Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/SQyeIvS9IJP7UtMmTGW_fvUq864.roa
File: SQyeIvS9IJP7UtMmTGW_fvUq864.roa (raw, json)
Hash identifier: sgFHxWCX6mlZtvFOm2lRUSak5BQz5+xj75/uzN5NnSo=
Subject key identifier: 49:0C:9E:22:F4:BD:20:93:FB:52:D3:26:4C:65:BF:7E:F5:2A:F3:AE
Certificate issuer: /CN=37518d180923a7f3c00653ec12bc702b95aab907
Certificate serial: 0194258F2025409D0EFC92B0E20F8A51C7F8
Authority key identifier: 37:51:8D:18:09:23:A7:F3:C0:06:53:EC:12:BC:70:2B:95:AA:B9:07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N1GNGAkjp_PABlPsErxwK5WquQc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/SQyeIvS9IJP7UtMmTGW_fvUq864.roa
Signing time: Thu 02 Jan 2025 05:48:44 +0000
ROA not before: Thu 02 Jan 2025 05:48:44 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 210690
IP address blocks: 193.255.56.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8f:20:25:40:9d:0e:fc:92:b0:e2:0f:8a:51:c7:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=37518d180923a7f3c00653ec12bc702b95aab907
Validity
Not Before: Jan 2 05:48:44 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=490c9e22f4bd2093fb52d3264c65bf7ef52af3ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:d5:b4:74:2d:bf:96:fc:d6:7a:c7:29:41:97:
d0:a1:d4:db:2d:63:9b:92:f9:d3:6b:93:ba:e0:6a:
9c:13:36:c3:8e:e0:2c:db:fb:3a:89:77:2b:8a:c2:
b4:03:66:ac:c6:65:03:45:a4:5e:ec:eb:b3:f0:93:
1c:eb:56:ae:fc:66:d3:38:fd:a7:23:46:ef:49:d9:
8f:89:e6:3e:36:29:9a:60:85:a1:9b:f5:e9:ef:6c:
78:b9:4c:d4:4d:2e:0d:73:4a:ee:71:5a:b5:69:3b:
a1:19:dd:cf:94:b1:5e:79:0e:84:b1:98:43:cb:2c:
d4:df:4c:2f:5e:b4:dd:1b:07:cb:d6:fe:cf:83:7e:
b1:f5:86:26:4b:64:ff:e8:1f:d1:61:94:f3:22:8b:
b6:ad:a0:ad:33:e5:35:d2:7d:a6:dd:98:f0:12:ee:
6c:de:1c:c9:97:52:f1:dd:5d:46:51:71:b8:9f:bd:
72:73:10:3b:2e:58:61:e2:84:56:f6:5d:b0:0d:0e:
86:94:14:40:70:84:f4:e1:75:bd:31:0f:83:40:d0:
9c:1b:32:e8:a0:5b:9c:eb:88:9a:a9:19:e2:37:88:
c6:98:4e:64:88:98:ca:21:2b:86:96:ab:1d:19:1a:
95:94:f7:5a:45:eb:fa:42:63:26:3a:ef:e2:91:4c:
e6:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:0C:9E:22:F4:BD:20:93:FB:52:D3:26:4C:65:BF:7E:F5:2A:F3:AE
X509v3 Authority Key Identifier:
keyid:37:51:8D:18:09:23:A7:F3:C0:06:53:EC:12:BC:70:2B:95:AA:B9:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N1GNGAkjp_PABlPsErxwK5WquQc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/SQyeIvS9IJP7UtMmTGW_fvUq864.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/N1GNGAkjp_PABlPsErxwK5WquQc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.255.56.0/23
Signature Algorithm: sha256WithRSAEncryption
29:03:8c:ba:0b:de:6e:4f:b5:ae:75:1e:b8:f3:bf:ba:0d:eb:
f4:26:b2:88:3c:1e:f2:1c:91:06:91:a8:45:78:e8:cc:9c:45:
2c:03:19:22:c7:4c:b8:bd:d4:4d:32:56:9a:d8:4f:56:c9:ac:
ae:5c:16:5a:23:f4:dc:06:ca:e5:72:3b:d7:a8:86:02:47:0b:
f2:97:c0:a9:09:83:ab:18:56:48:02:e1:66:21:75:1f:5a:e7:
01:72:6f:08:80:22:7b:e6:89:24:80:03:60:33:fb:67:19:d9:
f2:f4:d8:bc:f6:88:be:6f:ef:f1:0d:34:5d:a3:d2:43:2f:61:
38:ee:9e:b6:80:0a:18:f0:6e:3b:af:8b:02:f3:ed:a3:45:4d:
75:6d:d5:45:b0:97:82:80:b3:c4:92:a8:e8:f9:d0:d8:cc:29:
25:9e:4b:e5:2a:26:2a:05:d7:57:ed:1c:8d:f7:99:9b:49:4b:
1d:fe:f1:e7:3d:c6:f8:3c:d8:ef:fc:68:8a:4b:9c:57:22:2d:
56:db:4a:3c:1b:e6:c8:25:da:bb:14:4f:95:dd:1f:fa:aa:c1:
05:be:23:2d:36:54:6a:a8:b8:e1:a8:1a:d7:b5:0e:17:b1:fb:
9a:22:13:11:51:fd:fa:8c:e9:95:e1:3a:97:5e:2e:92:e1:ee:
c4:af:9a:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 21:03:54 2025 by rpki-client