Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/d87d60-5c58-4289-95f4-aadb79a60395/1/4dGvv1Fmv3tssbsU8SRG7NmMvlY.roa
File: 4dGvv1Fmv3tssbsU8SRG7NmMvlY.roa (raw, json)
Hash identifier: iQWnDXmB5UiAkbFKjif1J+Fvc/xjpnVf+2347iz3aNo=
Subject key identifier: E1:D1:AF:BF:51:66:BF:7B:6C:B1:BB:14:F1:24:46:EC:D9:8C:BE:56
Certificate issuer: /CN=fe4db7a73ef8bdf49ffbc5422aedb9524e5660e2
Certificate serial: 0185719552B2CC0BC758F1ED12FBF47A9518
Authority key identifier: FE:4D:B7:A7:3E:F8:BD:F4:9F:FB:C5:42:2A:ED:B9:52:4E:56:60:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_k23pz74vfSf-8VCKu25Uk5WYOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/d87d60-5c58-4289-95f4-aadb79a60395/1/4dGvv1Fmv3tssbsU8SRG7NmMvlY.roa
Signing time: Mon 02 Jan 2023 08:24:49 +0000
ROA not before: Mon 02 Jan 2023 08:24:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57497
IP address blocks: 194.62.17.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:95:52:b2:cc:0b:c7:58:f1:ed:12:fb:f4:7a:95:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fe4db7a73ef8bdf49ffbc5422aedb9524e5660e2
Validity
Not Before: Jan 2 08:24:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e1d1afbf5166bf7b6cb1bb14f12446ecd98cbe56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:f8:a2:d1:2b:32:0d:35:2d:6e:ac:d4:2b:83:
c2:f3:37:af:29:cf:26:95:06:ef:78:27:22:e7:61:
f4:ba:f5:e2:bb:32:da:63:64:cb:a1:8a:6c:52:a4:
7a:e2:af:20:87:81:9a:fd:99:2e:93:0b:ec:99:a0:
40:a3:37:71:81:ed:51:c7:6b:9f:94:b6:51:73:bc:
88:27:b5:a7:f0:c8:5e:eb:00:14:6e:69:ac:ca:17:
32:ed:d5:41:5c:59:b4:1b:0e:7d:9d:63:ce:23:30:
c2:e7:fe:aa:45:15:69:3f:b8:01:02:6f:4f:65:d7:
09:f9:01:c6:71:0b:7f:20:52:a8:b7:34:47:cc:f8:
48:41:8c:ad:0d:7d:1a:c1:7a:40:10:64:80:c0:ea:
5a:ad:ad:47:09:22:bd:a0:7d:0e:5b:f9:fb:8f:14:
59:13:17:b5:ec:50:3a:20:df:7d:cf:50:3a:8f:6f:
ad:2d:df:b9:97:9a:ca:d4:77:4d:04:2d:cb:d9:cf:
75:a0:a0:1a:9a:c1:41:c7:89:8d:54:ae:08:5c:da:
8b:ab:92:bd:6c:cd:29:1e:7a:0e:7f:59:72:60:22:
c1:3a:3e:60:0f:70:b3:71:e9:6d:a0:e2:21:a0:e0:
3a:a7:e5:3f:04:c7:85:57:60:ba:e9:36:91:00:97:
23:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:D1:AF:BF:51:66:BF:7B:6C:B1:BB:14:F1:24:46:EC:D9:8C:BE:56
X509v3 Authority Key Identifier:
keyid:FE:4D:B7:A7:3E:F8:BD:F4:9F:FB:C5:42:2A:ED:B9:52:4E:56:60:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_k23pz74vfSf-8VCKu25Uk5WYOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/d87d60-5c58-4289-95f4-aadb79a60395/1/4dGvv1Fmv3tssbsU8SRG7NmMvlY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/d87d60-5c58-4289-95f4-aadb79a60395/1/_k23pz74vfSf-8VCKu25Uk5WYOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.62.17.0/24
Signature Algorithm: sha256WithRSAEncryption
65:d1:a7:e3:1e:fb:87:71:2f:a4:59:33:2c:e3:f4:08:89:73:
0a:b3:1c:be:0f:10:76:de:f7:4c:7c:a8:41:de:6f:62:a2:5b:
d4:b6:20:2c:6d:73:bb:9a:3c:0b:5d:ca:79:4b:d5:a1:fd:45:
81:2c:33:0c:f2:17:35:c5:ea:ba:e7:09:8c:31:90:9b:51:de:
19:be:44:bb:35:99:8e:01:93:c5:ad:31:c4:9c:93:f1:ae:d5:
68:10:c5:e3:ae:f3:3d:43:cd:f3:5f:87:3e:ee:91:94:bd:5d:
b3:62:7e:2f:ab:9d:5f:a2:59:f0:aa:fc:03:bb:a2:9e:05:e9:
32:e2:7d:c5:93:6d:77:11:59:70:7a:d2:36:69:89:ec:15:1b:
62:1c:e9:a4:81:06:cc:3c:4f:78:ac:c3:7c:70:63:a2:cb:12:
87:19:86:01:1b:3a:5b:cc:82:08:12:4a:75:48:2b:60:2c:99:
e1:7b:cf:35:0f:4f:f7:b7:cd:d9:61:c6:5a:15:e3:b4:00:d4:
89:5b:88:b4:85:19:a2:18:f5:cc:ed:e4:f1:d9:db:27:69:20:
4b:f1:d1:7d:58:b9:08:3c:90:78:f0:26:01:f9:ed:e0:b4:d0:
ba:78:2c:6f:d3:4e:d1:9c:66:ef:d6:f4:3f:66:cb:be:52:9b:
97:ba:b7:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 13:07:24 2025 by rpki-client