Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/ea10b5-21f6-46b9-aad6-3f7a3e025e8b/1/hfVNxhpqjhtY0Y5pPH1kyqqYbyE.roa
File: hfVNxhpqjhtY0Y5pPH1kyqqYbyE.roa (raw, json)
Hash identifier: aFX0mNsdzdwNbH9dkbmbgQ2YlhtWRYm/NSgRF7fVXw4=
Subject key identifier: 85:F5:4D:C6:1A:6A:8E:1B:58:D1:8E:69:3C:7D:64:CA:AA:98:6F:21
Certificate issuer: /CN=7e5c8528f81787c489c54a993839269f5a6b1f94
Certificate serial: 0194266C0E007F67EBE9C9468A9B5C451EF6
Authority key identifier: 7E:5C:85:28:F8:17:87:C4:89:C5:4A:99:38:39:26:9F:5A:6B:1F:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/flyFKPgXh8SJxUqZODkmn1prH5Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/ea10b5-21f6-46b9-aad6-3f7a3e025e8b/1/hfVNxhpqjhtY0Y5pPH1kyqqYbyE.roa
Signing time: Thu 02 Jan 2025 09:50:03 +0000
ROA not before: Thu 02 Jan 2025 09:50:03 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 12676
IP address blocks: 193.108.190.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:6c:0e:00:7f:67:eb:e9:c9:46:8a:9b:5c:45:1e:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7e5c8528f81787c489c54a993839269f5a6b1f94
Validity
Not Before: Jan 2 09:50:03 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=85f54dc61a6a8e1b58d18e693c7d64caaa986f21
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:4b:1f:b8:9e:72:dc:9b:a1:90:3f:fc:57:3f:
08:f7:86:08:4a:44:76:39:85:05:7c:77:83:37:28:
df:6e:a7:02:88:ba:8d:14:ae:1a:f4:5b:d5:42:18:
ee:44:6d:75:18:52:e2:06:4d:10:f3:73:d7:9a:b7:
44:a3:3c:8a:87:2b:e9:c4:c1:52:91:c4:4f:93:a0:
97:78:b3:99:d3:93:50:03:dd:c6:01:8f:00:02:85:
79:ab:b1:84:06:97:25:36:3a:f5:ad:e9:ee:d6:b1:
38:45:69:99:d6:d9:e8:51:66:f0:6c:49:01:af:76:
d9:fd:ec:02:be:59:e7:14:3d:e4:11:7f:5b:69:2e:
99:7a:b1:f6:84:5d:96:d3:b3:c7:29:a5:39:4a:57:
3d:4f:13:d9:f0:f1:d2:a9:83:90:8f:8b:76:62:38:
0e:d6:09:32:06:17:95:3f:48:f3:66:d3:34:37:63:
25:c4:2b:66:1c:be:42:36:90:54:e2:4c:c8:73:d7:
c0:fa:14:c6:ce:64:a5:9a:ec:4d:3c:d5:a7:1e:72:
22:5d:f7:14:4e:eb:0b:c6:16:54:8f:89:44:d4:d4:
0c:7c:e6:ba:b4:8d:94:80:80:3c:c3:39:d5:57:31:
ac:c3:51:1d:f6:65:b7:8f:82:fe:90:ba:f5:61:5a:
88:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:F5:4D:C6:1A:6A:8E:1B:58:D1:8E:69:3C:7D:64:CA:AA:98:6F:21
X509v3 Authority Key Identifier:
keyid:7E:5C:85:28:F8:17:87:C4:89:C5:4A:99:38:39:26:9F:5A:6B:1F:94
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/flyFKPgXh8SJxUqZODkmn1prH5Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/ea10b5-21f6-46b9-aad6-3f7a3e025e8b/1/hfVNxhpqjhtY0Y5pPH1kyqqYbyE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/ea10b5-21f6-46b9-aad6-3f7a3e025e8b/1/flyFKPgXh8SJxUqZODkmn1prH5Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.108.190.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:b1:bc:21:1c:99:d6:cf:19:c2:f1:a5:a4:dd:3c:9f:67:3b:
d9:7b:f7:95:fe:e6:d7:d1:b3:2c:d3:1d:d7:a6:e9:12:a4:ba:
ff:83:92:af:33:e9:04:de:a8:86:18:89:50:c2:7f:19:a5:bb:
e1:c4:9e:56:1a:af:24:ef:11:7b:89:7b:ca:ca:0e:fb:50:a3:
18:d2:78:83:26:d3:c1:80:43:d3:7e:61:30:a9:05:3f:be:d1:
f7:8c:59:84:93:7a:4d:a0:21:5d:a2:a9:7f:37:62:b5:03:0c:
62:f9:02:10:d0:97:29:18:69:4f:d1:5f:a6:9e:5e:e5:1c:92:
5c:5b:d3:f3:75:b2:4a:68:a7:30:a4:de:49:df:75:af:98:43:
4e:de:26:9b:1c:ac:b1:20:fb:0c:92:c6:d0:bf:84:dd:e9:e7:
7f:d5:b7:98:de:47:82:d5:42:0e:6d:3b:4d:07:50:6a:8b:68:
62:66:a0:d0:db:d5:57:ff:ac:7c:84:b9:9a:14:6f:9c:97:cc:
b2:bc:2c:5c:dc:90:1a:b3:92:22:63:3b:b1:00:ff:30:87:75:
d4:9d:a1:87:6a:cd:b8:2c:c4:68:fd:7c:4c:b4:bb:f1:a5:3f:
61:c6:38:ed:fd:d1:31:f5:b7:8a:e7:fa:8f:6f:c2:e9:05:13:
61:ef:48:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 02:44:43 2025 by rpki-client