Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/3a7a7b-dd9d-4d7c-86c4-13c428ad5fdb/1/9c99e7OOCoSsqv05bamuZvrBRAg.roa
File: 9c99e7OOCoSsqv05bamuZvrBRAg.roa (raw, json)
Hash identifier: gcQqAYS/2mIfyTda9lezITlbdeVA2P8mDvlHBkdo3p0=
Subject key identifier: F5:CF:7D:7B:B3:8E:0A:84:AC:AA:FD:39:6D:A9:AE:66:FA:C1:44:08
Certificate issuer: /CN=605bc01303905800620ac26c1468b141f8074514
Certificate serial: 0194221F5263E7E17E096E5A0D919DB4E70E
Authority key identifier: 60:5B:C0:13:03:90:58:00:62:0A:C2:6C:14:68:B1:41:F8:07:45:14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YFvAEwOQWABiCsJsFGixQfgHRRQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/3a7a7b-dd9d-4d7c-86c4-13c428ad5fdb/1/9c99e7OOCoSsqv05bamuZvrBRAg.roa
Signing time: Wed 01 Jan 2025 13:47:45 +0000
ROA not before: Wed 01 Jan 2025 13:47:45 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 57028
IP address blocks: 194.6.203.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:1f:52:63:e7:e1:7e:09:6e:5a:0d:91:9d:b4:e7:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=605bc01303905800620ac26c1468b141f8074514
Validity
Not Before: Jan 1 13:47:45 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=f5cf7d7bb38e0a84acaafd396da9ae66fac14408
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:bd:21:ed:bc:50:54:38:c1:b2:5a:96:a7:20:
13:00:7a:34:21:05:f5:ae:65:39:b3:c3:b7:e3:4b:
05:49:f2:4e:38:96:d7:be:61:29:4e:ec:cf:38:15:
fd:65:86:14:f6:e9:73:13:f3:67:b2:af:a2:f8:e8:
26:f2:90:0b:a8:06:90:8f:40:8f:50:f1:11:16:14:
03:5b:67:a1:74:bf:98:57:c8:39:aa:18:0e:4b:06:
55:76:ae:77:f7:1d:ef:3c:39:52:6b:8b:54:f6:6d:
77:d1:fa:65:80:df:6d:1d:3c:55:e0:22:32:e2:6f:
6c:67:b1:1b:40:12:15:6e:e3:4b:9f:da:0f:94:23:
00:f6:89:cb:84:32:42:eb:df:5c:53:d4:06:5e:30:
40:3a:2d:aa:51:9b:66:d1:1f:31:33:13:66:7d:a5:
6f:8c:d5:ec:7e:e9:f3:ea:23:40:8c:3a:43:ba:e0:
c3:97:c1:d4:d9:58:17:4f:74:c3:23:67:d8:0b:31:
01:cc:f0:e3:71:0e:04:8f:c7:d3:20:33:ce:36:59:
25:70:13:a5:8b:1d:92:b0:81:54:e8:bb:86:f1:ff:
86:d1:0f:a9:6c:71:d8:cb:3a:84:ef:12:d3:39:5c:
b2:d2:21:09:b3:73:91:ad:16:5b:f2:50:ab:f3:67:
95:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:CF:7D:7B:B3:8E:0A:84:AC:AA:FD:39:6D:A9:AE:66:FA:C1:44:08
X509v3 Authority Key Identifier:
keyid:60:5B:C0:13:03:90:58:00:62:0A:C2:6C:14:68:B1:41:F8:07:45:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YFvAEwOQWABiCsJsFGixQfgHRRQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/3a7a7b-dd9d-4d7c-86c4-13c428ad5fdb/1/9c99e7OOCoSsqv05bamuZvrBRAg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/3a7a7b-dd9d-4d7c-86c4-13c428ad5fdb/1/YFvAEwOQWABiCsJsFGixQfgHRRQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.6.203.0/24
Signature Algorithm: sha256WithRSAEncryption
a5:db:c3:5b:ba:d5:dd:2d:f8:c3:85:12:e2:56:6d:1a:e7:8e:
bd:93:d3:c5:fc:0a:2a:5c:16:f5:55:0a:5b:19:fd:31:3b:c1:
6c:3c:a7:01:01:99:46:41:69:2a:7b:2e:d0:01:3c:80:6e:9f:
c4:d6:da:f1:b4:3e:a8:55:c0:9c:23:41:98:6f:6e:5e:77:b8:
01:06:1a:b6:73:1e:b2:93:e6:0b:2c:61:02:91:b3:f4:58:8f:
56:63:cd:9f:f7:41:93:91:a3:cc:25:89:6e:f1:42:03:54:09:
33:af:5a:2a:1c:55:73:3a:89:0e:6b:2b:42:94:79:15:91:f0:
6b:01:5b:b4:7c:09:d0:b9:5d:ba:56:9b:fc:ee:78:c8:1c:6e:
98:dd:8d:1a:0c:b8:74:0d:95:f8:7b:b4:89:55:dc:ed:95:94:
11:cb:2d:12:6e:97:42:70:8e:f9:df:7b:95:bf:c7:70:13:27:
b6:58:b1:a5:aa:9a:7d:a5:1e:11:c3:08:af:11:63:2f:45:6b:
75:94:c6:85:a7:16:b1:f7:01:67:7b:17:b8:8e:84:85:ef:d1:
42:2f:c9:d4:fc:6e:9e:91:56:d5:0d:74:67:74:fa:58:94:73:
7e:6f:18:2f:b7:52:6c:1c:87:52:5a:58:2f:95:55:db:e5:ad:
d0:88:c4:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 05:02:08 2025 by rpki-client