Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/HeS5Flw8De3ERc13tseeDqnu-ME.roa
File: HeS5Flw8De3ERc13tseeDqnu-ME.roa (raw, json)
Hash identifier: Z4T7G/T3oviidtXsfnP4hoUXvDOJWiC0aJbWV8d1ufE=
Subject key identifier: 1D:E4:B9:16:5C:3C:0D:ED:C4:45:CD:77:B6:C7:9E:0E:A9:EE:F8:C1
Certificate issuer: /CN=b4380b9b8c070457ed54bc45d12dddd244e06d52
Certificate serial: 019422FBD041EE698796BF85B962903437F7
Authority key identifier: B4:38:0B:9B:8C:07:04:57:ED:54:BC:45:D1:2D:DD:D2:44:E0:6D:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tDgLm4wHBFftVLxF0S3d0kTgbVI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/HeS5Flw8De3ERc13tseeDqnu-ME.roa
Signing time: Wed 01 Jan 2025 17:48:35 +0000
ROA not before: Wed 01 Jan 2025 17:48:35 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 396593
IP address blocks: 81.19.195.30/32 maxlen: 32
81.19.195.31/32 maxlen: 32
185.100.0.53/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:fb:d0:41:ee:69:87:96:bf:85:b9:62:90:34:37:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4380b9b8c070457ed54bc45d12dddd244e06d52
Validity
Not Before: Jan 1 17:48:35 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=1de4b9165c3c0dedc445cd77b6c79e0ea9eef8c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:67:95:91:ae:32:79:4b:03:e3:85:a0:2c:c3:
f3:05:1d:e3:90:78:67:8a:2e:52:69:70:e9:b1:f0:
14:d7:00:38:cb:4f:ba:9a:b5:35:1f:fe:3e:de:21:
5c:74:48:5c:04:8f:84:80:de:86:b5:68:ec:5b:af:
4a:42:83:fb:b3:04:cc:2b:14:d3:87:69:2d:65:83:
db:00:a5:d0:cd:cb:1f:ad:ac:64:24:e4:11:e4:6c:
6d:32:dc:62:10:de:0c:96:69:c9:e4:1f:95:a3:e6:
48:4b:3f:42:95:4f:a9:53:c7:91:70:1f:98:f7:b8:
2f:ed:53:e1:87:fa:49:e0:58:42:df:01:0e:84:4b:
d5:c1:1f:05:e6:d6:c8:69:6a:1f:18:b7:63:c2:de:
bb:3c:23:25:06:47:1f:e9:2d:d4:b0:0b:43:13:c0:
17:66:88:b6:dd:bd:63:51:13:f2:56:1b:27:ad:e6:
69:46:51:2e:18:bc:3a:8f:35:cc:7c:14:34:b7:ec:
a1:d6:b2:22:7c:8d:b6:b5:29:2e:4b:73:56:b2:7e:
74:77:09:64:c5:37:15:1a:62:04:f4:28:09:8c:1e:
94:08:4d:66:fb:76:9f:28:f6:31:42:30:5f:fe:94:
52:3c:e6:3c:30:df:fb:fb:20:8f:8f:bb:e7:4b:57:
7a:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:E4:B9:16:5C:3C:0D:ED:C4:45:CD:77:B6:C7:9E:0E:A9:EE:F8:C1
X509v3 Authority Key Identifier:
keyid:B4:38:0B:9B:8C:07:04:57:ED:54:BC:45:D1:2D:DD:D2:44:E0:6D:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tDgLm4wHBFftVLxF0S3d0kTgbVI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/HeS5Flw8De3ERc13tseeDqnu-ME.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/tDgLm4wHBFftVLxF0S3d0kTgbVI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.19.195.30/31
185.100.0.53/32
Signature Algorithm: sha256WithRSAEncryption
47:02:30:6c:ab:30:85:c2:eb:2c:4b:dc:16:e8:ee:3b:dd:19:
e1:35:a4:fc:3b:45:84:1c:f8:ce:15:b0:cb:a2:41:7a:cf:54:
e8:a0:70:d9:50:c6:11:61:ca:fb:00:06:78:bf:de:3a:83:ad:
f9:c7:2d:a8:02:61:15:5e:9b:50:e5:57:c1:d2:0d:8a:62:a5:
f2:55:78:d0:1d:c5:37:6d:a6:9b:c8:74:55:bb:93:8a:b6:d1:
a0:a5:47:51:0b:8a:f4:b8:e2:83:c6:d4:52:11:d4:e3:ec:46:
65:48:1d:52:e8:a8:ab:eb:a9:40:80:e7:9d:69:15:63:6b:67:
92:fa:51:2b:96:9d:38:ea:69:eb:5b:64:e4:f1:53:43:09:ca:
64:54:77:64:28:e5:2e:c6:7e:b9:5a:f8:95:0b:ba:81:33:66:
ce:c9:93:a1:65:c0:00:8b:62:3c:3d:af:58:8e:c4:20:27:bb:
d1:7a:d0:94:40:7b:ff:97:53:6f:b8:7e:20:96:46:d8:2d:b9:
3e:f0:8d:b2:11:87:ae:8d:69:6e:9d:4a:15:67:a0:8b:e6:b7:
14:73:dd:6c:32:54:1c:80:c3:0c:18:44:e3:d7:c8:e5:02:e4:
17:b4:5e:f3:c3:9a:15:a4:00:4a:c3:e9:ae:9d:69:17:ab:66:
3e:c4:9d:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:19:47 2025 by rpki-client