Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/7c9457-782b-4115-88b1-0d5ac83c5e60/1/iQmuyfyS-VZmfPFKC0Z9AaIC4kY.roa
File: iQmuyfyS-VZmfPFKC0Z9AaIC4kY.roa (raw, json)
Hash identifier: 7DCQpBOfhSoaH0TuGwai+ahzTdDtSNMxfs2ftu0Ew9k=
Subject key identifier: 89:09:AE:C9:FC:92:F9:56:66:7C:F1:4A:0B:46:7D:01:A2:02:E2:46
Certificate issuer: /CN=0d9db2f3c0adeab3767c0b31721845ab3d445d1c
Certificate serial: 01941F8CA73F60F9FCCFCB9E57E5264CDE46
Authority key identifier: 0D:9D:B2:F3:C0:AD:EA:B3:76:7C:0B:31:72:18:45:AB:3D:44:5D:1C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DZ2y88Ct6rN2fAsxchhFqz1EXRw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/7c9457-782b-4115-88b1-0d5ac83c5e60/1/iQmuyfyS-VZmfPFKC0Z9AaIC4kY.roa
Signing time: Wed 01 Jan 2025 01:48:19 +0000
ROA not before: Wed 01 Jan 2025 01:48:19 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 20668
IP address blocks: 195.8.46.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:8c:a7:3f:60:f9:fc:cf:cb:9e:57:e5:26:4c:de:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d9db2f3c0adeab3767c0b31721845ab3d445d1c
Validity
Not Before: Jan 1 01:48:19 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=8909aec9fc92f956667cf14a0b467d01a202e246
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:a7:e8:59:22:7a:10:0b:31:09:d5:b4:a4:03:
a0:d9:c5:24:68:6f:cf:e8:a4:19:ca:55:63:17:d7:
b4:ef:1f:16:69:42:c4:b3:d0:7e:64:34:39:63:69:
f9:f4:e7:48:c3:a1:92:02:42:d7:f3:c0:ba:d8:67:
1b:e5:b6:ab:d4:18:b3:d7:6d:39:d7:ce:b5:33:b9:
21:64:fa:b2:36:df:72:f1:01:31:3e:be:a7:bd:bc:
f3:93:53:9a:a8:88:d6:75:44:1f:97:26:bb:d2:5e:
1f:e1:9a:a1:65:71:65:00:b2:cf:e0:67:c1:fe:6a:
ac:0d:db:69:43:f6:a4:03:da:d7:55:79:b3:3c:e5:
d3:c5:f2:88:11:8b:1d:e4:b3:1c:17:6e:a3:61:9a:
f9:57:a8:f5:48:77:fc:98:5a:3e:5c:2f:2b:4f:41:
d6:b9:b1:99:9c:93:66:e5:d3:a4:b4:fd:e1:13:6e:
8b:97:39:6d:42:c9:39:ca:d2:8d:5a:8d:a1:32:78:
7d:36:9f:91:e7:91:30:2e:28:36:27:72:e2:5a:8e:
88:e0:14:0c:25:57:f2:f5:56:58:24:97:44:50:96:
3c:bf:05:d1:69:a1:d5:92:f4:88:99:d6:ca:17:65:
dd:ac:65:15:97:24:91:35:40:f9:13:30:24:77:3b:
9f:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:09:AE:C9:FC:92:F9:56:66:7C:F1:4A:0B:46:7D:01:A2:02:E2:46
X509v3 Authority Key Identifier:
keyid:0D:9D:B2:F3:C0:AD:EA:B3:76:7C:0B:31:72:18:45:AB:3D:44:5D:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DZ2y88Ct6rN2fAsxchhFqz1EXRw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/7c9457-782b-4115-88b1-0d5ac83c5e60/1/iQmuyfyS-VZmfPFKC0Z9AaIC4kY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/7c9457-782b-4115-88b1-0d5ac83c5e60/1/DZ2y88Ct6rN2fAsxchhFqz1EXRw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.8.46.0/24
Signature Algorithm: sha256WithRSAEncryption
16:f1:98:dd:1b:de:72:a9:e8:18:1d:dc:32:76:cb:a9:8d:93:
48:e6:42:3d:fa:f5:c5:17:01:e1:cd:eb:74:6f:06:ab:16:da:
a6:06:22:4e:b1:f8:39:dc:bd:4c:71:5f:55:b2:85:b1:ba:2f:
13:3d:7d:6f:b1:bf:87:77:3e:45:62:ff:b5:c2:aa:c8:df:e8:
f1:6f:f5:9f:8b:b3:3f:3a:b6:1f:0a:67:4c:b6:2b:44:e9:34:
43:b5:be:67:a5:7d:0a:4c:9b:1c:f6:43:68:22:ab:1f:35:7d:
b8:f8:a2:fe:4b:09:e6:c4:06:f1:ab:f9:d8:16:bd:f7:95:27:
60:3f:1c:48:58:cb:a1:ca:b9:c5:9f:b2:64:7f:98:23:c2:04:
59:fb:30:17:b5:7f:74:a1:dd:f2:ce:e0:67:72:08:ec:61:ce:
a7:15:fa:c0:bb:a7:08:96:59:78:e1:1f:a2:3a:c6:f8:9a:d1:
a1:92:9d:ed:f9:20:dd:9f:5a:25:df:c2:aa:91:07:06:93:69:
f4:25:6b:5a:0f:6b:d2:3e:98:3e:1d:81:12:66:8b:dd:af:59:
f1:51:a1:18:bf:4f:71:73:7a:8b:4b:9f:49:e2:73:6a:60:b3:
fd:1e:58:2d:44:76:c0:09:fc:6e:af:ad:14:94:20:06:85:76:
71:72:34:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 04:22:50 2025 by rpki-client