Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/2925a3-871b-4676-ae10-688d333ed9d5/1/f6xp71AmSGD06YY2IrJqZ9soec4.roa
File: f6xp71AmSGD06YY2IrJqZ9soec4.roa (raw, json)
Hash identifier: P2ngCAMEJOf4Ce1vVcWfg+Kihos97gOGnSUxltJgsDU=
Subject key identifier: 7F:AC:69:EF:50:26:48:60:F4:E9:86:36:22:B2:6A:67:DB:28:79:CE
Certificate issuer: /CN=ef1c665b038692b93bdf5d1d8f3cea3e98697a03
Certificate serial: 019421B1E61A338271C897D1FCC844A12759
Authority key identifier: EF:1C:66:5B:03:86:92:B9:3B:DF:5D:1D:8F:3C:EA:3E:98:69:7A:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7xxmWwOGkrk7310djzzqPphpegM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/2925a3-871b-4676-ae10-688d333ed9d5/1/f6xp71AmSGD06YY2IrJqZ9soec4.roa
Signing time: Wed 01 Jan 2025 11:48:14 +0000
ROA not before: Wed 01 Jan 2025 11:48:14 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 42403
IP address blocks: 195.209.16.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:b1:e6:1a:33:82:71:c8:97:d1:fc:c8:44:a1:27:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ef1c665b038692b93bdf5d1d8f3cea3e98697a03
Validity
Not Before: Jan 1 11:48:14 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=7fac69ef50264860f4e9863622b26a67db2879ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:e3:9a:80:07:42:f4:c0:7c:a6:95:57:cb:6a:
09:5d:c7:2c:ad:83:eb:f5:39:cc:0d:e3:cd:d1:99:
62:15:ce:f2:30:eb:a7:04:2a:e3:d6:65:d4:ba:b6:
1d:3b:1a:b1:6c:94:28:d2:97:e3:82:4e:54:51:f0:
04:47:90:0d:47:e5:0d:9a:43:c5:fb:7c:b8:c0:12:
ae:32:01:a6:b7:cc:04:5f:c5:3e:2a:3b:9b:10:9e:
d8:21:c3:b5:6b:5e:be:12:6a:13:0e:b8:33:3b:ab:
40:17:3c:32:6b:67:25:fc:19:20:b0:0d:77:f9:d7:
ad:fd:b2:a1:a2:f5:4c:c3:47:a3:34:39:85:7c:e6:
2a:22:a3:a7:6e:d7:37:32:13:c1:e5:b6:01:35:61:
20:dc:df:54:06:3e:5d:03:22:a7:02:5b:1b:9a:8d:
7d:4c:c8:38:b9:8a:8c:29:a7:80:a1:82:1a:66:97:
d8:06:f9:e1:ee:8e:e8:c5:db:13:00:c4:9c:70:08:
09:02:f1:d9:04:a5:48:70:54:cf:10:0f:26:fe:e4:
85:16:18:c2:4b:42:18:d1:5d:79:62:98:d3:77:68:
da:77:25:a7:a9:59:42:85:69:18:d1:ee:6c:75:39:
d5:f9:f6:2f:8b:86:7b:52:31:c9:01:7d:d3:16:7e:
ea:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:AC:69:EF:50:26:48:60:F4:E9:86:36:22:B2:6A:67:DB:28:79:CE
X509v3 Authority Key Identifier:
keyid:EF:1C:66:5B:03:86:92:B9:3B:DF:5D:1D:8F:3C:EA:3E:98:69:7A:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7xxmWwOGkrk7310djzzqPphpegM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/2925a3-871b-4676-ae10-688d333ed9d5/1/f6xp71AmSGD06YY2IrJqZ9soec4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/2925a3-871b-4676-ae10-688d333ed9d5/1/7xxmWwOGkrk7310djzzqPphpegM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.209.16.0/24
Signature Algorithm: sha256WithRSAEncryption
76:16:17:b1:df:a4:3d:2c:0e:84:85:2c:af:9c:b4:b9:ed:4b:
b8:3c:a0:7f:0e:c8:99:30:f9:e0:ee:6d:3c:ad:68:d1:e0:c8:
43:09:13:9b:0b:5f:c6:92:1a:9a:5c:d2:39:99:39:fa:bd:fa:
71:fc:e9:46:c3:f4:0b:08:5c:6d:8e:ae:24:0f:fb:d4:51:60:
2b:d0:26:1d:59:ea:3a:3a:d8:0a:3a:62:ba:2e:54:29:e1:bc:
a9:63:78:f5:9f:e0:56:f7:d4:23:f1:88:39:70:03:a4:20:f9:
33:c5:30:fe:5a:a5:c2:82:6f:f1:e5:45:03:6b:c2:38:fa:21:
6e:48:24:a2:a8:93:15:34:f1:b5:e0:e3:bb:54:82:ba:91:08:
a0:dc:5c:30:be:f3:87:c6:09:cd:37:08:96:ec:7a:38:4b:73:
73:e3:6c:ec:8b:ca:63:ef:e3:74:7a:5c:bb:21:f1:f0:3b:ed:
85:24:10:eb:de:35:d1:da:e4:dc:92:ed:c6:e2:c7:e5:61:3f:
9b:cf:57:70:92:e2:8c:fc:0e:b3:4b:64:d0:c9:09:ce:b6:74:
bd:13:f8:2c:2f:95:c2:b9:dd:77:87:f6:ed:85:a1:c4:6e:d4:
26:d6:92:44:2c:6f:f7:84:91:b9:ac:fc:3e:1e:52:8b:09:41:
b8:7e:8b:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 06:07:28 2025 by rpki-client