Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/508017-e484-4094-807c-86a3a795da49/1/rHov-3jPDASr8pqAM221qg5z_Bk.roa
File: rHov-3jPDASr8pqAM221qg5z_Bk.roa (raw, json)
Hash identifier: rOBx3+ovZLcOfN6Bk9t8wplo+dk/XnT9niAfeGhJ2eE=
Subject key identifier: AC:7A:2F:FB:78:CF:0C:04:AB:F2:9A:80:33:6D:B5:AA:0E:73:FC:19
Certificate issuer: /CN=1da3393991409489ef9fd7460a75a370cae9dca7
Certificate serial: 01856DDD40CE4BA94DE26E35172A8DC0745E
Authority key identifier: 1D:A3:39:39:91:40:94:89:EF:9F:D7:46:0A:75:A3:70:CA:E9:DC:A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HaM5OZFAlInvn9dGCnWjcMrp3Kc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/508017-e484-4094-807c-86a3a795da49/1/rHov-3jPDASr8pqAM221qg5z_Bk.roa
Signing time: Sun 01 Jan 2023 15:04:54 +0000
ROA not before: Sun 01 Jan 2023 15:04:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62579
IP address blocks: 194.45.100.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:dd:40:ce:4b:a9:4d:e2:6e:35:17:2a:8d:c0:74:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1da3393991409489ef9fd7460a75a370cae9dca7
Validity
Not Before: Jan 1 15:04:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ac7a2ffb78cf0c04abf29a80336db5aa0e73fc19
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:f2:04:9e:27:d9:9d:a2:33:9b:b3:3e:97:9c:
2f:8b:1c:6b:be:ef:16:ae:f6:e7:30:8f:8a:a1:f8:
77:e5:f1:f5:81:35:48:fb:6b:eb:fe:62:78:c6:b3:
8e:d3:77:38:85:fa:fa:62:46:73:e6:1e:2b:9f:38:
0a:8b:5b:41:2a:5b:4b:3f:37:29:c2:43:e1:c8:dd:
3b:7a:90:d5:33:8d:15:1e:86:81:fd:32:f9:90:28:
6d:2e:18:05:62:c5:d9:e2:e4:e0:02:4a:47:b8:9a:
69:4e:31:59:9d:e1:ab:5b:35:68:69:0b:32:be:71:
3b:d1:19:7b:a9:1d:69:7e:ba:9b:2a:04:a4:0c:e5:
20:20:ab:be:52:2e:8c:79:fb:ac:96:34:bd:ba:c1:
a8:48:c7:77:99:07:a8:76:5e:02:cd:75:69:f1:5a:
8c:5c:37:87:4f:6c:aa:fc:16:0c:ae:04:f2:63:d1:
18:51:32:01:e9:dc:86:03:45:7f:7e:2f:80:6f:1b:
87:0c:b0:db:1e:28:e0:f6:59:82:b5:a9:04:c4:da:
a0:d1:f6:6e:a4:1c:41:52:5b:fd:b6:47:27:f8:e4:
cc:c1:7f:6f:fa:ba:db:96:72:7f:6b:56:94:fd:95:
90:60:73:a8:45:11:61:82:82:eb:87:d2:1f:a3:85:
16:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:7A:2F:FB:78:CF:0C:04:AB:F2:9A:80:33:6D:B5:AA:0E:73:FC:19
X509v3 Authority Key Identifier:
keyid:1D:A3:39:39:91:40:94:89:EF:9F:D7:46:0A:75:A3:70:CA:E9:DC:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HaM5OZFAlInvn9dGCnWjcMrp3Kc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/508017-e484-4094-807c-86a3a795da49/1/rHov-3jPDASr8pqAM221qg5z_Bk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/508017-e484-4094-807c-86a3a795da49/1/HaM5OZFAlInvn9dGCnWjcMrp3Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.45.100.0/24
Signature Algorithm: sha256WithRSAEncryption
9f:ed:fa:41:12:b0:64:38:78:d4:5d:9c:51:ea:9b:8e:6a:b2:
d2:fc:5f:39:51:57:57:be:49:6a:ce:e3:8a:ff:dd:1c:c7:e3:
a0:44:b0:67:43:83:99:0a:e5:9f:2a:83:d3:7c:81:e1:c7:b9:
39:3d:fc:b0:67:93:de:ec:c9:ff:4e:1a:87:67:ca:4f:f5:99:
e7:3d:82:28:d2:cd:89:68:eb:77:9b:73:c1:f8:6a:5b:9f:71:
d3:76:ff:65:a7:ad:b0:d7:7b:82:45:92:cf:7b:3e:7b:5f:6a:
c8:79:be:13:3e:89:ff:4e:9c:32:3b:cc:f8:41:97:a5:ca:f8:
85:3e:fb:29:b4:89:04:4b:e3:6a:a1:a6:e5:5e:06:2e:3d:47:
69:bc:24:0a:fe:13:34:63:7a:f1:73:fd:95:25:39:eb:b3:07:
13:bc:0f:51:25:ba:15:d5:27:c1:36:7d:6f:92:ae:d7:95:31:
56:5b:91:51:20:d9:e2:8e:9b:72:44:26:d1:31:f3:e2:8f:55:
ad:ef:48:36:60:4a:6f:f0:bd:f2:81:4e:4d:4a:a1:93:4c:9c:
96:74:2b:e0:91:ab:89:94:fd:25:ff:cc:87:b2:c9:6f:84:81:
fd:f3:d5:28:bc:4d:76:82:11:07:ea:11:df:b8:54:35:f7:c3:
ae:16:46:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 07:20:56 2025 by rpki-client