Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/185b1b-9885-4de6-bc5f-b9121a6f7189/1/q1ooxvuPthJAg9U7m_W-Acs_5R8.roa
File: q1ooxvuPthJAg9U7m_W-Acs_5R8.roa (raw, json)
Hash identifier: XBOr4AR6u5wtON+QNsNe7Q0MVVFsVeQMLr4bAAmwlUY=
Subject key identifier: AB:5A:28:C6:FB:8F:B6:12:40:83:D5:3B:9B:F5:BE:01:CB:3F:E5:1F
Certificate issuer: /CN=637108e0d19992fdc0bfb6e27137304fd543436d
Certificate serial: 0185728C99F94BB8F355BA03F41E481A4EFF
Authority key identifier: 63:71:08:E0:D1:99:92:FD:C0:BF:B6:E2:71:37:30:4F:D5:43:43:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y3EI4NGZkv3Av7bicTcwT9VDQ20.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/185b1b-9885-4de6-bc5f-b9121a6f7189/1/q1ooxvuPthJAg9U7m_W-Acs_5R8.roa
Signing time: Mon 02 Jan 2023 12:54:55 +0000
ROA not before: Mon 02 Jan 2023 12:54:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 28959
IP address blocks: 195.238.253.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:8c:99:f9:4b:b8:f3:55:ba:03:f4:1e:48:1a:4e:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=637108e0d19992fdc0bfb6e27137304fd543436d
Validity
Not Before: Jan 2 12:54:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ab5a28c6fb8fb6124083d53b9bf5be01cb3fe51f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:1b:d4:5a:92:6a:1c:db:75:58:95:30:6e:3c:
cf:d2:47:65:e4:67:4e:6c:8e:df:0a:cb:16:c3:de:
b5:68:80:4c:23:61:27:77:11:7a:4b:5b:03:c4:f4:
ad:3e:66:f1:51:ef:c0:85:80:43:fa:48:b3:84:5d:
26:c3:f9:5d:7d:fa:59:3c:30:91:9e:fd:b8:9f:30:
03:7d:dd:d3:4a:6f:0f:d6:c4:c9:b8:c3:8f:90:59:
74:81:13:86:86:ea:e5:a4:15:78:c7:b5:eb:41:ee:
aa:91:23:e2:ea:38:50:48:80:cc:54:85:56:b2:c6:
08:00:73:c5:47:68:87:d5:d7:e1:2a:93:c9:8f:ae:
c6:5a:1f:16:62:c1:ed:a1:4d:30:22:82:3d:a5:7f:
06:70:37:e3:c3:d4:51:ab:53:6d:94:41:ab:62:55:
0a:5b:26:85:e7:97:8d:e0:9f:b1:bb:d3:b6:00:56:
b6:c0:1d:e8:3c:1a:7a:d1:2d:ee:41:16:1b:2a:95:
0b:0b:19:1f:99:d8:e7:77:09:b8:95:22:ec:d8:b2:
7d:e7:64:dc:91:da:79:e4:6f:46:d1:79:2c:c0:13:
9e:f1:19:a0:8a:cb:1a:5c:37:1b:0f:57:fa:ff:33:
ba:d3:a8:58:ca:13:96:a1:52:89:ee:b7:39:c9:b2:
19:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:5A:28:C6:FB:8F:B6:12:40:83:D5:3B:9B:F5:BE:01:CB:3F:E5:1F
X509v3 Authority Key Identifier:
keyid:63:71:08:E0:D1:99:92:FD:C0:BF:B6:E2:71:37:30:4F:D5:43:43:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y3EI4NGZkv3Av7bicTcwT9VDQ20.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/185b1b-9885-4de6-bc5f-b9121a6f7189/1/q1ooxvuPthJAg9U7m_W-Acs_5R8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/185b1b-9885-4de6-bc5f-b9121a6f7189/1/Y3EI4NGZkv3Av7bicTcwT9VDQ20.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.238.253.0/24
Signature Algorithm: sha256WithRSAEncryption
92:2f:63:d9:e8:6a:29:15:e9:4a:94:97:39:bc:14:a7:4c:3f:
a0:0e:d4:95:4a:bf:a5:43:08:34:14:4b:ab:1d:a5:13:20:c6:
3f:c1:7d:61:8b:bf:f5:a8:b7:69:8d:bc:b5:7a:6e:99:ef:e3:
69:2d:6a:61:28:dd:4c:18:28:f2:f6:5a:06:90:e2:ca:d4:c0:
88:67:1e:66:cb:56:db:f4:fe:13:de:88:43:4f:58:a4:24:18:
c8:54:16:b6:14:d8:8f:19:c1:e0:15:a3:07:af:e4:78:ec:11:
a2:39:d6:dd:fb:e9:91:c9:1d:00:a4:6c:46:a8:c4:52:c3:f8:
3b:b5:7f:5f:bb:b4:00:fb:4b:91:15:92:2f:e0:c1:02:0f:52:
69:b6:99:6a:a7:df:e8:10:20:59:f0:00:98:d4:fb:6c:2e:df:
da:d4:a9:dd:e4:37:0c:a1:76:30:67:ab:a1:92:36:f7:e1:ff:
48:42:f5:6a:29:cf:ce:90:1c:cf:2b:73:8c:2a:a5:8e:cd:b7:
ca:6c:39:c9:36:75:ef:bc:cd:ad:a8:ab:80:f9:be:64:b0:2e:
69:5f:ae:87:d0:b9:b0:25:3b:f1:95:e4:52:77:e3:1d:94:06:
31:3d:0b:d8:b4:61:80:7f:62:09:cb:24:99:a2:01:9a:25:db:
55:1c:8e:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 21:54:43 2025 by rpki-client