Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/TbjUoQgeTnJMC-WGCAUkvZuO60o.roa
File: TbjUoQgeTnJMC-WGCAUkvZuO60o.roa (raw, json)
Hash identifier: qD6BSSSQ+qEv8GthZr3aLJvlOHE6dQirjY7h+0xUrw8=
Subject key identifier: 4D:B8:D4:A1:08:1E:4E:72:4C:0B:E5:86:08:05:24:BD:9B:8E:EB:4A
Certificate issuer: /CN=4805f17c2d7133d2dad3a8df7e35315e37ef5daf
Certificate serial: 0194225F029804BA2FFE14A677D30E676021
Authority key identifier: 48:05:F1:7C:2D:71:33:D2:DA:D3:A8:DF:7E:35:31:5E:37:EF:5D:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SAXxfC1xM9La06jffjUxXjfvXa8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/TbjUoQgeTnJMC-WGCAUkvZuO60o.roa
Signing time: Wed 01 Jan 2025 14:57:19 +0000
ROA not before: Wed 01 Jan 2025 14:57:19 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215181
IP address blocks: 194.116.229.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:5f:02:98:04:ba:2f:fe:14:a6:77:d3:0e:67:60:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4805f17c2d7133d2dad3a8df7e35315e37ef5daf
Validity
Not Before: Jan 1 14:57:19 2025 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4db8d4a1081e4e724c0be586080524bd9b8eeb4a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:a7:aa:a7:0f:54:12:b0:2f:06:11:e7:b6:b6:
6f:12:d5:84:ca:d8:a4:93:9c:a0:2d:1a:cb:b7:f9:
da:5d:e1:c1:cf:fa:7a:98:08:a6:94:07:70:62:f2:
3c:6e:2a:ab:7a:75:13:d3:47:67:ce:aa:a5:a9:6f:
29:a2:25:58:be:68:88:d2:08:3d:21:d3:fa:67:0b:
11:13:d3:f7:fa:05:13:ab:c3:4f:28:ba:76:b6:f8:
72:41:aa:b0:c9:8b:3e:74:13:01:a7:d9:4d:aa:36:
24:45:54:52:cc:b0:8f:6c:4d:d5:9e:db:6e:fc:f5:
37:b6:6d:d0:37:b6:89:7d:b8:d2:c4:6b:ed:6c:11:
e9:fc:1c:96:9b:6c:b1:48:e8:51:a8:be:03:6f:f7:
fd:e6:f6:fe:12:ae:82:c3:b2:04:55:5d:86:77:ec:
ba:be:94:04:6b:8e:1e:a8:6e:e7:3c:c1:55:90:20:
03:6d:e1:ba:f2:b6:4f:a5:c3:26:e2:40:4e:4e:6c:
40:c8:58:81:92:ed:9c:f4:a1:f5:33:c7:19:86:5a:
7f:93:f8:79:53:e4:4e:42:0d:a9:98:20:41:68:9e:
05:cd:d6:21:ac:01:a5:2b:75:94:32:e4:a0:05:3a:
6e:03:ed:6a:40:a3:d4:b0:b2:5f:20:ca:ce:0c:59:
d0:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:B8:D4:A1:08:1E:4E:72:4C:0B:E5:86:08:05:24:BD:9B:8E:EB:4A
X509v3 Authority Key Identifier:
keyid:48:05:F1:7C:2D:71:33:D2:DA:D3:A8:DF:7E:35:31:5E:37:EF:5D:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SAXxfC1xM9La06jffjUxXjfvXa8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/TbjUoQgeTnJMC-WGCAUkvZuO60o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/SAXxfC1xM9La06jffjUxXjfvXa8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.116.229.0/24
Signature Algorithm: sha256WithRSAEncryption
53:c8:9e:7a:9e:ca:ce:68:21:1c:fd:99:00:0f:e5:dd:e8:1e:
ee:19:e1:36:8b:37:63:5a:e5:b4:b8:73:a2:f6:c0:c4:c2:1e:
5e:a1:cb:45:4a:1d:35:14:21:c9:8c:4a:3a:52:fc:ba:47:58:
bb:17:54:1b:11:f3:c9:b2:3d:8f:98:d7:c9:c2:52:13:79:da:
e1:72:c4:90:2b:21:29:8d:54:c4:47:af:20:57:7a:65:d5:86:
30:23:6b:e4:18:b6:21:ac:c5:c3:94:79:95:0c:5d:a5:03:85:
e6:a3:64:20:c7:f7:c2:9c:34:aa:d5:c6:fe:a9:5c:8d:37:71:
66:40:c7:b0:ee:6c:b8:f3:99:61:80:4d:42:af:1e:50:98:65:
7d:a2:82:34:c7:77:40:21:3e:f8:9f:5a:a1:c1:51:40:86:81:
32:a0:90:41:55:a5:60:f6:05:69:7d:a3:23:00:34:ad:f6:0d:
76:ca:02:86:f4:db:7f:64:ff:83:0c:95:95:41:3a:84:a3:ff:
60:95:9e:ed:3b:55:de:c6:02:b2:8c:a0:66:de:90:1d:33:d5:
66:fb:57:eb:59:b1:19:85:e2:06:f6:a7:d1:e8:e2:bd:43:32:
2e:d0:20:40:f3:8d:63:44:7e:f8:63:2c:0f:21:72:87:20:45:
08:3d:7f:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:37:41 2025 by rpki-client