Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/669ebf-ee7f-4eb7-8486-95ad92ac8698/1/APdV8HOuK_baV9w8xFhYPy7-2P4.roa
File: APdV8HOuK_baV9w8xFhYPy7-2P4.roa (raw, json)
Hash identifier: IitULqtIj0Y4YtBexT7yVT81AkWjJbb2T56Qs1uC9QM=
Subject key identifier: 00:F7:55:F0:73:AE:2B:F6:DA:57:DC:3C:C4:58:58:3F:2E:FE:D8:FE
Certificate issuer: /CN=1062bc36512658a0f7d3f96bc1d8e67d9fd4918b
Certificate serial: 01942520A3F5E4A5B505B0610C64B124893F
Authority key identifier: 10:62:BC:36:51:26:58:A0:F7:D3:F9:6B:C1:D8:E6:7D:9F:D4:91:8B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EGK8NlEmWKD30_lrwdjmfZ_UkYs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/669ebf-ee7f-4eb7-8486-95ad92ac8698/1/APdV8HOuK_baV9w8xFhYPy7-2P4.roa
Signing time: Thu 02 Jan 2025 03:48:03 +0000
ROA not before: Thu 02 Jan 2025 03:48:03 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 29551
IP address blocks: 195.245.86.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:20:a3:f5:e4:a5:b5:05:b0:61:0c:64:b1:24:89:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1062bc36512658a0f7d3f96bc1d8e67d9fd4918b
Validity
Not Before: Jan 2 03:48:03 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=00f755f073ae2bf6da57dc3cc458583f2efed8fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:4c:79:07:c3:17:71:58:54:e0:f8:e4:9f:e0:
19:1c:42:44:cd:d4:0c:b7:c2:8b:d1:dc:8e:8f:3e:
3b:66:24:52:11:b1:28:03:54:89:7e:2f:f3:0d:b8:
79:06:3f:17:08:e3:5b:48:21:ec:94:1c:a6:61:74:
dd:c7:17:99:c5:0c:80:3e:e9:c6:04:81:a3:fc:59:
54:d1:72:79:0a:dc:6f:d8:7d:38:f2:fa:e0:b1:c2:
9d:48:3a:90:98:c0:e6:08:e3:09:01:06:39:5b:1e:
a2:9c:35:12:e8:26:e0:06:2e:97:07:75:3c:5d:2d:
62:8f:ec:40:3e:b3:76:75:f5:31:27:e0:72:16:d7:
af:95:c7:18:ac:c7:14:ad:1e:75:52:cd:d0:1f:94:
6b:5f:84:7d:98:34:15:13:77:f1:83:ae:85:da:b7:
77:6c:46:a9:a8:db:15:ef:f0:4d:90:e1:d4:b6:c0:
46:e4:19:34:0f:19:1a:b0:8f:07:59:a3:31:05:59:
ef:74:f7:56:e5:d9:04:c4:82:f7:ac:48:63:52:7f:
d2:df:69:d1:cd:87:c4:05:6b:c8:78:c8:dd:18:ad:
13:ff:b3:96:e8:6d:aa:93:97:98:b3:e7:09:2b:91:
b0:df:6a:07:36:bd:22:c8:e5:b8:a5:18:1a:09:90:
a7:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:F7:55:F0:73:AE:2B:F6:DA:57:DC:3C:C4:58:58:3F:2E:FE:D8:FE
X509v3 Authority Key Identifier:
keyid:10:62:BC:36:51:26:58:A0:F7:D3:F9:6B:C1:D8:E6:7D:9F:D4:91:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EGK8NlEmWKD30_lrwdjmfZ_UkYs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/669ebf-ee7f-4eb7-8486-95ad92ac8698/1/APdV8HOuK_baV9w8xFhYPy7-2P4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/669ebf-ee7f-4eb7-8486-95ad92ac8698/1/EGK8NlEmWKD30_lrwdjmfZ_UkYs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.245.86.0/23
Signature Algorithm: sha256WithRSAEncryption
71:db:17:a5:2c:ab:fa:91:18:d4:1c:16:75:de:ac:c0:de:4d:
67:ff:3d:b3:85:38:58:7a:63:d7:31:a1:99:75:54:79:0d:b0:
bd:1c:3d:a9:61:29:d5:9c:07:73:12:8e:7e:cd:71:d1:b8:50:
fb:74:23:96:2c:66:e4:64:4b:2f:56:74:d4:5f:ee:64:78:42:
62:11:aa:b4:c7:39:1c:31:46:20:07:91:f3:73:3f:ce:26:3a:
6e:48:77:f6:86:35:83:c8:f5:61:0c:c4:b5:3b:1e:1f:cf:9d:
50:e1:be:ef:ce:c9:4f:7d:d6:0a:a1:5d:58:c6:12:8e:b1:c9:
1e:38:1e:69:29:ab:6a:a0:19:d8:cf:c3:a4:ba:b1:43:20:b3:
69:34:f9:71:a8:64:4a:c1:b8:7c:0e:03:74:36:08:26:4e:77:
fa:c4:d0:43:12:26:89:2a:e8:e8:a2:18:e5:6f:01:7e:f0:8f:
d3:a9:e1:14:95:94:ee:cd:d4:60:ca:8c:bc:f5:83:24:f4:4a:
6f:aa:8d:e7:ae:c8:1c:79:4d:7c:9e:4b:69:f5:74:2d:14:d7:
fd:c6:33:2b:6e:26:58:40:c3:92:a6:1b:17:25:9a:41:29:b8:
36:96:a2:df:df:51:92:bc:75:22:c3:57:a2:1c:f4:6a:5c:ff:
d9:2b:a7:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 13:51:43 2025 by rpki-client