Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/ob_RURKVUgsmITZALhVsa-qXolg.roa
File: ob_RURKVUgsmITZALhVsa-qXolg.roa (raw, json)
Hash identifier: Fa1GGWTo+0NV3NehS4X6jfnbmrCwDIsz+qaYmi3m0FU=
Subject key identifier: A1:BF:D1:51:12:95:52:0B:26:21:36:40:2E:15:6C:6B:EA:97:A2:58
Certificate issuer: /CN=cd5e39658a3ef6f13ca21cc11a4e33ebcd946702
Certificate serial: 019427B5FE27239025D0CF6A0CC2861489C8
Authority key identifier: CD:5E:39:65:8A:3E:F6:F1:3C:A2:1C:C1:1A:4E:33:EB:CD:94:67:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zV45ZYo-9vE8ohzBGk4z682UZwI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/ob_RURKVUgsmITZALhVsa-qXolg.roa
Signing time: Thu 02 Jan 2025 15:50:26 +0000
ROA not before: Thu 02 Jan 2025 15:50:26 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 204104
IP address blocks: 85.133.194.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:b5:fe:27:23:90:25:d0:cf:6a:0c:c2:86:14:89:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd5e39658a3ef6f13ca21cc11a4e33ebcd946702
Validity
Not Before: Jan 2 15:50:26 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=a1bfd1511295520b262136402e156c6bea97a258
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:51:7b:71:58:63:7b:f8:99:d7:c3:6d:3b:fe:
72:c4:56:cc:1e:1e:83:e6:af:8c:a1:e7:6f:fb:b6:
6a:c5:e2:8d:e1:69:75:98:15:79:35:b3:63:81:be:
2d:ca:15:2a:15:19:f1:c3:51:c2:de:16:10:2e:6f:
c9:9b:b4:db:da:0f:af:2e:c4:9b:78:c5:0a:67:be:
88:38:1c:95:e1:df:bb:f3:3c:86:0b:df:4a:7a:84:
85:be:38:4c:8c:34:4a:fa:ac:3b:18:77:39:0c:ad:
b7:29:89:12:7b:32:6e:86:a4:0c:c4:3c:5c:02:e4:
2c:5b:fe:96:bf:41:81:9a:65:78:95:e7:b9:5f:cf:
9e:42:86:2d:f3:ca:ac:2d:af:7d:fa:f7:0b:1f:89:
e3:47:3d:dd:f7:f4:c2:0a:67:45:b8:5e:28:76:df:
35:22:aa:1b:b8:ef:67:86:75:a7:aa:a2:2d:ac:be:
6d:fd:d1:53:cc:f2:4b:f0:c6:e7:55:3e:4a:61:35:
b2:f4:7c:f1:2f:88:24:ef:4e:a5:c9:75:4f:d3:fb:
ef:21:42:fc:33:0d:f6:52:87:16:43:19:f3:68:14:
43:55:5d:42:8c:be:63:6d:d6:c5:33:61:7d:db:2f:
f4:e5:ff:f0:67:ad:ae:72:cb:29:81:ba:5d:69:9b:
4c:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:BF:D1:51:12:95:52:0B:26:21:36:40:2E:15:6C:6B:EA:97:A2:58
X509v3 Authority Key Identifier:
keyid:CD:5E:39:65:8A:3E:F6:F1:3C:A2:1C:C1:1A:4E:33:EB:CD:94:67:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zV45ZYo-9vE8ohzBGk4z682UZwI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/ob_RURKVUgsmITZALhVsa-qXolg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/zV45ZYo-9vE8ohzBGk4z682UZwI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.133.194.0/24
Signature Algorithm: sha256WithRSAEncryption
67:e9:3e:09:b7:8d:b8:4c:1a:c1:ee:ab:98:95:3b:de:38:5c:
2d:db:c5:b4:ad:79:cc:e3:30:92:4b:91:78:bb:fc:58:72:c3:
2f:e8:f6:37:eb:c1:35:40:33:a4:7f:d6:3a:72:ab:84:fb:9e:
a6:5c:16:40:61:a6:2d:b2:9f:36:4a:a3:b7:0a:a8:d8:3e:23:
68:e8:64:7a:28:2a:17:d0:97:5f:0f:eb:56:09:af:52:af:35:
76:23:8a:63:93:2b:ae:6b:50:06:72:d4:01:52:f4:58:dd:dc:
25:16:60:ca:14:f7:6d:35:cf:e2:21:e4:a4:3f:c1:d1:37:32:
eb:cb:7c:6f:51:3c:c1:9e:54:27:b9:b8:b0:37:7e:ed:aa:59:
aa:33:42:bc:98:df:f2:dc:6d:d8:dc:de:4b:01:62:1e:6a:59:
5c:1d:32:ec:fe:70:2f:b8:05:3f:c5:81:98:52:b4:1e:8d:37:
07:5c:e6:47:e4:d6:d5:8f:a4:ca:a7:7d:a3:de:6d:b3:2d:c4:
56:d1:19:ea:6e:a8:69:fc:ba:e2:14:ad:03:d4:98:99:60:b8:
75:3b:d2:f4:13:8f:4f:41:d7:33:39:e7:0c:f9:46:ca:dc:39:
15:1e:44:2d:61:38:23:f0:54:7d:b8:8b:31:4a:70:c0:60:bf:
e6:8e:c1:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:30:43 2025 by rpki-client