Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/70aa32-9607-4db7-8f1e-da75430b16f6/1/BGHFUqVejSgU54raf_BEGdliceQ.roa
File: BGHFUqVejSgU54raf_BEGdliceQ.roa (raw, json)
Hash identifier: /WvBr8+8azpgI7EuGeRsoFRQN1mrpglq6k/jLoAWaPg=
Subject key identifier: 04:61:C5:52:A5:5E:8D:28:14:E7:8A:DA:7F:F0:44:19:D9:62:71:E4
Certificate issuer: /CN=c2ee45426e12e50fe30e8ffc39e04485d8f73339
Certificate serial: 01941F8C3A269413429FE82C660B960B7BEF
Authority key identifier: C2:EE:45:42:6E:12:E5:0F:E3:0E:8F:FC:39:E0:44:85:D8:F7:33:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wu5FQm4S5Q_jDo_8OeBEhdj3Mzk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/70aa32-9607-4db7-8f1e-da75430b16f6/1/BGHFUqVejSgU54raf_BEGdliceQ.roa
Signing time: Wed 01 Jan 2025 01:47:51 +0000
ROA not before: Wed 01 Jan 2025 01:47:51 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 212335
IP address blocks: 193.106.199.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:8c:3a:26:94:13:42:9f:e8:2c:66:0b:96:0b:7b:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2ee45426e12e50fe30e8ffc39e04485d8f73339
Validity
Not Before: Jan 1 01:47:51 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=0461c552a55e8d2814e78ada7ff04419d96271e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:d1:b4:f6:fb:3d:e7:2f:e9:c4:5a:14:5a:6d:
95:fd:ca:de:9d:24:fd:6a:be:34:c3:87:6c:5e:37:
5b:41:ed:d3:40:17:21:b1:e6:ee:d7:80:59:c9:c3:
22:aa:f7:f8:5f:1c:5a:d8:c0:bd:72:1f:cb:ba:6a:
4a:49:a8:58:2a:10:95:cc:06:dd:53:cf:c5:2f:fa:
6d:f9:8f:ca:00:12:5b:d7:7d:25:c4:3f:34:b1:5c:
ad:07:8d:a1:f8:0f:c0:eb:f7:ff:f3:d8:36:c7:27:
44:22:bd:d2:02:2e:1e:68:ef:e5:05:40:2f:fe:1e:
15:9d:a9:29:b5:44:46:84:cd:84:68:59:b6:33:11:
45:c1:e2:ab:7a:a6:a8:f4:26:ef:70:b6:ee:3f:cc:
98:2c:1a:b0:06:f9:cb:f8:35:a1:53:c6:54:93:ca:
69:3c:61:3a:fc:64:65:e7:dd:46:c2:ee:b4:1b:b2:
56:bd:40:c7:db:c4:ea:4e:84:76:08:1c:34:d0:11:
92:6b:5a:d2:a3:8f:f0:94:35:23:ca:94:54:2c:35:
cf:ab:ea:a0:6f:5e:11:c0:e6:83:e1:26:61:ef:25:
cf:96:55:f0:26:46:27:0a:ae:59:4c:41:58:ae:33:
cb:d3:8c:51:c7:e0:ac:58:e8:4b:fd:cb:12:18:75:
a9:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:61:C5:52:A5:5E:8D:28:14:E7:8A:DA:7F:F0:44:19:D9:62:71:E4
X509v3 Authority Key Identifier:
keyid:C2:EE:45:42:6E:12:E5:0F:E3:0E:8F:FC:39:E0:44:85:D8:F7:33:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wu5FQm4S5Q_jDo_8OeBEhdj3Mzk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/70aa32-9607-4db7-8f1e-da75430b16f6/1/BGHFUqVejSgU54raf_BEGdliceQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/70aa32-9607-4db7-8f1e-da75430b16f6/1/wu5FQm4S5Q_jDo_8OeBEhdj3Mzk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.106.199.0/24
Signature Algorithm: sha256WithRSAEncryption
b5:62:ff:4a:1f:ec:ad:f1:0c:5d:bb:96:a1:68:c2:fa:c0:14:
10:01:10:a1:e1:ea:90:70:80:af:81:5c:68:66:db:92:0b:5a:
0b:53:8a:1f:b4:b9:c6:5a:7a:70:84:4f:d9:97:ba:d9:23:e8:
82:7e:79:6f:88:59:4e:af:b0:28:72:37:b8:35:97:1b:3a:5c:
f8:f1:4c:8f:d7:36:63:45:2b:f5:10:dd:f2:4f:81:a0:3c:4e:
5e:a2:a1:9d:20:11:99:a7:fb:24:e7:f9:c9:26:b7:e7:cf:e1:
9f:42:d8:20:63:4d:d0:47:0c:45:7d:6e:6c:e4:44:b4:15:9e:
ff:d8:ec:55:3b:b4:d7:ee:8b:7e:22:62:ef:6e:fa:2d:45:40:
9e:91:03:f3:67:fd:da:15:38:7b:ea:9a:0b:9f:a5:18:64:3a:
5a:6a:89:32:47:f5:5c:bc:55:5f:ff:15:a7:ce:d7:29:48:c9:
5f:10:91:69:24:a0:7b:48:ab:c8:ea:a6:53:bf:e9:78:cb:d9:
0d:da:1f:24:41:1b:08:33:a6:54:cd:4e:d2:e5:0b:17:68:40:
70:5a:34:e3:0c:73:21:6b:a2:71:64:94:4e:25:d8:88:57:fb:
96:85:44:94:88:ca:72:5a:1e:0f:ce:6c:50:fe:e3:3d:75:03:
e2:54:7f:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:25:37 2025 by rpki-client