Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/2812b8-a2ab-4f73-b8d7-0a5cee43e454/1/cQshJchvdZGInN59R5W-nYgheWY.roa
File: cQshJchvdZGInN59R5W-nYgheWY.roa (raw, json)
Hash identifier: kVVV5ffIEHL5kp3S9Z8pnDlUr+vQr5/FVIPGuoad5mc=
Subject key identifier: 71:0B:21:25:C8:6F:75:91:88:9C:DE:7D:47:95:BE:9D:88:21:79:66
Certificate issuer: /CN=e2287273e21c30682a7a32143d5718029a976820
Certificate serial: 01735C8D
Authority key identifier: E2:28:72:73:E2:1C:30:68:2A:7A:32:14:3D:57:18:02:9A:97:68:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4ihyc-IcMGgqejIUPVcYApqXaCA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/2812b8-a2ab-4f73-b8d7-0a5cee43e454/1/cQshJchvdZGInN59R5W-nYgheWY.roa
Signing time: Sat 01 Jan 2022 14:08:35 +0000
ROA not before: Sat 01 Jan 2022 14:08:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212667
IP address blocks: 195.225.96.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 24337549 (0x1735c8d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2287273e21c30682a7a32143d5718029a976820
Validity
Not Before: Jan 1 14:08:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=710b2125c86f7591889cde7d4795be9d88217966
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:68:f7:b8:f3:5f:bd:6a:92:2f:40:03:94:0b:
8e:85:2b:7c:69:1c:5e:33:59:9b:33:d8:9d:9d:cd:
13:fc:36:ea:c6:d8:fc:1d:94:b1:53:2c:65:31:56:
3c:88:bc:56:46:24:60:de:44:00:8e:29:f2:7b:d1:
2a:ca:d8:dd:d1:c1:6e:bf:9a:61:78:3e:fd:25:dc:
f7:fb:3a:8c:cf:60:52:c0:2e:f7:73:e8:f5:57:c8:
ff:3b:78:e1:6e:71:38:d5:04:f3:8d:89:57:76:c5:
3b:35:f6:d3:18:44:1f:da:8c:7c:89:f5:57:25:87:
2a:03:02:cf:23:b2:a3:81:fa:14:3c:1f:06:e3:02:
9a:93:bb:42:ab:68:f4:63:99:5c:30:43:32:4a:07:
36:0b:50:2b:52:c8:9d:3e:0e:9d:6c:2f:62:d0:09:
d1:ec:5f:85:9b:52:59:f5:5e:da:d2:6b:a1:74:55:
0c:45:c1:9e:f2:f0:11:1b:c5:16:ef:8a:ae:70:5e:
87:5a:16:74:9a:32:c1:98:00:59:0b:fa:ce:8e:9f:
d2:e3:59:4e:0a:1a:ec:5d:4a:a6:07:b3:40:b2:fb:
51:4c:2e:f4:61:66:a9:39:9a:5c:16:40:27:d9:f6:
f6:32:92:38:47:f4:0d:d8:a5:b0:fd:00:d2:a5:17:
48:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:0B:21:25:C8:6F:75:91:88:9C:DE:7D:47:95:BE:9D:88:21:79:66
X509v3 Authority Key Identifier:
keyid:E2:28:72:73:E2:1C:30:68:2A:7A:32:14:3D:57:18:02:9A:97:68:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4ihyc-IcMGgqejIUPVcYApqXaCA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/2812b8-a2ab-4f73-b8d7-0a5cee43e454/1/cQshJchvdZGInN59R5W-nYgheWY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/2812b8-a2ab-4f73-b8d7-0a5cee43e454/1/4ihyc-IcMGgqejIUPVcYApqXaCA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.225.96.0/24
Signature Algorithm: sha256WithRSAEncryption
33:8c:55:70:90:21:88:be:8e:4a:74:81:07:30:19:ed:b6:1e:
44:7a:87:a4:2c:b0:bf:be:21:97:a0:8e:e4:a6:e6:68:4e:3e:
b9:df:70:14:08:de:d8:28:6a:39:1d:96:83:83:0b:e2:05:05:
e2:27:f4:e9:29:06:bf:1f:49:70:5f:d9:90:f1:11:91:63:8e:
40:3a:e2:f2:36:2c:87:b8:24:5b:1f:f0:4c:64:ca:71:78:a3:
fb:74:e6:55:34:c3:ce:0a:ee:06:aa:90:30:7c:ac:74:37:48:
c8:9c:0c:85:84:01:d0:8b:ba:38:b3:4e:07:ad:c0:34:92:f6:
f1:0d:b1:f6:b0:fe:31:d9:95:d7:30:8c:4a:8b:44:c2:da:d1:
c3:21:30:9c:42:8d:da:fd:e4:52:25:42:08:1e:b5:10:40:e3:
d7:25:e4:1d:2c:44:9b:23:ec:ff:0a:d2:bc:73:70:f8:2c:53:
d3:ec:ff:d8:cb:fd:69:1e:54:76:a0:1a:78:8c:73:d2:38:34:
fa:0f:54:ab:f7:19:ae:2d:9b:5e:9b:12:d8:19:a5:10:9c:58:
62:c7:e2:48:2b:58:e8:65:1a:7c:11:dc:bf:d7:73:fb:ab:07:
9f:cd:6b:fd:8b:f1:1b:a1:42:9c:cc:82:71:83:ef:46:aa:08:
39:ed:65:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 00:00:34 2025 by rpki-client