Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/4b2c23-f535-4b6d-a445-e04dac61ce9d/1/j7ph1xFBs0MWNVt9udcCJXXzBEI.roa
File: j7ph1xFBs0MWNVt9udcCJXXzBEI.roa (raw, json)
Hash identifier: b+N43kqTE0jfX2C+M9LwxS/gPLGBPUPCdAw73VTzTVs=
Subject key identifier: 8F:BA:61:D7:11:41:B3:43:16:35:5B:7D:B9:D7:02:25:75:F3:04:42
Certificate issuer: /CN=b68f940f1cc577f370f28428850dc7bf7418f121
Certificate serial: 01942368D73C12C2A958A084E95D36ED00AB
Authority key identifier: B6:8F:94:0F:1C:C5:77:F3:70:F2:84:28:85:0D:C7:BF:74:18:F1:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/to-UDxzFd_Nw8oQohQ3Hv3QY8SE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/4b2c23-f535-4b6d-a445-e04dac61ce9d/1/j7ph1xFBs0MWNVt9udcCJXXzBEI.roa
Signing time: Wed 01 Jan 2025 19:47:40 +0000
ROA not before: Wed 01 Jan 2025 19:47:40 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 35280
IP address blocks: 193.26.125.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:68:d7:3c:12:c2:a9:58:a0:84:e9:5d:36:ed:00:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b68f940f1cc577f370f28428850dc7bf7418f121
Validity
Not Before: Jan 1 19:47:40 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=8fba61d71141b34316355b7db9d7022575f30442
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:04:f4:93:c8:d3:76:3a:8a:83:cc:b5:f6:22:
84:63:74:6e:59:39:0f:c7:06:66:18:1d:02:ee:f9:
0c:4c:f9:9a:6b:42:d0:1b:b5:da:aa:c3:30:f9:f6:
11:a8:33:76:1a:0a:12:2a:08:5d:83:79:30:85:f0:
a4:76:5c:29:f5:27:1f:92:eb:6d:f1:4f:fe:29:39:
20:1a:46:ba:96:e5:5f:ca:a1:7f:a4:18:8f:f7:2f:
2f:7a:9c:01:81:65:05:d2:fc:53:54:8e:b7:69:f7:
6d:01:3b:87:21:7a:49:70:d0:dd:83:18:84:21:cb:
22:82:be:a1:ff:91:4f:fe:37:34:c6:a6:a2:ec:94:
e8:ce:98:f4:27:9e:0e:f4:e8:61:95:6b:2d:22:c4:
2c:8f:76:68:1c:6f:dc:f8:42:5e:48:fe:44:c2:b5:
52:9d:58:ad:bd:01:62:9c:67:e5:27:94:ac:c6:12:
01:c9:87:55:4a:de:f7:17:76:84:ec:46:d3:f9:61:
7f:c1:00:ce:5d:2b:af:e0:2f:a7:33:ce:92:85:16:
75:a0:3b:95:2e:ca:48:05:ed:a3:8f:07:ed:89:a4:
7c:71:82:22:4b:ab:3a:fd:2e:e8:88:04:aa:3f:24:
fe:aa:5e:ff:bc:16:3f:bc:f1:9d:8b:66:a3:a0:14:
a0:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:BA:61:D7:11:41:B3:43:16:35:5B:7D:B9:D7:02:25:75:F3:04:42
X509v3 Authority Key Identifier:
keyid:B6:8F:94:0F:1C:C5:77:F3:70:F2:84:28:85:0D:C7:BF:74:18:F1:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/to-UDxzFd_Nw8oQohQ3Hv3QY8SE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/4b2c23-f535-4b6d-a445-e04dac61ce9d/1/j7ph1xFBs0MWNVt9udcCJXXzBEI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/4b2c23-f535-4b6d-a445-e04dac61ce9d/1/to-UDxzFd_Nw8oQohQ3Hv3QY8SE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.26.125.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:c3:f8:88:a2:88:73:e7:85:f0:81:9b:b0:8b:f2:13:cd:21:
84:71:fa:5c:bc:de:28:0b:30:fa:72:3f:1a:f0:37:22:bd:46:
9e:d9:0f:b9:ad:c5:56:c1:b6:79:68:5c:a2:83:eb:49:94:66:
e9:06:ab:be:95:af:95:f4:21:93:7b:36:28:01:ae:33:b3:4b:
72:db:25:a7:27:f7:d6:50:2f:aa:fe:c3:47:17:e6:d9:45:95:
26:f4:de:5c:13:59:c8:d5:12:b9:fb:03:56:58:89:9a:6a:e1:
17:5f:40:4f:51:3e:a0:63:c5:6e:4d:67:54:ed:bc:02:68:ce:
4f:5a:c2:ea:82:08:a0:fe:e9:27:6c:95:5a:e4:a6:41:d1:35:
68:6e:76:34:d9:27:a6:08:8a:94:13:e3:d8:7d:64:62:73:c0:
d2:17:92:30:bb:1f:f0:e9:17:08:31:41:0f:14:65:64:62:50:
0d:92:57:8f:31:f7:a3:71:bb:5f:a2:87:42:96:71:7d:b4:27:
96:8d:65:e1:9a:b4:a2:28:83:dd:b8:09:44:82:96:36:97:6d:
84:6b:4b:1a:f9:5c:65:4e:62:7d:0d:7a:bd:8b:02:42:8d:6c:
f1:ca:9a:15:1e:a1:5d:b4:fc:59:ea:82:ba:5a:17:83:f2:3d:
31:54:1c:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 02:56:24 2025 by rpki-client