Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/461685-073e-41af-9bb6-cf6c305212eb/1/hsH-e4sppViS3iNq4F4kEU0ep0g.roa
File: hsH-e4sppViS3iNq4F4kEU0ep0g.roa (raw, json)
Hash identifier: dqKnOJjGSqIH7LzL8ZBxcWScroq9fSiiauAsWgvwoYw=
Subject key identifier: 86:C1:FE:7B:8B:29:A5:58:92:DE:23:6A:E0:5E:24:11:4D:1E:A7:48
Certificate issuer: /CN=b14aba8b60749393478e83c360e6cbd75d156f89
Certificate serial: 019421B23C7C929328E8FDDC1768C0BB3AB1
Authority key identifier: B1:4A:BA:8B:60:74:93:93:47:8E:83:C3:60:E6:CB:D7:5D:15:6F:89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sUq6i2B0k5NHjoPDYObL110Vb4k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/461685-073e-41af-9bb6-cf6c305212eb/1/hsH-e4sppViS3iNq4F4kEU0ep0g.roa
Signing time: Wed 01 Jan 2025 11:48:36 +0000
ROA not before: Wed 01 Jan 2025 11:48:36 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 200040
IP address blocks: 188.124.0.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:b2:3c:7c:92:93:28:e8:fd:dc:17:68:c0:bb:3a:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b14aba8b60749393478e83c360e6cbd75d156f89
Validity
Not Before: Jan 1 11:48:36 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=86c1fe7b8b29a55892de236ae05e24114d1ea748
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:84:0f:93:b9:c4:f8:a3:0d:2e:b0:8b:7b:e7:
03:7c:02:8f:53:7e:d4:7e:48:bd:54:7f:dc:8e:87:
0c:00:b2:3a:c8:14:91:83:09:8d:6b:25:37:cd:2c:
18:2d:3f:96:04:8a:2c:35:84:78:1c:42:f6:18:9e:
6a:73:06:70:63:c2:67:de:0a:a2:8c:7b:b8:68:3c:
90:56:4e:d2:75:6c:43:89:f2:20:22:dd:27:e3:bc:
b9:77:df:4b:5a:8f:aa:12:78:9d:dd:2a:f3:5a:f4:
6d:c9:c7:3a:6c:0e:ea:49:a5:28:af:1e:3a:30:1a:
35:80:70:b5:29:f3:14:c1:21:1a:9f:88:6f:be:77:
a5:c2:49:75:8d:3e:05:f8:ff:db:38:e2:34:9b:e2:
a7:9d:b0:3d:a0:ef:e9:49:d6:91:de:91:0d:b6:62:
c7:ab:bd:9c:e1:dc:bb:77:5b:8d:4e:5e:d2:9f:97:
4b:63:ce:80:6d:02:8a:9a:92:f1:36:1d:94:8b:57:
48:95:2a:50:8d:dc:e1:49:fe:a4:0e:96:71:d6:34:
0b:a3:94:55:a7:63:2d:12:f3:eb:e2:ad:06:ec:59:
f1:73:6b:3c:d9:c9:cf:e2:d2:0a:f8:23:8a:43:20:
3b:79:ab:cc:bb:3c:f3:ab:2b:91:50:cd:fb:9a:29:
f7:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:C1:FE:7B:8B:29:A5:58:92:DE:23:6A:E0:5E:24:11:4D:1E:A7:48
X509v3 Authority Key Identifier:
keyid:B1:4A:BA:8B:60:74:93:93:47:8E:83:C3:60:E6:CB:D7:5D:15:6F:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sUq6i2B0k5NHjoPDYObL110Vb4k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/461685-073e-41af-9bb6-cf6c305212eb/1/hsH-e4sppViS3iNq4F4kEU0ep0g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/461685-073e-41af-9bb6-cf6c305212eb/1/sUq6i2B0k5NHjoPDYObL110Vb4k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.124.0.0/24
Signature Algorithm: sha256WithRSAEncryption
68:24:8d:63:f9:4e:52:91:af:a9:c3:08:2c:dd:8c:3e:5e:05:
18:e8:fd:52:6e:69:42:b5:5c:9c:a8:2a:f1:b2:9b:04:c9:38:
21:d2:10:78:1d:dd:b6:d9:fd:93:27:cf:79:38:5e:74:c9:cf:
ab:bc:d9:d8:e7:55:ec:50:35:6c:ed:b8:4c:b8:16:5b:0c:d4:
f2:c3:34:27:d8:7f:bc:f1:cf:1d:f0:32:3e:50:69:4f:f9:dc:
50:a7:8c:06:c0:62:fa:c0:8c:f9:bc:93:87:21:75:32:92:a7:
04:b9:1a:89:fa:37:35:6d:62:c7:22:c1:6c:ce:a9:3a:4a:97:
27:5a:b1:18:b8:f9:da:2c:b1:5b:a7:ad:80:3f:be:19:79:9d:
b4:54:9a:cf:b6:d2:e6:38:7c:ea:43:b2:3a:60:69:6e:81:93:
bf:25:ef:fb:42:0c:e2:43:16:22:c1:44:34:3c:ed:8d:bf:06:
71:cf:c9:ff:2a:08:40:f1:aa:d7:2a:b1:41:68:58:5b:2f:3b:
e5:c1:2b:6f:64:09:0e:83:8b:25:c9:90:7a:53:40:75:fb:5d:
41:49:94:cf:bc:42:a7:6e:91:d6:9c:9a:46:2c:70:a0:53:2d:
b4:f4:ce:70:75:f1:cf:96:85:ef:c1:bd:ee:50:48:8a:dc:e9:
dc:8a:47:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 04:03:23 2025 by rpki-client