Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/3c616f-0138-4ffb-af17-55f41fdf0e63/1/Y3i7R5k-pr2oJ6IrDbTR9kOWSc4.roa
File: Y3i7R5k-pr2oJ6IrDbTR9kOWSc4.roa (raw, json)
Hash identifier: GTNPbNy0VtCzCDFPUyJZWkGeAio7wlfXOb9TWYRV6sE=
Subject key identifier: 63:78:BB:47:99:3E:A6:BD:A8:27:A2:2B:0D:B4:D1:F6:43:96:49:CE
Certificate issuer: /CN=0039f741686da11e79ae7c5e486aa290808cb1b7
Certificate serial: 019421B1C34A2B767D988FEBF8CE967D91AE
Authority key identifier: 00:39:F7:41:68:6D:A1:1E:79:AE:7C:5E:48:6A:A2:90:80:8C:B1:B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ADn3QWhtoR55rnxeSGqikICMsbc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/3c616f-0138-4ffb-af17-55f41fdf0e63/1/Y3i7R5k-pr2oJ6IrDbTR9kOWSc4.roa
Signing time: Wed 01 Jan 2025 11:48:05 +0000
ROA not before: Wed 01 Jan 2025 11:48:05 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 206827
IP address blocks: 194.31.66.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:b1:c3:4a:2b:76:7d:98:8f:eb:f8:ce:96:7d:91:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0039f741686da11e79ae7c5e486aa290808cb1b7
Validity
Not Before: Jan 1 11:48:05 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=6378bb47993ea6bda827a22b0db4d1f6439649ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:87:68:24:ff:2c:fc:79:b4:d1:2b:c6:3b:14:
fb:cf:21:0a:b3:be:00:ec:7f:bf:9b:5e:8e:f6:02:
8f:62:ae:a5:19:cd:7a:31:ee:9d:71:c1:0a:10:96:
8a:57:1c:19:2c:c3:63:fc:6b:3d:35:da:23:f1:2e:
fc:b0:ae:97:c9:b0:3c:b1:01:fc:38:ae:c2:ae:05:
49:fb:b5:b8:95:4d:ed:98:27:e7:18:07:91:e7:74:
2b:9c:07:f8:d9:f0:00:ca:3a:4e:c8:f7:1c:04:a4:
84:90:6b:35:fa:10:89:8c:08:6b:1f:c9:2c:81:e8:
fd:1e:eb:cf:a9:60:b0:9d:be:aa:ee:7e:f1:29:f5:
ac:3e:33:e8:43:ab:42:5b:80:86:15:e0:1e:39:ab:
07:27:2c:21:a4:07:20:16:4f:87:3f:1b:55:4f:25:
49:70:e7:4b:2c:02:63:93:d0:3c:f1:cf:88:1a:53:
b9:39:82:9f:79:d5:8e:d3:e3:ed:a3:f1:99:e7:50:
6a:cf:85:91:94:0f:74:5c:99:bc:7f:28:46:c4:35:
52:fa:52:e9:5a:37:bb:0b:3a:13:4b:04:ef:b5:75:
49:1e:4f:48:9c:61:48:f5:48:e0:ec:74:26:b6:28:
fd:a7:e3:9a:de:6e:27:02:31:9c:3a:82:32:50:ff:
48:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:78:BB:47:99:3E:A6:BD:A8:27:A2:2B:0D:B4:D1:F6:43:96:49:CE
X509v3 Authority Key Identifier:
keyid:00:39:F7:41:68:6D:A1:1E:79:AE:7C:5E:48:6A:A2:90:80:8C:B1:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ADn3QWhtoR55rnxeSGqikICMsbc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/3c616f-0138-4ffb-af17-55f41fdf0e63/1/Y3i7R5k-pr2oJ6IrDbTR9kOWSc4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/3c616f-0138-4ffb-af17-55f41fdf0e63/1/ADn3QWhtoR55rnxeSGqikICMsbc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.31.66.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:aa:a8:1a:fe:41:6a:1c:76:66:87:4f:76:57:a8:62:4d:4f:
46:3f:55:0a:2e:4a:98:6a:f6:c9:7b:85:b5:09:b7:00:a8:5e:
69:00:92:7b:1c:5d:9a:81:cf:6e:09:ee:ae:01:24:72:9a:d7:
f7:0b:f4:21:a6:be:be:4c:d2:16:bb:79:77:98:93:62:3c:b0:
b2:74:cd:10:70:f7:3a:f2:b5:ca:b0:09:1b:03:2d:9c:72:a0:
0c:76:e8:42:37:8f:75:95:da:3a:7c:35:e3:e9:36:e5:54:74:
97:c2:32:e8:32:ac:a4:4f:cc:9e:5c:40:7e:b0:8d:be:f2:f0:
21:71:85:ee:12:ae:79:52:b4:7f:0e:f0:9f:8e:b5:c2:bb:07:
ab:51:d1:c4:1f:74:45:8f:9e:91:44:dd:d5:d3:4f:cc:35:35:
c1:c3:0d:ae:e8:de:86:6c:5c:c4:24:b0:4e:48:65:af:c1:da:
12:a8:18:4a:5f:a0:51:57:5b:67:aa:95:e4:18:aa:9c:31:3d:
6b:89:83:50:a2:91:1a:d4:da:66:ca:3c:b4:27:57:c7:24:a9:
5e:76:c6:22:46:0b:f7:23:94:9c:c4:fd:46:60:32:f2:47:6a:
3f:04:97:d5:9a:d5:80:e6:a2:2d:d9:4a:89:d4:2b:b8:ef:bd:
88:08:a2:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 11:33:42 2025 by rpki-client