:9f:d2:86:1c:46:2d:3f:dd:
4f:39:7f:7d:c4:e4:6d:2c:b1:75:4c:94:32:cd:23:
0d:a4:f6:88:25:03:34:a3:25:ae:ca:5b:1b:2d:79:
cc:51:3a:40:72:81:c7:4c:74:ac:cd:41:95:b3:c2:
79:41:5e:2d:6f:3d:eb:eb:fb:8b:3a:86:9b:3e:bd:
61:02:88:fc:cd:2e:6d:3d:54:61:ed:4e:53:b2:3f:
6d:60:bc:62:c8:6b:af:ec:2e:57:90:28:24:06:69:
7c:40:c0:39:41:08:fb:e7:9a:a7:a2:0d:30:e9:95:
8b:d7:70:2b:a8:f5:9c:87:ca:d1:27:46:8a:e7:61:
33:e4:a3:09:83:72:f8:15:59:dd:e7:07:6b:cc:a3:
ba:62:77:eb:d2:4e:b9:c9:fb:b8:75:5a:19:2f:fb:
aa:b6:ed:23:5d:68:cb:08:f6:79:69:17:34:54:89:
28:d1:0e:0a:92:c5:c3:3a:64:cf:80:93:77:df:78:
c1:a2:5f:0d:91:5c:98:a9:70:68:e3:f0:fb:b1:84:
03:03:c3:47:fc:c9:5c:e8:23:58:40:a5:26:cc:55:
db:74:f2:15:03:27:dd:ea:2f:e8:f2:08:b5:7a:79:
c7:aa:63:a5:2b:37:cf:72:b1:d7:8c:b4:b2:d6:65:
7b:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:F2:4A:04:A7:8A:E5:A4:B1:4B:65:52:59:06:30:98:DC:B3:64:F4
X509v3 Authority Key Identifier:
keyid:25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/VfJKBKeK5aSxS2VSWQYwmNyzZPQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/JTo7X1GAgWjCEsCUorqv844WRko.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.226.42.0/24
Signature Algorithm: sha256WithRSAEncryption
20:47:bc:a0:7c:7c:a5:65:de:f8:0a:9e:fc:f2:5b:50:82:c5:
b7:64:1d:85:cd:ef:ec:81:c4:32:a7:d9:8b:80:bc:72:10:2c:
06:4c:64:49:11:21:f8:d9:b8:28:1e:6a:27:ee:e2:ce:34:03:
aa:15:3d:c7:ee:bf:c4:18:9d:f6:3e:3f:2f:b4:63:e5:88:dc:
70:6d:e3:f5:2a:46:fa:eb:92:00:2b:a2:31:eb:55:9d:f5:4a:
1a:e7:e9:f1:07:21:f5:9f:e1:8b:50:60:18:9e:db:b0:8b:e1:
d4:ca:4d:b1:c6:05:7c:94:58:a7:4e:34:cc:88:77:3c:87:64:
e3:45:2c:cc:53:37:60:e1:a5:08:89:c9:05:ba:29:9a:9a:a6:
e1:da:c9:f6:91:a9:00:ae:f2:a9:c1:e9:23:4a:60:7a:4d:05:
fc:44:9a:94:8c:07:1e:6a:40:d0:db:66:e5:a2:06:cb:bd:4b:
a5:ae:d2:3c:cc:9e:df:1d:90:24:eb:e5:3c:68:fb:45:26:82:
b7:4c:51:b2:34:de:19:80:9a:79:5e:d2:dc:8f:91:4d:32:86:
56:95:09:08:63:58:6c:3c:ed:63:32:94:9f:f0:e7:60:92:14:
c1:6d:32:03:8b:8a:1d:a8:0f:75:b2:b8:6c:e8:44:7b:e8:dd:
3f:5b:19:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 20:34:11 2025 by rpki-client