Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/2c950e-7d3a-4cad-841f-2c014b740c3b/1/Sj4J_mFP2lQkR8Pqu4-vUWhntlo.roa
File: Sj4J_mFP2lQkR8Pqu4-vUWhntlo.roa (raw, json)
Hash identifier: OyHUO8zUzkjWGYsEn0Hm1G4SAQZ+8DrBTjWOD/M90zc=
Subject key identifier: 4A:3E:09:FE:61:4F:DA:54:24:47:C3:EA:BB:8F:AF:51:68:67:B6:5A
Certificate issuer: /CN=05712e88949d5a435a33e7040c9fb7e7a8244395
Certificate serial: 0194214441CF758649275E0468F9CCFC8F8F
Authority key identifier: 05:71:2E:88:94:9D:5A:43:5A:33:E7:04:0C:9F:B7:E7:A8:24:43:95
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BXEuiJSdWkNaM-cEDJ-356gkQ5U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/2c950e-7d3a-4cad-841f-2c014b740c3b/1/Sj4J_mFP2lQkR8Pqu4-vUWhntlo.roa
Signing time: Wed 01 Jan 2025 09:48:28 +0000
ROA not before: Wed 01 Jan 2025 09:48:28 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 42547
IP address blocks: 194.50.117.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:44:41:cf:75:86:49:27:5e:04:68:f9:cc:fc:8f:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05712e88949d5a435a33e7040c9fb7e7a8244395
Validity
Not Before: Jan 1 09:48:28 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=4a3e09fe614fda542447c3eabb8faf516867b65a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:1a:bd:db:ae:62:67:1c:e4:26:2a:99:25:f0:
95:d3:28:85:ee:60:aa:54:83:46:12:ee:3b:47:ad:
ce:23:9a:3d:37:30:8c:23:cc:01:ea:58:22:4a:c4:
a6:01:74:ab:ae:03:5b:9b:d4:30:3c:fd:43:5b:70:
41:51:70:ce:a6:50:53:2d:8f:3d:0a:2b:f4:ca:ea:
68:ac:3f:34:d6:d5:6a:81:bd:dc:13:22:98:34:0b:
11:8a:39:5d:5e:1a:90:ce:c6:74:b4:dc:c8:41:88:
67:1e:5c:d6:1b:18:48:fd:78:30:df:21:34:20:8c:
54:7b:a6:0c:83:3b:35:95:8f:9f:eb:eb:bc:e6:97:
a1:37:d3:39:b1:11:67:02:b6:80:5c:59:1c:36:34:
cf:b8:df:a7:2a:da:7f:99:2f:19:b6:c8:39:6d:84:
d8:6f:28:8d:6e:8c:52:96:c4:52:9e:c6:f9:df:87:
04:ac:c5:e2:ab:01:c5:70:33:a1:a5:bb:7d:41:89:
59:af:b7:54:8b:07:67:a1:6e:83:cd:02:e0:b1:48:
ef:63:76:5a:57:11:66:36:02:2f:29:13:d1:3e:85:
f5:13:3b:b5:fb:62:83:c8:18:9b:36:f7:d9:0e:a5:
26:62:73:c4:d8:a5:7e:a1:af:67:be:b2:a8:32:f0:
13:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:3E:09:FE:61:4F:DA:54:24:47:C3:EA:BB:8F:AF:51:68:67:B6:5A
X509v3 Authority Key Identifier:
keyid:05:71:2E:88:94:9D:5A:43:5A:33:E7:04:0C:9F:B7:E7:A8:24:43:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BXEuiJSdWkNaM-cEDJ-356gkQ5U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/2c950e-7d3a-4cad-841f-2c014b740c3b/1/Sj4J_mFP2lQkR8Pqu4-vUWhntlo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/2c950e-7d3a-4cad-841f-2c014b740c3b/1/BXEuiJSdWkNaM-cEDJ-356gkQ5U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.50.117.0/24
Signature Algorithm: sha256WithRSAEncryption
99:f8:fd:12:6d:8c:e6:55:11:30:21:ee:00:54:c9:e5:80:0a:
22:95:87:ea:79:1d:85:7b:06:bd:b5:63:9b:b2:04:7d:7c:db:
52:f1:1b:20:42:c6:63:a3:07:ea:d8:cf:cf:4a:e3:3f:9c:62:
ab:98:5f:ed:24:94:9f:8b:b2:4f:a5:e9:e8:a0:0f:41:9d:5d:
f4:b0:a9:a0:26:63:bb:d1:cc:5e:3b:ea:84:67:60:0f:0b:f2:
27:ea:cf:7b:f0:ae:a4:8a:08:b9:ae:79:19:c9:7f:1d:41:f4:
22:e8:aa:28:7c:bf:c9:4c:d2:86:df:6c:5d:10:97:6f:94:8d:
af:ce:0a:df:5f:ad:57:62:c9:22:19:79:25:1e:93:a7:05:44:
14:fa:e8:d3:87:6b:bd:39:44:af:29:34:06:c1:5b:e3:5e:3f:
11:72:0d:e7:57:ec:28:53:91:80:cf:3e:1d:99:38:30:28:ae:
1a:ff:b4:a6:3a:ed:58:a8:1e:75:9a:96:16:f4:ee:a5:d1:c9:
8f:0c:5e:a7:05:b3:b5:03:fe:2b:d4:6c:0e:82:ac:76:7b:70:
58:f6:95:03:ff:52:76:56:74:9d:36:c0:e0:f6:d0:0f:48:d2:
0b:2a:d2:8d:0f:e7:45:c3:02:62:20:18:e2:6e:91:73:83:93:
84:9c:5f:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 23:55:58 2025 by rpki-client