Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/631925-6b0e-4ea5-91d7-08ad94101d7e/1/hNVJZaf1Q742ZOf5V7GGPg6DwoQ.roa
File: hNVJZaf1Q742ZOf5V7GGPg6DwoQ.roa (raw, json)
Hash identifier: qJB5V0i6XcC0nn5IoRQOg8JgvG9umWvqWjmz3fhyEgU=
Subject key identifier: 84:D5:49:65:A7:F5:43:BE:36:64:E7:F9:57:B1:86:3E:0E:83:C2:84
Certificate issuer: /CN=67955b1aa1c0284d2843b96f26c5fe751e66946f
Certificate serial: 0194221FCF50E66B1A6EA50D11DEBAAEB774
Authority key identifier: 67:95:5B:1A:A1:C0:28:4D:28:43:B9:6F:26:C5:FE:75:1E:66:94:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z5VbGqHAKE0oQ7lvJsX-dR5mlG8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/631925-6b0e-4ea5-91d7-08ad94101d7e/1/hNVJZaf1Q742ZOf5V7GGPg6DwoQ.roa
Signing time: Wed 01 Jan 2025 13:48:17 +0000
ROA not before: Wed 01 Jan 2025 13:48:17 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 207713
IP address blocks: 193.43.249.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:1f:cf:50:e6:6b:1a:6e:a5:0d:11:de:ba:ae:b7:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=67955b1aa1c0284d2843b96f26c5fe751e66946f
Validity
Not Before: Jan 1 13:48:17 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=84d54965a7f543be3664e7f957b1863e0e83c284
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:5d:96:21:b2:3a:53:3e:43:ff:bf:31:74:50:
77:07:5b:4a:d6:34:a9:9c:c9:ce:de:3d:a4:99:fc:
1a:28:42:c1:fe:2e:f6:13:c2:8f:70:60:b8:6b:5b:
c9:27:8b:71:9e:b4:2f:2d:dd:22:88:ad:8d:08:cd:
74:6f:3b:59:76:ad:8e:97:5e:22:ca:98:18:8e:ca:
46:68:de:0e:a5:a8:18:5c:ff:31:c6:7a:12:b4:97:
e8:02:de:66:0d:30:3e:a1:9a:e2:58:db:f1:cd:23:
fb:d6:ad:b2:a8:9c:e8:a2:54:c1:40:c5:ce:ff:45:
c0:4b:9c:ff:fe:ac:76:fa:d2:aa:fa:43:d2:10:e8:
3d:2f:df:13:34:7e:d4:3c:15:00:8c:b4:61:d6:05:
6d:67:02:c3:7f:95:4f:86:49:17:ce:cc:10:10:25:
f2:65:2d:c9:94:0e:46:ed:22:84:6b:f7:e2:64:ad:
bb:9a:9b:6a:5a:2a:c1:24:0b:82:19:bc:84:02:0f:
da:6e:d8:d4:44:83:43:e3:4a:9c:04:a7:a5:b3:aa:
2b:ca:42:fe:4a:a3:63:67:05:87:67:b5:41:7c:56:
8c:53:f2:d2:9b:fa:64:09:f3:48:53:93:98:bc:7f:
3e:1d:df:1d:ca:07:3a:4d:8f:48:ee:64:7d:74:bc:
44:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:D5:49:65:A7:F5:43:BE:36:64:E7:F9:57:B1:86:3E:0E:83:C2:84
X509v3 Authority Key Identifier:
keyid:67:95:5B:1A:A1:C0:28:4D:28:43:B9:6F:26:C5:FE:75:1E:66:94:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z5VbGqHAKE0oQ7lvJsX-dR5mlG8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/631925-6b0e-4ea5-91d7-08ad94101d7e/1/hNVJZaf1Q742ZOf5V7GGPg6DwoQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/631925-6b0e-4ea5-91d7-08ad94101d7e/1/Z5VbGqHAKE0oQ7lvJsX-dR5mlG8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.43.249.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:7e:b2:71:c6:a1:b2:78:a5:c7:f2:c3:9a:d7:d0:da:c1:06:
e6:a9:58:c2:57:b3:fb:d4:9b:bf:42:ca:e0:91:39:43:d3:fd:
93:60:ab:50:15:cc:0e:dd:db:85:a4:16:cf:98:47:87:bb:83:
f3:d8:d7:d3:b8:3f:6a:86:a3:42:1f:94:9d:e5:7e:8d:34:51:
6b:ef:41:e1:2c:42:c8:f7:d9:33:0d:c8:2b:45:4f:23:ff:67:
91:5e:c5:03:f1:3f:fe:a7:f6:88:1c:b4:60:39:5b:b5:e1:82:
8c:f4:b2:91:22:b4:98:ec:ff:60:72:69:fd:da:cc:b5:c9:b6:
1d:5a:4b:6a:7b:73:60:ac:54:ee:2b:8c:1c:71:ee:2c:96:ba:
32:a5:61:d9:d1:10:32:9e:fb:27:87:3b:95:e8:2e:8a:c4:5e:
2c:3c:d7:93:81:c3:ca:dd:da:77:bb:2b:ae:65:92:b9:90:7f:
04:73:39:06:b0:27:e5:49:3d:eb:69:ec:03:a7:18:ab:d9:36:
28:10:90:7b:06:43:f1:cc:25:96:bd:dc:f3:19:f0:48:06:04:
d8:34:39:a5:73:19:5d:5c:70:e0:f6:eb:c6:f4:f6:3c:5c:93:
56:3b:f4:6b:a0:5d:2f:47:bd:bc:c5:70:61:4a:45:e4:b6:60:
bb:f3:91:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 02:34:23 2025 by rpki-client