Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/8c4ec4-d637-4d3f-9de8-05559c1f5915/1/TUyrNyg3GzeG46BhvjS1xNbOwkc.roa
File: TUyrNyg3GzeG46BhvjS1xNbOwkc.roa (raw, json)
Hash identifier: KZj23T82PopCcscXVu/2+qnCL784PU3BrydL/yln4Uo=
Subject key identifier: 4D:4C:AB:37:28:37:1B:37:86:E3:A0:61:BE:34:B5:C4:D6:CE:C2:47
Certificate issuer: /CN=6a366fdfcaa20e80e8bfc330a4d8b1be7de6a1d0
Certificate serial: 019423D6D7827D6D36E467C9E3EE69380F6B
Authority key identifier: 6A:36:6F:DF:CA:A2:0E:80:E8:BF:C3:30:A4:D8:B1:BE:7D:E6:A1:D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ajZv38qiDoDov8MwpNixvn3modA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/8c4ec4-d637-4d3f-9de8-05559c1f5915/1/TUyrNyg3GzeG46BhvjS1xNbOwkc.roa
Signing time: Wed 01 Jan 2025 21:47:49 +0000
ROA not before: Wed 01 Jan 2025 21:47:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 14618
IP address blocks: 194.60.252.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:d6:d7:82:7d:6d:36:e4:67:c9:e3:ee:69:38:0f:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6a366fdfcaa20e80e8bfc330a4d8b1be7de6a1d0
Validity
Not Before: Jan 1 21:47:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=4d4cab3728371b3786e3a061be34b5c4d6cec247
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:da:b6:04:1f:8a:d0:dc:d0:2d:d1:15:21:b7:
5c:cd:c9:cb:6d:0e:e7:8e:96:c9:b8:e9:b6:64:bf:
12:3e:31:29:1e:0d:28:ad:6a:61:ed:9f:4d:89:f7:
4c:8f:58:bb:99:4f:c4:b7:22:b1:68:1b:83:fc:df:
68:fd:07:7b:eb:01:45:26:b4:66:33:04:d5:e3:c0:
d2:1c:27:6e:25:65:86:c4:ca:6f:19:3a:02:a7:a9:
4b:7d:4a:7b:40:4a:06:52:7c:6a:c3:16:ce:e3:ae:
da:86:26:f6:9b:4c:97:1e:96:92:ba:69:a7:25:9d:
75:8a:70:97:f2:01:b7:dc:90:18:57:03:61:df:f7:
78:85:e5:bb:a5:25:aa:e7:3d:41:4b:d8:d1:e4:4b:
c0:cb:7c:b8:30:bd:49:fa:4d:77:c4:a7:f9:99:00:
99:e4:02:74:92:94:de:1f:ed:2b:34:90:1b:6b:cb:
3d:02:a9:4c:6d:85:e8:74:22:ca:8d:1a:c7:c1:85:
1c:bf:7a:f1:2b:9e:55:6f:bb:97:1e:db:95:53:6b:
22:54:39:44:71:f1:da:d4:2b:8e:1a:94:80:c8:36:
ba:f1:25:59:f9:4d:66:ef:b8:f6:3c:26:71:db:90:
52:a7:33:c5:88:6b:91:5a:cd:af:da:84:77:66:81:
80:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:4C:AB:37:28:37:1B:37:86:E3:A0:61:BE:34:B5:C4:D6:CE:C2:47
X509v3 Authority Key Identifier:
keyid:6A:36:6F:DF:CA:A2:0E:80:E8:BF:C3:30:A4:D8:B1:BE:7D:E6:A1:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ajZv38qiDoDov8MwpNixvn3modA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/8c4ec4-d637-4d3f-9de8-05559c1f5915/1/TUyrNyg3GzeG46BhvjS1xNbOwkc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/8c4ec4-d637-4d3f-9de8-05559c1f5915/1/ajZv38qiDoDov8MwpNixvn3modA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.60.252.0/24
Signature Algorithm: sha256WithRSAEncryption
bc:c0:d6:02:43:65:ea:72:e8:4b:18:15:54:04:30:f0:19:f5:
7c:d4:4f:20:d4:db:30:02:32:5d:95:a0:f3:40:a4:ca:79:95:
02:e0:43:da:a2:ae:19:0a:31:d9:cb:aa:bd:ca:88:72:44:33:
bb:95:dc:35:d3:fe:d0:83:b6:5c:68:91:c4:fc:2b:be:f3:6f:
03:fd:99:d4:69:a5:2b:6f:45:25:95:49:1e:de:5b:93:60:4c:
a2:79:54:d3:16:04:6e:e6:fd:3b:a0:e9:fc:ef:b2:93:43:2a:
94:01:c2:08:e2:ac:de:b1:e5:98:7c:c4:52:63:6f:81:59:e9:
ed:fa:de:a6:d0:02:c2:da:9b:ef:a7:e0:71:47:d9:fe:07:43:
5c:80:9f:dd:03:f8:17:ea:a0:18:60:70:db:ba:fb:ff:13:63:
ae:13:c3:67:c6:cf:95:9d:b1:f6:02:0a:f8:71:bb:b2:b9:87:
f9:0f:4b:dd:67:ae:49:e1:44:95:6a:b2:67:97:25:1a:8e:d9:
a5:14:80:38:74:34:3f:01:b3:0f:61:c1:09:79:60:f4:6e:09:
4b:b4:6e:3e:35:41:6c:e2:1d:97:28:43:ea:11:37:97:99:81:
87:95:7b:f4:93:90:5b:a4:45:1e:24:f9:e0:69:bb:40:b4:a8:
c4:b0:27:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 23:44:18 2025 by rpki-client