Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/ee4a56-d5c9-4652-9cf1-f09462c12da4/1/AHkD8Aaan3pABbcPGhXEHYTBg8Y.roa
File: AHkD8Aaan3pABbcPGhXEHYTBg8Y.roa (raw, json)
Hash identifier: hXef/ttEb+W4FSVe0XdSIGoItwURMRnjh0hA4tDFc64=
Subject key identifier: 00:79:03:F0:06:9A:9F:7A:40:05:B7:0F:1A:15:C4:1D:84:C1:83:C6
Certificate issuer: /CN=a8a251140114c8fd8ad5fb45b7189aba7bc5048f
Certificate serial: 01941F8C70952DD2DB8F8D2574E3FD79C92D
Authority key identifier: A8:A2:51:14:01:14:C8:FD:8A:D5:FB:45:B7:18:9A:BA:7B:C5:04:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qKJRFAEUyP2K1ftFtxiaunvFBI8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/ee4a56-d5c9-4652-9cf1-f09462c12da4/1/AHkD8Aaan3pABbcPGhXEHYTBg8Y.roa
Signing time: Wed 01 Jan 2025 01:48:04 +0000
ROA not before: Wed 01 Jan 2025 01:48:04 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 198567
IP address blocks: 194.153.184.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:8c:70:95:2d:d2:db:8f:8d:25:74:e3:fd:79:c9:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a8a251140114c8fd8ad5fb45b7189aba7bc5048f
Validity
Not Before: Jan 1 01:48:04 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=007903f0069a9f7a4005b70f1a15c41d84c183c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:99:35:1d:0c:6a:ba:55:ca:0e:3d:f7:ca:16:
16:9a:16:7d:83:d5:27:e0:10:eb:e3:4b:3a:a8:f8:
8b:6e:87:d1:04:bb:88:63:83:5b:9f:96:8c:c2:87:
8a:e7:14:b0:aa:4a:af:d6:d4:13:f3:37:6f:11:30:
c8:c9:e8:6f:cd:1c:d0:f5:48:9b:44:3e:8f:d4:1b:
1b:56:e6:57:d1:65:b6:60:2d:da:83:d4:2d:21:66:
26:d7:b2:b8:80:6a:bd:87:b8:53:31:7f:2e:83:83:
02:f4:a5:b4:6a:47:36:37:7a:8c:f6:16:67:09:69:
46:02:5e:fb:ea:df:9f:39:39:00:d4:36:ee:ad:23:
44:87:c0:27:02:8e:ae:19:af:68:2d:77:31:89:fa:
cf:d4:5d:22:1a:b5:2d:6c:7e:68:aa:bd:c7:4d:6f:
75:f9:0b:d7:04:47:f4:1a:aa:79:1d:c6:21:b0:51:
6b:e6:a3:37:42:e0:34:9a:27:ed:35:d2:b5:21:11:
f1:88:b1:63:65:43:85:36:2b:87:91:c2:62:65:7e:
b2:df:19:0e:c2:db:c4:44:7b:86:a4:c4:de:76:eb:
3d:4a:a3:c6:4e:c5:da:bb:1f:cd:84:79:50:fd:e1:
d1:f2:18:a1:eb:14:1a:0d:35:23:fa:b2:4e:0a:85:
61:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:79:03:F0:06:9A:9F:7A:40:05:B7:0F:1A:15:C4:1D:84:C1:83:C6
X509v3 Authority Key Identifier:
keyid:A8:A2:51:14:01:14:C8:FD:8A:D5:FB:45:B7:18:9A:BA:7B:C5:04:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qKJRFAEUyP2K1ftFtxiaunvFBI8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/ee4a56-d5c9-4652-9cf1-f09462c12da4/1/AHkD8Aaan3pABbcPGhXEHYTBg8Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/ee4a56-d5c9-4652-9cf1-f09462c12da4/1/qKJRFAEUyP2K1ftFtxiaunvFBI8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.153.184.0/24
Signature Algorithm: sha256WithRSAEncryption
bd:f6:06:09:53:6c:f5:6e:07:a5:2e:eb:62:cf:04:58:ab:3e:
8e:de:98:c1:a0:87:0b:22:39:3e:e8:0f:21:b2:66:df:8d:00:
c1:ce:7d:32:5c:2f:f3:dc:17:dd:68:2b:e5:37:7b:38:80:f6:
48:de:13:b3:2a:f4:a8:f9:51:9c:4f:7b:31:43:3b:db:0e:8a:
5c:83:5b:8b:cb:e9:6a:90:31:17:96:86:8d:c0:95:c5:c7:a8:
a5:2f:e6:29:42:6c:7a:f9:3e:e5:08:fc:11:9f:35:84:0f:d8:
75:9a:ec:a4:eb:45:ba:41:ab:4d:83:a5:d4:e5:93:1d:44:89:
78:71:9a:ab:24:84:58:cd:f5:94:15:3a:cb:e1:91:6a:dd:15:
a1:eb:c9:b7:4f:9d:f5:42:34:7b:d8:b7:6b:95:e0:97:24:44:
27:54:a9:75:5a:11:97:2f:40:fa:79:13:29:ad:d5:c2:11:fb:
cd:2f:92:d2:71:74:66:a4:b0:4a:2f:c7:a8:7f:8f:40:2c:41:
c6:e1:f0:44:d3:b0:62:b7:4c:15:31:25:05:da:7f:0b:15:3a:
a7:c4:39:a5:35:18:72:c4:d0:7b:70:6d:25:24:c0:14:6c:f2:
8e:63:96:ea:88:4b:0f:1b:96:74:6b:9f:45:b9:3f:b5:1f:73:
d9:ac:8d:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 08:06:45 2025 by rpki-client