Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/157ba9-5ae7-4460-887b-782b82ebcaae/1/1-eVtiZIJZtejkcxnJZbMOuqtkvM.roa
File: 1-eVtiZIJZtejkcxnJZbMOuqtkvM.roa (raw, json)
Hash identifier: /dozujzBruht/lOgqwCLtQNFBrpieolWDy5kZ5Mel3s=
Subject key identifier: F9:E5:6D:89:92:09:66:D7:A3:91:CC:67:25:96:CC:3A:EA:AD:92:F3
Certificate issuer: /CN=83e5d90301d3cf67b88fee42dd545afcf14ea561
Certificate serial: 019422FC492484BD74EE5D596A8822057B0F
Authority key identifier: 83:E5:D9:03:01:D3:CF:67:B8:8F:EE:42:DD:54:5A:FC:F1:4E:A5:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g-XZAwHTz2e4j-5C3VRa_PFOpWE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/157ba9-5ae7-4460-887b-782b82ebcaae/1/1-eVtiZIJZtejkcxnJZbMOuqtkvM.roa
Signing time: Wed 01 Jan 2025 17:49:06 +0000
ROA not before: Wed 01 Jan 2025 17:49:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 14618
IP address blocks: 194.29.54.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:fc:49:24:84:bd:74:ee:5d:59:6a:88:22:05:7b:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=83e5d90301d3cf67b88fee42dd545afcf14ea561
Validity
Not Before: Jan 1 17:49:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=f9e56d89920966d7a391cc672596cc3aeaad92f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:3b:c3:8c:9f:da:81:e1:b1:2f:b3:ba:87:4a:
c8:cb:5b:56:20:61:28:af:de:4c:ec:cb:f7:a7:85:
0f:b3:ae:6b:90:b5:87:64:c7:6b:88:37:f0:ba:d7:
89:4a:2b:b5:8b:f9:1f:15:d0:31:59:fb:10:f8:e8:
70:a0:b6:2b:ab:18:dd:be:56:1e:71:4b:01:25:7f:
91:3c:38:54:32:ad:52:cf:07:7d:95:83:91:41:f1:
d7:76:e8:84:c0:68:2b:8a:82:26:5f:47:52:57:dc:
34:a3:1c:3d:06:39:c1:c8:f9:bb:09:f2:62:67:6d:
06:b8:48:9e:f0:59:32:3c:a0:99:b1:a3:63:93:c5:
82:dd:3c:c5:e4:a1:7e:90:80:84:bf:8e:7a:4e:51:
e8:af:01:0c:b5:7d:c8:e0:99:8d:bb:78:09:e5:6a:
bf:de:1a:6a:0c:f5:5f:0a:d4:f1:fb:ef:e9:64:72:
c8:88:30:c4:43:14:b9:22:f8:d5:fd:fa:5d:86:cc:
72:4d:d6:5a:03:fa:e3:17:d5:13:8c:93:38:b4:a0:
c9:a7:10:f2:b7:00:e9:9f:ce:8c:85:c4:7c:21:d4:
87:e3:66:56:68:94:db:06:82:50:19:c1:35:d5:72:
60:2a:bd:a1:ad:39:b8:61:f2:4a:3f:07:c9:12:11:
40:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:E5:6D:89:92:09:66:D7:A3:91:CC:67:25:96:CC:3A:EA:AD:92:F3
X509v3 Authority Key Identifier:
keyid:83:E5:D9:03:01:D3:CF:67:B8:8F:EE:42:DD:54:5A:FC:F1:4E:A5:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g-XZAwHTz2e4j-5C3VRa_PFOpWE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/157ba9-5ae7-4460-887b-782b82ebcaae/1/1-eVtiZIJZtejkcxnJZbMOuqtkvM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/157ba9-5ae7-4460-887b-782b82ebcaae/1/g-XZAwHTz2e4j-5C3VRa_PFOpWE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.29.54.0/24
Signature Algorithm: sha256WithRSAEncryption
82:05:0f:b1:36:cc:aa:77:b2:80:51:89:e2:81:12:64:96:81:
00:17:60:4a:38:ac:e1:c0:46:17:90:b8:50:bf:0f:9b:26:5f:
0b:da:a4:4a:f5:04:14:c6:cd:92:4d:97:dc:64:c3:b6:d0:7d:
a0:30:79:86:d5:1e:35:64:24:19:e1:63:52:e4:08:71:27:cc:
3b:67:20:73:8f:5a:93:d5:5c:c5:65:9a:cb:e4:45:13:e6:32:
85:f9:e8:42:bd:ce:79:b7:87:a1:15:00:10:0c:b3:3c:b8:00:
88:95:36:c2:ed:c8:da:36:97:78:15:82:29:12:33:30:a7:b2:
17:fa:eb:f5:94:1e:23:03:af:c0:03:73:8c:c8:5b:58:80:fa:
1e:05:cc:10:b8:0a:c0:f5:a4:22:9e:80:18:e7:e5:c6:eb:0d:
25:cd:c0:93:46:d2:13:db:05:5b:84:41:30:ba:0e:ba:06:09:
9a:d3:77:ff:c0:16:2b:c9:3c:5b:30:87:57:02:13:98:45:23:
ef:41:e6:7c:e2:e6:db:28:82:d3:26:5b:fa:4c:71:15:64:13:
22:ca:16:4d:84:17:da:fd:39:96:ab:ad:5e:a4:1b:68:c3:f0:
69:e8:8e:4a:77:d0:4e:d2:7d:23:f4:dd:92:9c:a2:4c:7a:bf:
20:9b:b9:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 23:54:25 2025 by rpki-client