Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/foPGTLvpurRofwWe-6WZJEMxFVs.roa
File: foPGTLvpurRofwWe-6WZJEMxFVs.roa (raw, json)
Hash identifier: +2K44p91XoRqWevHwzVBTjTYiw29msBwLdeNXti6mQM=
Subject key identifier: 7E:83:C6:4C:BB:E9:BA:B4:68:7F:05:9E:FB:A5:99:24:43:31:15:5B
Certificate issuer: /CN=eebbf317e5faf5ef02c9cce79527d5e74b8abcc5
Certificate serial: 01942369CBD251055B62D37F3EC2FCC475C6
Authority key identifier: EE:BB:F3:17:E5:FA:F5:EF:02:C9:CC:E7:95:27:D5:E7:4B:8A:BC:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7rvzF-X69e8CycznlSfV50uKvMU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/foPGTLvpurRofwWe-6WZJEMxFVs.roa
Signing time: Wed 01 Jan 2025 19:48:43 +0000
ROA not before: Wed 01 Jan 2025 19:48:43 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 48031
IP address blocks: 194.32.228.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:69:cb:d2:51:05:5b:62:d3:7f:3e:c2:fc:c4:75:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eebbf317e5faf5ef02c9cce79527d5e74b8abcc5
Validity
Not Before: Jan 1 19:48:43 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=7e83c64cbbe9bab4687f059efba599244331155b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:74:cf:4f:c3:c9:dc:0a:9c:66:8a:41:42:cf:
0f:9d:95:9a:ba:20:c0:42:34:e2:1f:22:13:94:fb:
8e:f1:7f:dc:01:33:f8:c3:b6:b6:77:2d:7f:94:f0:
81:ef:ff:e4:9e:d1:4f:68:7c:1e:19:e7:f2:88:ca:
0e:39:c5:0f:56:c4:e3:4a:88:76:11:fb:e6:f3:44:
80:89:cf:57:aa:04:d6:53:ca:70:82:88:14:27:77:
44:de:16:ec:dc:f1:4b:3f:59:11:97:cf:f0:5d:d2:
25:d7:98:9d:72:31:ca:2b:4c:1a:a1:e2:08:b8:02:
6e:8b:46:ab:9f:6b:6c:8b:ec:f6:aa:b4:68:c4:1a:
d2:c3:fa:21:f6:5d:52:a3:de:aa:e4:13:5e:65:47:
53:ab:4a:bf:86:e0:95:bb:75:e8:47:ce:53:76:9a:
cd:87:f0:86:d0:ce:2a:b3:69:49:46:5a:58:20:eb:
68:29:99:3d:e4:51:12:4c:5b:b1:63:fd:35:90:c8:
61:52:5b:7f:8b:5a:cc:bb:75:54:3a:51:66:0b:fc:
ce:c0:25:0c:7a:22:74:4e:d6:a2:c3:20:0f:bf:38:
ff:99:40:81:97:12:2e:4f:2c:ff:2d:fb:63:f0:05:
1c:ab:ce:06:db:37:dc:17:7f:c7:fe:57:cc:7a:9a:
b4:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:83:C6:4C:BB:E9:BA:B4:68:7F:05:9E:FB:A5:99:24:43:31:15:5B
X509v3 Authority Key Identifier:
keyid:EE:BB:F3:17:E5:FA:F5:EF:02:C9:CC:E7:95:27:D5:E7:4B:8A:BC:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7rvzF-X69e8CycznlSfV50uKvMU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/foPGTLvpurRofwWe-6WZJEMxFVs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/7rvzF-X69e8CycznlSfV50uKvMU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.32.228.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:53:6e:a3:23:cd:7c:dd:9e:7a:7b:c6:15:83:8c:f2:65:a4:
cb:76:83:7b:66:02:29:24:31:35:0d:56:8b:c1:f0:d1:55:88:
bf:5c:26:d0:43:b3:90:8e:8d:2c:62:6c:07:5e:57:a3:12:26:
1a:5b:fd:aa:21:fd:6f:6a:fb:14:fa:e0:f1:10:09:50:1c:d2:
99:e9:e6:c1:9e:45:e5:d5:d1:0e:72:36:6a:93:c9:97:36:1c:
16:7f:a9:af:53:88:79:cb:ba:c0:e6:da:43:de:39:04:29:c3:
8f:2c:3a:98:74:43:c6:ff:e2:ab:a3:b2:7e:f4:96:ad:80:35:
2a:b3:55:02:9c:f3:ca:fb:53:54:4a:58:13:72:c4:bf:3a:90:
ce:7b:90:41:55:82:78:a9:c2:48:56:d9:1f:87:56:34:66:33:
8e:95:c6:c7:04:ca:30:d5:dc:71:12:ee:d2:cf:27:79:29:e7:
b9:d0:4a:11:36:85:84:be:82:49:ed:27:b6:89:eb:55:30:ce:
a7:ab:70:03:b9:77:05:6c:ba:1f:77:89:ca:40:7b:58:4b:79:
b0:88:c3:09:74:0e:03:59:74:db:39:5f:6f:f7:9d:3b:60:23:
e0:34:a3:47:32:08:a7:d7:e2:73:0c:10:ce:40:04:f8:b2:36:
00:b0:13:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:24:11 2025 by rpki-client