Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/1a830a-f061-4cdc-bafb-a2fe9f015d71/1/CpsNBPf3z13iAJuT2Uc6xn49v3k.roa
File: CpsNBPf3z13iAJuT2Uc6xn49v3k.roa (raw, json)
Hash identifier: aqK12du8rkPezSSK2zWASPAljBp90XN1tNxFt4RE07M=
Subject key identifier: 0A:9B:0D:04:F7:F7:CF:5D:E2:00:9B:93:D9:47:3A:C6:7E:3D:BF:79
Certificate issuer: /CN=efad344eb5f7eb1dee4b8f8435fb5b9d87663e9d
Certificate serial: 019424B3A173A47EDF05B55E144BFCCDFADF
Authority key identifier: EF:AD:34:4E:B5:F7:EB:1D:EE:4B:8F:84:35:FB:5B:9D:87:66:3E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7600TrX36x3uS4-ENftbnYdmPp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/1a830a-f061-4cdc-bafb-a2fe9f015d71/1/CpsNBPf3z13iAJuT2Uc6xn49v3k.roa
Signing time: Thu 02 Jan 2025 01:48:59 +0000
ROA not before: Thu 02 Jan 2025 01:48:59 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 206046
IP address blocks: 185.195.76.0/24 maxlen: 24
185.195.77.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:b3:a1:73:a4:7e:df:05:b5:5e:14:4b:fc:cd:fa:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=efad344eb5f7eb1dee4b8f8435fb5b9d87663e9d
Validity
Not Before: Jan 2 01:48:59 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=0a9b0d04f7f7cf5de2009b93d9473ac67e3dbf79
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:ed:4e:15:e1:7d:04:35:0f:64:e6:68:e0:c7:
81:03:70:46:7d:06:3b:82:64:e9:27:c8:8c:10:79:
46:a0:53:bb:4c:d7:a9:90:57:f3:af:cd:5b:8d:c2:
13:ec:27:15:c2:3e:00:e8:ac:08:f8:77:f0:9a:aa:
c3:7f:b9:8f:10:c1:4b:fe:f8:2d:cc:cd:60:d4:6d:
71:63:d5:c3:74:c4:7c:cb:1f:65:96:b1:ed:e7:6d:
9b:68:96:7f:74:85:5f:3d:cd:72:57:65:26:a5:50:
ad:92:34:53:4d:e4:72:e5:4d:51:fe:92:ac:9a:c9:
02:11:1d:f7:a9:fd:30:1b:2b:e1:e4:f4:2f:8b:6c:
4d:c4:7d:56:f9:f9:24:65:97:aa:91:03:c3:f7:91:
36:9c:ca:53:63:17:b0:b0:09:12:ae:34:cb:d1:66:
f5:7d:0d:48:7f:f9:d9:42:e2:5f:43:90:4e:1b:15:
e9:76:57:99:af:45:28:80:26:f0:8b:0d:53:29:f6:
b7:14:3c:73:a2:9a:e7:d5:a3:3a:56:c6:ef:2c:de:
c8:87:70:8b:bc:7d:f4:35:61:9f:18:44:94:e2:28:
8c:87:49:b2:9a:29:0c:b8:90:a5:1d:03:62:29:9a:
cf:4e:5f:17:11:69:87:1d:e9:5d:5a:6e:98:2a:16:
22:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:9B:0D:04:F7:F7:CF:5D:E2:00:9B:93:D9:47:3A:C6:7E:3D:BF:79
X509v3 Authority Key Identifier:
keyid:EF:AD:34:4E:B5:F7:EB:1D:EE:4B:8F:84:35:FB:5B:9D:87:66:3E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7600TrX36x3uS4-ENftbnYdmPp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/1a830a-f061-4cdc-bafb-a2fe9f015d71/1/CpsNBPf3z13iAJuT2Uc6xn49v3k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/1a830a-f061-4cdc-bafb-a2fe9f015d71/1/7600TrX36x3uS4-ENftbnYdmPp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.195.76.0/23
Signature Algorithm: sha256WithRSAEncryption
3a:61:7e:f0:7d:c1:70:fd:52:8e:9f:03:a6:e3:d9:ff:fe:5b:
4b:ec:f4:a1:87:6c:f9:fd:07:3e:75:d3:aa:7f:49:43:4d:55:
96:84:ff:70:a8:79:17:3a:a6:a9:75:30:fc:65:ee:00:e3:3c:
61:e8:c5:6c:7f:34:49:df:d6:57:b5:ab:dc:58:97:2e:0e:81:
ef:0e:78:dd:b2:3e:44:c3:af:30:88:d9:dd:b8:3a:3d:7b:3b:
e6:bd:c5:89:f2:cd:8e:b1:3b:64:9e:50:8f:43:17:98:57:67:
88:1f:07:ab:a4:0e:b0:8b:9a:74:ca:30:a0:58:58:a3:f3:76:
65:95:dc:d7:b9:41:4f:09:6c:51:41:63:5e:b1:77:d8:d7:52:
16:6f:de:97:9f:9d:fc:6e:e4:0d:da:da:8b:f8:01:81:26:44:
1c:b8:4d:61:d4:68:0f:ed:12:07:8c:51:7c:fa:10:92:74:84:
83:66:24:ed:bb:8b:a4:68:1c:bf:33:a8:45:95:f9:48:99:2a:
d6:f5:e4:47:a1:19:e2:27:1f:b5:08:22:7f:11:fe:48:1b:33:
80:4c:8e:6c:5c:2e:07:18:2c:4c:af:35:13:7f:7e:02:dc:85:
55:9c:88:28:cc:4a:ca:85:3a:6c:9f:53:07:f7:ae:a5:a5:fc:
0a:77:af:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 06:05:16 2025 by rpki-client