Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/51fdbb-8ba2-4b7e-980f-ee60b0ddbdaa/1/4COA7EoK---RVhokcyyZ55j8IXE.roa
File: 4COA7EoK---RVhokcyyZ55j8IXE.roa (raw, json)
Hash identifier: 7qjze9UZTxm2x0zZOdskcsGbC7b8KEyBHHGZAVSSicA=
Subject key identifier: E0:23:80:EC:4A:0A:FB:EF:91:56:1A:24:73:2C:99:E7:98:FC:21:71
Certificate issuer: /CN=90dcce91000451494c43c15d172da2eb9d5b7956
Certificate serial: 0194266BF1466102328E4173939C6408BDDC
Authority key identifier: 90:DC:CE:91:00:04:51:49:4C:43:C1:5D:17:2D:A2:EB:9D:5B:79:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kNzOkQAEUUlMQ8FdFy2i651beVY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/51fdbb-8ba2-4b7e-980f-ee60b0ddbdaa/1/4COA7EoK---RVhokcyyZ55j8IXE.roa
Signing time: Thu 02 Jan 2025 09:49:55 +0000
ROA not before: Thu 02 Jan 2025 09:49:55 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 137
IP address blocks: 131.114.0.0/16 maxlen: 16
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:6b:f1:46:61:02:32:8e:41:73:93:9c:64:08:bd:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90dcce91000451494c43c15d172da2eb9d5b7956
Validity
Not Before: Jan 2 09:49:55 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=e02380ec4a0afbef91561a24732c99e798fc2171
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:3b:f4:a6:67:b0:1b:a5:dd:80:de:74:88:9b:
ed:80:19:f6:a0:5d:8a:e6:ee:4c:82:20:8b:26:8c:
1d:e1:b1:34:1e:92:d7:ee:54:9b:2f:21:da:e8:90:
57:d9:41:27:4b:00:ec:82:be:56:d3:6d:bc:57:7c:
83:3a:c8:6d:29:f3:bf:62:dd:59:29:d9:63:8f:c1:
60:34:e5:fd:fb:4f:c3:3d:35:cc:04:00:93:60:e7:
47:83:bc:95:f0:c3:aa:75:64:a2:41:a8:9e:a9:ce:
c6:d0:24:d7:51:bb:c8:1d:6e:76:63:c5:fb:b0:f7:
66:d0:93:ee:72:bd:07:73:68:18:8a:f6:98:d2:1f:
57:b0:34:eb:ae:43:1c:fd:11:7c:3f:ab:16:26:05:
34:25:cd:7b:51:e6:e6:df:8d:e4:9c:0a:04:cf:dc:
8e:83:de:a4:e7:74:b1:52:64:0f:eb:60:34:8d:f7:
72:f5:70:08:89:97:d3:8b:06:f1:5c:6a:f5:43:f8:
02:80:95:7c:d7:a9:59:10:0e:ae:42:bd:01:68:58:
9a:d4:a0:f9:8d:83:e0:46:fe:51:b7:24:d1:27:86:
b5:e2:1e:24:e7:89:a4:25:bb:bc:1c:8e:a3:e8:87:
54:51:0e:90:25:25:e8:0c:0e:a3:1f:d8:0f:57:e6:
34:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:23:80:EC:4A:0A:FB:EF:91:56:1A:24:73:2C:99:E7:98:FC:21:71
X509v3 Authority Key Identifier:
keyid:90:DC:CE:91:00:04:51:49:4C:43:C1:5D:17:2D:A2:EB:9D:5B:79:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kNzOkQAEUUlMQ8FdFy2i651beVY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/51fdbb-8ba2-4b7e-980f-ee60b0ddbdaa/1/4COA7EoK---RVhokcyyZ55j8IXE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/51fdbb-8ba2-4b7e-980f-ee60b0ddbdaa/1/kNzOkQAEUUlMQ8FdFy2i651beVY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
131.114.0.0/16
Signature Algorithm: sha256WithRSAEncryption
2e:dd:0f:7a:99:bb:43:f3:60:49:16:81:45:64:80:fe:bf:2e:
58:65:ed:1e:6c:dd:47:39:c5:da:5f:59:71:29:fb:28:c0:d8:
14:28:d7:72:20:3a:73:c2:c6:53:c9:07:1c:83:25:96:f6:cf:
a7:1b:d9:ed:ce:9c:cd:9e:81:bf:16:25:09:47:14:9d:6a:e9:
76:98:2d:8f:62:fd:fc:eb:32:36:64:2b:f6:2e:93:e9:18:9f:
3a:2d:14:8a:39:be:e1:72:9d:83:aa:2e:65:0d:0f:09:f7:e5:
81:c7:e8:7d:47:26:e7:ff:9a:b2:6c:af:87:5e:f1:40:a9:d1:
8a:59:a0:a9:f7:0b:f6:eb:9c:d3:6a:65:34:20:66:d8:5c:ca:
1f:89:04:61:53:56:50:7f:cf:2b:52:41:59:5b:24:cf:2a:90:
f7:2e:01:a8:4f:f5:42:c3:37:08:c3:95:1d:42:51:2a:93:03:
38:f3:9e:01:4a:fd:e0:2d:56:2f:5d:fa:dd:cf:5e:de:db:b6:
cd:c4:fb:96:e4:33:01:d4:ac:4e:c2:a9:10:5e:65:55:ca:7a:
26:80:00:9d:42:34:43:7e:e5:08:9c:97:bf:99:23:5c:a6:b3:
01:3c:ca:6b:92:7e:7b:05:68:74:0e:a2:c8:77:1b:db:a5:7f:
bd:da:6c:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 11:43:34 2025 by rpki-client