Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/b8ea5b-3dd4-4374-a793-c5e6d23f8b09/1/a3iaEBF86wbe5VjQTp-OMfHJc1E.roa
File: a3iaEBF86wbe5VjQTp-OMfHJc1E.roa (raw, json)
Hash identifier: nuf4ev5fGHCC4PXZAB5L19yGP986oYjP7JfQB1/fdXU=
Subject key identifier: 6B:78:9A:10:11:7C:EB:06:DE:E5:58:D0:4E:9F:8E:31:F1:C9:73:51
Certificate issuer: /CN=e5a1b36552f9daccb92ac5c3b44b426d643749e2
Certificate serial: 019422201834DF07F70A2F609E7358A01857
Authority key identifier: E5:A1:B3:65:52:F9:DA:CC:B9:2A:C5:C3:B4:4B:42:6D:64:37:49:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5aGzZVL52sy5KsXDtEtCbWQ3SeI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/b8ea5b-3dd4-4374-a793-c5e6d23f8b09/1/a3iaEBF86wbe5VjQTp-OMfHJc1E.roa
Signing time: Wed 01 Jan 2025 13:48:36 +0000
ROA not before: Wed 01 Jan 2025 13:48:36 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 208938
IP address blocks: 82.193.86.0/24 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:20:18:34:df:07:f7:0a:2f:60:9e:73:58:a0:18:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e5a1b36552f9daccb92ac5c3b44b426d643749e2
Validity
Not Before: Jan 1 13:48:36 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=6b789a10117ceb06dee558d04e9f8e31f1c97351
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:c2:b1:2b:4d:3b:e3:36:c6:91:de:9b:8e:69:
3b:b6:f7:65:e3:3e:b0:f6:be:6d:9f:ef:2b:dd:e7:
f8:08:a9:6b:95:bc:71:7a:97:fc:94:04:b7:5a:6b:
a6:8d:68:04:ee:54:1f:75:63:72:4d:13:ec:89:fb:
06:b8:d6:82:d5:fe:d8:61:5c:12:b6:77:8e:be:08:
4f:b3:07:99:42:a1:ab:b7:7c:07:86:11:8b:16:4c:
e9:7d:8f:2c:68:d2:11:23:61:1f:38:25:82:d5:6d:
0f:f4:bb:6c:3a:9a:70:c6:bb:79:fc:4a:ff:8b:f4:
68:8e:3f:f5:85:ac:9c:a9:07:0a:4d:30:75:85:4e:
78:05:97:e0:78:7e:13:9d:b0:90:91:b3:25:97:e3:
1a:76:5d:bc:e4:e4:25:b4:8d:a0:4c:d5:7f:80:7e:
32:c7:82:6a:e8:35:d7:02:0d:dd:61:2b:ce:43:d8:
88:f7:50:b0:48:db:03:c3:31:89:77:89:7b:3e:bd:
97:1b:77:df:d6:10:a4:83:c4:3b:02:fd:77:28:30:
c6:84:34:e2:c2:f9:13:7d:db:22:16:9f:c4:0c:d6:
18:f9:4a:ac:22:ae:ad:4d:4d:0e:83:1d:6b:f2:3e:
04:01:6b:20:ce:9b:b2:8c:1b:15:ff:5b:ef:af:a0:
2d:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:78:9A:10:11:7C:EB:06:DE:E5:58:D0:4E:9F:8E:31:F1:C9:73:51
X509v3 Authority Key Identifier:
keyid:E5:A1:B3:65:52:F9:DA:CC:B9:2A:C5:C3:B4:4B:42:6D:64:37:49:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5aGzZVL52sy5KsXDtEtCbWQ3SeI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/b8ea5b-3dd4-4374-a793-c5e6d23f8b09/1/a3iaEBF86wbe5VjQTp-OMfHJc1E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/b8ea5b-3dd4-4374-a793-c5e6d23f8b09/1/5aGzZVL52sy5KsXDtEtCbWQ3SeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.193.86.0/24
Signature Algorithm: sha256WithRSAEncryption
c0:78:13:e4:75:83:5f:a8:b5:d0:c4:cd:ab:63:23:3f:27:05:
2f:1f:6c:5c:b8:4e:ed:70:01:f4:60:3d:65:71:34:ce:76:36:
6f:45:c6:f3:a6:21:db:8a:d6:39:8b:b1:f3:a6:21:19:60:b7:
b3:a6:c2:b2:4f:e9:fc:8e:fe:88:f0:38:13:be:ec:88:15:29:
2d:4d:b1:3e:9c:7e:bd:5a:17:03:0f:00:64:ab:50:c3:02:7e:
71:b9:a4:be:77:a4:95:28:44:a3:74:ad:32:a6:05:ff:82:38:
c9:13:35:7d:f8:2f:67:8d:8a:79:34:b8:81:70:c1:fe:61:2f:
93:93:7a:05:ef:f1:0c:02:61:79:c1:e3:4c:59:db:19:97:15:
dd:a1:db:20:ec:a7:63:9c:90:ba:14:b6:e9:d3:d9:6b:97:dd:
b7:d1:e5:83:ca:e8:58:78:ad:fa:f8:2b:c3:84:2a:bb:a4:4c:
11:7f:83:dc:cc:a1:88:49:c9:fe:1b:c5:b7:ff:a8:10:8e:3b:
c1:b2:4e:a1:31:04:0d:c1:c8:c2:be:b4:9c:ca:07:ea:b9:a7:
ee:63:d9:4e:dc:02:71:0c:f9:06:a7:2f:75:ec:85:b1:e4:51:
52:11:f5:91:17:5f:a9:59:80:40:ab:70:48:45:5a:3c:2a:70:
d7:93:95:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 10:36:20 2025 by rpki-client