Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/4f1b27-326a-4679-a64b-da6153885f3b/1/Ig1WTTEJWSAB8ImVaoKPLwHQgbc.roa
File: Ig1WTTEJWSAB8ImVaoKPLwHQgbc.roa (raw, json)
Hash identifier: UMRsVJllHBv632Y31OJYoImld0QNRvOFUdYe6AzQydE=
Subject key identifier: 22:0D:56:4D:31:09:59:20:01:F0:89:95:6A:82:8F:2F:01:D0:81:B7
Certificate issuer: /CN=583d76051017d0afa915fcfb790a00f4667b0a88
Certificate serial: 01943AEB2F3783AC5B135B27E35CF60AB8F7
Authority key identifier: 58:3D:76:05:10:17:D0:AF:A9:15:FC:FB:79:0A:00:F4:66:7B:0A:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WD12BRAX0K-pFfz7eQoA9GZ7Cog.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/4f1b27-326a-4679-a64b-da6153885f3b/1/Ig1WTTEJWSAB8ImVaoKPLwHQgbc.roa
Signing time: Mon 06 Jan 2025 09:21:19 +0000
ROA not before: Mon 06 Jan 2025 09:21:19 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 42990
IP address blocks: 194.225.137.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:3a:eb:2f:37:83:ac:5b:13:5b:27:e3:5c:f6:0a:b8:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=583d76051017d0afa915fcfb790a00f4667b0a88
Validity
Not Before: Jan 6 09:21:19 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=220d564d3109592001f089956a828f2f01d081b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:c7:8b:28:1e:47:ac:63:59:74:e3:eb:93:8c:
b3:91:d5:69:fc:3e:3b:f1:fb:df:b2:67:f5:22:52:
77:7f:4b:a5:69:28:32:b2:ee:7a:7c:bf:c9:1c:fd:
bc:bf:fc:4c:ed:57:14:23:64:79:84:b4:82:b8:56:
44:7e:a2:93:2e:04:76:ad:8b:f7:fe:d3:e5:9b:33:
9d:0b:06:71:4a:1b:a7:1f:63:e3:0c:5c:c9:e5:8b:
70:f8:f9:c3:69:50:c8:fb:09:2a:f2:0c:dd:d3:1e:
d9:d5:4b:5e:ce:21:04:58:78:e7:63:7c:e1:87:71:
56:42:1d:dc:4b:f5:bb:5a:1f:16:01:54:12:51:ad:
bc:77:50:0a:ea:c1:25:5f:c4:70:ef:73:59:90:ec:
e7:40:cc:50:02:5c:cc:cb:58:c1:d6:f3:c0:42:07:
8e:df:f5:57:a6:6d:9e:0a:6b:ef:4b:c2:5f:b9:3d:
9e:16:84:d0:3b:87:3e:07:47:8c:ab:e1:49:27:97:
45:62:83:cc:af:c7:09:86:bc:71:d1:27:c8:74:f0:
95:d4:dc:29:7b:b9:35:c3:3e:6f:51:de:5f:84:86:
ee:95:ee:cb:6a:d6:a8:dd:0f:a9:91:37:f7:0c:ca:
7b:a5:68:7f:45:b6:c4:ce:e1:92:06:25:d0:66:24:
c6:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:0D:56:4D:31:09:59:20:01:F0:89:95:6A:82:8F:2F:01:D0:81:B7
X509v3 Authority Key Identifier:
keyid:58:3D:76:05:10:17:D0:AF:A9:15:FC:FB:79:0A:00:F4:66:7B:0A:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WD12BRAX0K-pFfz7eQoA9GZ7Cog.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/4f1b27-326a-4679-a64b-da6153885f3b/1/Ig1WTTEJWSAB8ImVaoKPLwHQgbc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/4f1b27-326a-4679-a64b-da6153885f3b/1/WD12BRAX0K-pFfz7eQoA9GZ7Cog.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.225.137.0/24
Signature Algorithm: sha256WithRSAEncryption
46:68:c8:df:f6:9b:79:3a:90:2b:97:a9:4a:e4:ad:38:b8:7a:
5f:36:92:70:ac:d9:c3:9e:57:54:59:37:a9:e0:34:e0:74:9a:
f3:a7:f0:41:30:b0:6c:02:40:f6:0f:56:f6:e8:1b:8f:ac:10:
f8:28:61:1f:79:7f:31:f3:e3:3c:da:01:56:f8:df:32:6f:81:
29:6b:ca:28:92:83:9c:a2:72:fa:1a:e0:9e:b6:da:06:c7:d4:
52:04:1f:35:8c:8e:fc:bb:30:ab:9e:a4:73:c0:5e:62:26:72:
d0:25:7d:0c:96:47:8b:cb:34:b0:21:45:e7:b8:05:3d:39:b9:
63:ab:c1:1d:5b:82:88:69:72:4a:1f:28:a7:bd:7b:be:d0:14:
d3:2f:d8:8d:b2:a1:a0:fa:a6:c9:6f:dd:d0:9b:36:d3:b5:1e:
7d:69:c7:47:ab:e8:3e:fa:04:6a:a0:88:95:81:3e:cf:85:39:
e0:50:bd:e6:c3:58:86:2a:83:ba:e9:49:76:76:f4:a1:14:b6:
b2:72:bd:9a:9a:07:5c:97:45:86:c4:84:24:d6:49:83:74:15:
ea:29:85:05:23:2c:fa:d6:88:65:c1:02:f5:9e:50:4a:5a:50:
18:42:9b:8f:b2:43:cc:7c:99:96:49:d5:4b:f1:ce:b3:5f:0b:
f1:fc:cc:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 11:41:34 2025 by rpki-client