Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/2ca7c4-15bb-4728-8c9b-ae1799a3d914/1/oXndQEWLAi93Q3gStogUAMhpojg.roa
File: oXndQEWLAi93Q3gStogUAMhpojg.roa (raw, json)
Hash identifier: 3yyWwrPlKu/PVm4mmaMjgKzNXRTuMyz0HTS/+PODjNA=
Subject key identifier: A1:79:DD:40:45:8B:02:2F:77:43:78:12:B6:88:14:00:C8:69:A2:38
Certificate issuer: /CN=b9461987d000d8e618854ce4e3ff819ff8f4d244
Certificate serial: 0194222017C84D9864CF891F419EE3E373DF
Authority key identifier: B9:46:19:87:D0:00:D8:E6:18:85:4C:E4:E3:FF:81:9F:F8:F4:D2:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uUYZh9AA2OYYhUzk4_-Bn_j00kQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/2ca7c4-15bb-4728-8c9b-ae1799a3d914/1/oXndQEWLAi93Q3gStogUAMhpojg.roa
Signing time: Wed 01 Jan 2025 13:48:36 +0000
ROA not before: Wed 01 Jan 2025 13:48:36 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 197837
IP address blocks: 94.154.56.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:20:17:c8:4d:98:64:cf:89:1f:41:9e:e3:e3:73:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9461987d000d8e618854ce4e3ff819ff8f4d244
Validity
Not Before: Jan 1 13:48:36 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=a179dd40458b022f77437812b6881400c869a238
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:18:a2:dd:55:bb:5b:0a:d5:18:b1:e0:bf:e4:
0e:fb:e1:a6:68:b1:e0:6d:db:1d:24:0f:0c:2d:53:
43:17:06:48:21:fd:63:92:54:30:cd:bf:02:54:09:
76:cf:b0:21:c9:d8:83:f4:a2:49:c2:eb:be:d5:c4:
e5:ea:ec:80:5d:83:a7:70:22:f7:1a:6b:ba:4a:e3:
58:7f:4c:90:59:ef:02:22:fa:cd:13:51:d7:7f:a8:
6d:94:20:36:b9:62:6a:d5:59:37:98:e0:df:2b:4c:
bf:2a:91:02:33:ee:e5:7e:79:60:b8:76:56:a4:43:
f7:54:35:b3:55:26:62:a8:ff:b8:9d:25:13:35:45:
79:9c:e9:f5:74:2f:fa:45:44:70:d2:1c:bc:5f:86:
30:39:2c:38:64:ba:7a:fa:db:45:5e:3c:50:1e:8a:
1e:86:56:17:7b:d2:f6:f0:79:b8:ca:01:82:a4:0d:
6b:69:4e:01:6a:56:69:f9:23:b7:c0:b1:a9:7c:2e:
04:e5:80:4b:00:9b:69:8f:7e:55:08:09:4f:87:b2:
82:38:87:24:a5:41:45:3f:e1:7b:98:1b:a7:7e:a5:
02:df:d6:b1:b9:83:69:4d:a2:1f:e9:57:8e:b4:44:
86:9a:cd:44:0b:3b:5e:a9:26:ac:3b:4b:a4:b0:66:
cc:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:79:DD:40:45:8B:02:2F:77:43:78:12:B6:88:14:00:C8:69:A2:38
X509v3 Authority Key Identifier:
keyid:B9:46:19:87:D0:00:D8:E6:18:85:4C:E4:E3:FF:81:9F:F8:F4:D2:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uUYZh9AA2OYYhUzk4_-Bn_j00kQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/2ca7c4-15bb-4728-8c9b-ae1799a3d914/1/oXndQEWLAi93Q3gStogUAMhpojg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/2ca7c4-15bb-4728-8c9b-ae1799a3d914/1/uUYZh9AA2OYYhUzk4_-Bn_j00kQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.154.56.0/21
Signature Algorithm: sha256WithRSAEncryption
38:a0:7a:d7:25:b0:2c:3a:c0:e0:9d:6d:74:30:67:0d:93:97:
c0:3d:08:b5:ee:63:79:76:7d:75:34:6b:2a:49:9f:ab:fe:10:
9b:22:26:2a:c8:f4:0d:a6:dd:f1:e5:10:2f:bd:75:b6:57:51:
e8:11:32:c6:2c:b7:0b:68:26:6a:29:8c:76:33:55:17:cb:3f:
68:99:e1:4b:b2:bb:96:bc:88:88:9d:2c:9b:5e:ac:57:bf:14:
9b:07:ef:bd:45:b0:be:b1:f3:b2:0f:79:da:72:33:bf:4c:fb:
cf:9c:44:c7:a3:a4:78:6d:8b:26:57:6d:93:0c:9e:26:49:49:
67:0b:39:94:66:5f:d4:91:80:49:bd:09:10:4e:1a:04:ea:55:
63:0d:e1:00:68:7c:f6:ae:af:ba:de:7d:a9:b7:ee:da:34:dc:
85:dc:3b:eb:41:47:dd:4a:48:3e:00:59:9f:96:67:60:4f:bd:
02:9e:25:94:4f:32:cd:61:cf:99:7d:ac:93:91:dd:10:67:50:
af:9e:23:06:19:87:b2:55:98:8b:b4:c7:2f:17:bd:08:74:63:
4a:e7:1a:ef:ba:25:1b:83:2a:d2:ce:4e:16:54:e3:06:b7:3f:
bb:c9:2b:f7:0d:df:b5:a8:a5:0d:b3:2c:4a:c1:11:8e:03:83:
d8:83:11:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 21:14:19 2025 by rpki-client