Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/e61caa-2500-4388-a9fa-7324913975d5/1/gBOr1K9o3G_sjVut4hTNYrOz3aw.roa
File: gBOr1K9o3G_sjVut4hTNYrOz3aw.roa (raw, json)
Hash identifier: WvCboN2sSwdfSWgLauEyXaJvvKZ2k+WSGckagpeMJcA=
Subject key identifier: 80:13:AB:D4:AF:68:DC:6F:EC:8D:5B:AD:E2:14:CD:62:B3:B3:DD:AC
Certificate issuer: /CN=3ee6cecffd9b8bba18d474e7b3993e0a1d14dbb3
Certificate serial: 0194228E050AFC1EF80A93E33CBE991149E2
Authority key identifier: 3E:E6:CE:CF:FD:9B:8B:BA:18:D4:74:E7:B3:99:3E:0A:1D:14:DB:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PubOz_2bi7oY1HTns5k-Ch0U27M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/e61caa-2500-4388-a9fa-7324913975d5/1/gBOr1K9o3G_sjVut4hTNYrOz3aw.roa
Signing time: Wed 01 Jan 2025 15:48:40 +0000
ROA not before: Wed 01 Jan 2025 15:48:40 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 8767
IP address blocks: 194.246.16.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:8e:05:0a:fc:1e:f8:0a:93:e3:3c:be:99:11:49:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ee6cecffd9b8bba18d474e7b3993e0a1d14dbb3
Validity
Not Before: Jan 1 15:48:40 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=8013abd4af68dc6fec8d5bade214cd62b3b3ddac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:9b:2e:b9:28:28:55:9c:2c:63:b4:f2:f8:ad:
6e:47:0f:94:43:6a:f7:2d:cf:dd:60:c2:8f:37:21:
a2:ce:6f:ed:2e:2d:96:bb:d1:0b:a4:32:e1:d5:ec:
36:12:2c:51:78:fd:9b:86:8b:19:ed:c3:00:be:14:
86:2d:46:c0:83:e6:38:3b:2b:5d:ba:99:31:9f:ca:
26:98:71:52:65:ad:09:61:ab:e4:5f:8b:c2:24:a3:
89:6e:a1:eb:cd:1c:4d:5e:e4:c0:36:37:86:29:7b:
96:de:05:97:74:4d:f9:49:cc:32:75:cb:61:6f:fd:
8e:13:66:a5:b2:81:47:3a:66:88:84:a8:d8:d8:da:
b4:cb:c2:05:f6:de:4a:f6:e8:1c:6f:f1:d1:32:e7:
25:16:49:f1:de:47:b3:42:b1:99:f3:46:2a:f5:86:
5a:10:5b:69:ea:c2:c7:5a:44:e1:88:f9:94:b4:24:
86:c0:39:1f:53:68:ce:05:64:89:1d:79:29:51:da:
2d:d0:7a:ef:22:ef:2a:ae:12:dd:4f:f1:eb:6f:be:
79:29:36:89:a6:27:a7:b9:94:6e:4a:06:62:e6:2f:
2b:7c:e7:af:af:f4:c9:05:59:d9:4b:32:8a:b0:7d:
ed:d9:35:c4:af:93:03:f0:62:40:ed:51:0e:37:b8:
e5:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:13:AB:D4:AF:68:DC:6F:EC:8D:5B:AD:E2:14:CD:62:B3:B3:DD:AC
X509v3 Authority Key Identifier:
keyid:3E:E6:CE:CF:FD:9B:8B:BA:18:D4:74:E7:B3:99:3E:0A:1D:14:DB:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PubOz_2bi7oY1HTns5k-Ch0U27M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/e61caa-2500-4388-a9fa-7324913975d5/1/gBOr1K9o3G_sjVut4hTNYrOz3aw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/e61caa-2500-4388-a9fa-7324913975d5/1/PubOz_2bi7oY1HTns5k-Ch0U27M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.246.16.0/24
Signature Algorithm: sha256WithRSAEncryption
58:08:ac:7c:3f:c5:ee:a3:ba:de:e7:25:fa:f0:a0:81:10:78:
d0:6d:b9:ed:3f:7c:10:1a:55:31:7d:04:69:bb:f2:b7:eb:b1:
02:65:16:82:3f:aa:03:3b:03:86:17:b6:8b:86:e9:db:6c:7c:
f5:1f:e3:6b:ca:06:3c:0f:12:c0:d0:8d:94:92:36:e8:cb:66:
ed:2e:0c:3c:fb:52:ce:d7:78:28:c5:39:da:07:07:8b:0a:c2:
1e:a7:c1:b9:09:e0:03:e1:02:84:d4:2c:d8:71:bd:6e:93:59:
81:9a:55:ea:68:46:a3:ac:4b:84:5f:ce:d7:af:de:10:9c:c1:
82:18:2d:01:75:c0:0a:b5:b4:b9:40:a5:95:42:f7:59:37:be:
00:61:54:2d:ad:b9:48:3a:d2:6d:71:cc:cd:f1:5b:1e:90:9c:
e0:b5:d3:31:4b:cc:52:59:4a:82:3c:27:73:34:27:56:5b:a8:
a4:91:2f:d7:25:10:d0:76:02:4f:16:c5:36:3c:82:a0:12:99:
c8:7d:2e:9b:b5:6c:07:6e:3c:33:a5:47:be:3b:c2:c7:9c:2b:
db:5f:6f:4a:c9:5d:7e:4a:2c:dd:b9:74:ac:de:d2:a1:03:b7:
f4:dd:10:a3:b4:bb:22:c2:2e:1c:e0:df:ca:b2:db:43:52:3d:
6f:2d:e6:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 09:08:06 2025 by rpki-client