Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/b8aef7-5be9-4db0-bffc-f467d5a0bafa/1/d4fDYeyfzI0pmnozGrQezE-YlQU.roa
File: d4fDYeyfzI0pmnozGrQezE-YlQU.roa (raw, json)
Hash identifier: o00a9+VWiBjnVxcaEtEKaiLhQlyMbi3sLuLhb34Lxw8=
Subject key identifier: 77:87:C3:61:EC:9F:CC:8D:29:9A:7A:33:1A:B4:1E:CC:4F:98:95:05
Certificate issuer: /CN=986b772dc18934e51f27b52cbe65b3241261bf65
Certificate serial: 8559B4
Authority key identifier: 98:6B:77:2D:C1:89:34:E5:1F:27:B5:2C:BE:65:B3:24:12:61:BF:65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mGt3LcGJNOUfJ7UsvmWzJBJhv2U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/b8aef7-5be9-4db0-bffc-f467d5a0bafa/1/d4fDYeyfzI0pmnozGrQezE-YlQU.roa
Signing time: Sat 01 Jan 2022 03:54:48 +0000
ROA not before: Sat 01 Jan 2022 03:54:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 22773
IP address blocks: 195.96.131.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8739252 (0x8559b4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=986b772dc18934e51f27b52cbe65b3241261bf65
Validity
Not Before: Jan 1 03:54:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7787c361ec9fcc8d299a7a331ab41ecc4f989505
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:4f:f4:0b:ba:26:e5:96:29:da:85:ad:99:57:
a3:2e:fd:e8:22:41:6f:e3:c9:5f:ce:43:bf:52:31:
ee:5b:75:05:f7:70:6b:66:d7:2a:07:92:28:05:4d:
b2:dc:6f:6f:bb:d8:78:c7:5d:a0:23:15:36:ec:6d:
ba:ef:32:29:5f:e7:7d:77:4c:bf:77:68:6a:ef:95:
96:e9:1c:a0:e1:8e:da:74:ad:b2:74:3c:59:b5:72:
1a:35:20:c7:f7:7f:f3:72:6b:32:86:db:a4:40:98:
4d:6e:fc:30:2c:e7:f9:b9:27:bc:90:58:d3:da:a4:
d5:fd:d9:d5:7a:97:0a:f2:d3:f7:95:a7:66:27:16:
c0:ab:c6:84:69:ad:a8:a1:fe:66:b2:67:e0:ee:03:
8f:34:c8:09:c5:4f:96:45:a9:8a:fa:16:8d:17:f9:
16:57:c7:97:a6:a9:c5:6d:58:e1:e7:5d:19:6b:d8:
d1:ab:f6:ca:57:9d:64:2e:43:fa:d4:d8:3e:52:44:
de:c8:90:1f:ef:fc:31:49:6f:14:9e:72:10:1e:c0:
3b:56:00:cc:60:ce:90:5d:9e:06:b9:c2:06:81:79:
e9:88:7c:21:b2:79:0f:d7:16:d3:9d:e2:df:77:c8:
ff:3a:a2:b0:3a:0c:bf:eb:76:c7:99:19:99:cb:7e:
22:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:87:C3:61:EC:9F:CC:8D:29:9A:7A:33:1A:B4:1E:CC:4F:98:95:05
X509v3 Authority Key Identifier:
keyid:98:6B:77:2D:C1:89:34:E5:1F:27:B5:2C:BE:65:B3:24:12:61:BF:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mGt3LcGJNOUfJ7UsvmWzJBJhv2U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/b8aef7-5be9-4db0-bffc-f467d5a0bafa/1/d4fDYeyfzI0pmnozGrQezE-YlQU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/b8aef7-5be9-4db0-bffc-f467d5a0bafa/1/mGt3LcGJNOUfJ7UsvmWzJBJhv2U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.96.131.0/24
Signature Algorithm: sha256WithRSAEncryption
ab:38:b4:0d:8e:90:85:eb:97:7b:c8:92:cc:10:e7:3e:e0:aa:
e8:8b:16:21:1d:9c:80:2d:20:40:27:0c:0a:8d:11:a7:59:45:
9f:44:3d:21:ab:9b:b4:bd:65:9f:64:28:1b:05:78:2b:c9:ee:
db:63:66:ac:40:e1:22:8a:a7:59:df:e6:73:41:ce:3b:61:72:
a3:a6:d7:aa:e1:c8:1b:e5:ee:c9:b2:36:8a:5d:6d:53:03:47:
c4:5d:f1:f3:e1:83:7f:97:68:08:07:28:f1:3a:2c:4f:45:61:
c6:e1:9c:05:c6:62:26:56:ad:80:42:3d:91:25:5e:f3:56:10:
8d:64:8b:cd:35:9e:fa:cc:e5:68:b1:da:c1:71:2d:ae:d3:4b:
78:c2:5c:c3:7b:78:4d:56:0f:2f:56:aa:c3:b5:b0:bf:e5:98:
2b:ef:69:29:3e:8e:3f:2a:23:18:2d:27:1c:bc:12:78:05:8d:
0f:0b:e5:79:0f:6c:c4:b8:df:70:fd:5e:ff:98:b2:61:be:44:
e0:8e:56:9c:b0:a8:0b:14:c6:68:ae:1c:c6:83:5e:85:de:d7:
5e:a6:61:39:d8:5b:02:07:f7:7f:19:64:11:21:f6:e0:cd:93:
97:3f:59:db:38:d1:b3:b1:b1:66:3c:07:b8:34:c9:7b:aa:73:
03:4f:7e:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 00:00:10 2025 by rpki-client