Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/1Ejzs79VHP-Qy8CnZq32qhQnTM0.roa
File: 1Ejzs79VHP-Qy8CnZq32qhQnTM0.roa (raw, json)
Hash identifier: cT9DghSf9TAEiGzq+5YNoz95B0o+D2wXqZzE7e4gXxg=
Subject key identifier: D4:48:F3:B3:BF:55:1C:FF:90:CB:C0:A7:66:AD:F6:AA:14:27:4C:CD
Certificate issuer: /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Certificate serial: 019423D72D15C670FD47B6D6E7D50D66295C
Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/1Ejzs79VHP-Qy8CnZq32qhQnTM0.roa
Signing time: Wed 01 Jan 2025 21:48:11 +0000
ROA not before: Wed 01 Jan 2025 21:48:11 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 214231
IP address blocks: 194.67.193.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:d7:2d:15:c6:70:fd:47:b6:d6:e7:d5:0d:66:29:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Validity
Not Before: Jan 1 21:48:11 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=d448f3b3bf551cff90cbc0a766adf6aa14274ccd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:67:3b:2e:0f:37:d5:d2:78:68:8b:a4:6d:33:
3e:b8:89:b2:f8:f8:6d:d5:19:5d:2e:c2:af:6e:a3:
f4:d7:14:15:a0:9c:bb:6a:ef:53:a3:f1:cb:49:5d:
f4:6a:bc:ce:a2:b5:fe:a4:3e:41:21:7b:5d:2e:b6:
70:9b:8f:6b:4b:6d:c8:30:c2:d4:c3:ad:de:a7:7c:
57:c8:4a:b0:27:6c:1b:48:20:99:52:0a:47:77:75:
fc:aa:c8:e0:03:cf:3d:0f:c0:c7:4a:c8:ec:fd:c7:
aa:36:31:43:1f:3a:73:89:77:7a:19:86:b2:48:85:
5d:74:35:8f:45:f5:0d:e6:d6:72:57:ce:fb:ae:1e:
1b:a4:5a:eb:2f:0b:89:8d:e1:f3:d2:75:a9:1f:62:
40:3e:54:2b:b5:65:a0:b2:8c:b0:a3:d4:85:60:74:
ff:87:b9:07:3d:12:8a:5a:eb:82:89:75:cf:81:c7:
c1:3a:b3:bd:5f:70:49:a8:17:6e:a8:c7:25:85:59:
1e:d0:e5:1a:97:ae:b2:dc:cf:fd:08:41:0d:c2:f0:
d9:b2:39:0f:70:22:d2:91:00:fe:c4:68:b6:06:2b:
4f:fd:15:3b:e5:ff:b8:81:db:03:87:14:7c:39:43:
60:d8:14:8d:f0:d8:f5:01:be:1f:78:05:61:4d:2e:
df:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:48:F3:B3:BF:55:1C:FF:90:CB:C0:A7:66:AD:F6:AA:14:27:4C:CD
X509v3 Authority Key Identifier:
keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/1Ejzs79VHP-Qy8CnZq32qhQnTM0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.67.193.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:b1:54:73:3f:d3:a1:56:80:b7:f6:55:40:8b:15:53:43:e3:
1b:97:78:1b:26:54:e6:38:0e:3c:62:79:00:de:e3:87:07:37:
bd:1f:b5:52:6e:51:39:70:70:b8:c3:39:29:0e:cd:29:6b:85:
f1:cc:f1:f6:14:42:c1:0d:95:61:b7:46:35:74:c5:06:96:49:
ce:51:b7:30:49:1c:c6:92:1e:be:f0:bc:2a:51:d0:39:e1:4b:
c0:a8:45:f5:b5:43:af:9d:fa:46:70:d7:cb:3e:de:bf:16:da:
a5:b7:07:de:fe:d1:87:7e:7b:7b:aa:e9:6f:70:ae:d2:68:73:
7b:70:1b:7c:37:67:52:32:28:7d:2e:d6:b2:2a:5a:ac:b0:16:
11:c5:b1:bd:e8:61:db:c5:e4:ef:a3:e1:f0:0a:f7:39:75:e3:
56:a5:e7:61:58:18:b3:14:78:1a:27:29:72:38:d0:02:67:18:
29:48:cc:c9:ff:95:72:1e:12:bc:11:68:c0:a0:71:59:3e:30:
2d:34:10:d4:0b:0f:f6:7c:c9:bc:7b:7b:38:97:84:93:9c:de:
a7:5a:29:b6:cc:86:33:8c:bd:6b:ea:02:1e:a9:04:2d:b7:5f:
3b:f9:7f:bb:94:44:02:c7:db:57:35:0f:24:84:4c:6a:52:e1:
76:9e:33:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 17:45:39 2025 by rpki-client