Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/aac010-5ef0-4844-b233-4457ebea5a45/1/ONW_HHb2ZjsySF4n5zNLufP_Ugo.roa
File: ONW_HHb2ZjsySF4n5zNLufP_Ugo.roa (raw, json)
Hash identifier: Fs9suOzCDzlX3MVkt67omPbuhLWfHekY4xcrsMfgW7s=
Subject key identifier: 38:D5:BF:1C:76:F6:66:3B:32:48:5E:27:E7:33:4B:B9:F3:FF:52:0A
Certificate issuer: /CN=efb45cc923978c1a24bdee96cc7b3af37386d2a8
Certificate serial: 019423D755042F3720AA6E6BCE0D75522AB9
Authority key identifier: EF:B4:5C:C9:23:97:8C:1A:24:BD:EE:96:CC:7B:3A:F3:73:86:D2:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/77RcySOXjBokve6WzHs683OG0qg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/aac010-5ef0-4844-b233-4457ebea5a45/1/ONW_HHb2ZjsySF4n5zNLufP_Ugo.roa
Signing time: Wed 01 Jan 2025 21:48:22 +0000
ROA not before: Wed 01 Jan 2025 21:48:22 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 1770
IP address blocks: 195.177.202.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:d7:55:04:2f:37:20:aa:6e:6b:ce:0d:75:52:2a:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=efb45cc923978c1a24bdee96cc7b3af37386d2a8
Validity
Not Before: Jan 1 21:48:22 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=38d5bf1c76f6663b32485e27e7334bb9f3ff520a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:c1:69:0d:c8:79:cb:89:f9:50:6e:6b:2b:39:
ee:af:42:42:d3:4a:23:46:f3:e9:46:93:6f:7b:99:
10:eb:b7:b1:44:28:40:50:c4:56:da:78:b4:93:e6:
3a:8e:21:53:97:d5:d4:dd:f4:16:7d:de:6c:e5:8a:
c1:1f:c0:0d:01:38:b6:12:43:b2:85:df:3e:d0:40:
7c:06:d8:d4:c6:d8:0b:55:04:19:1c:43:71:8b:f9:
ee:25:34:0d:fd:19:78:f3:33:ea:ac:81:c7:6a:5e:
b9:ba:40:9c:88:3a:25:16:fa:93:22:7f:e3:cb:97:
de:3f:d1:83:0d:6b:58:d4:75:d6:e8:c1:cf:f1:44:
bc:b0:bd:4c:99:1b:c5:52:e5:4d:2a:9f:1f:c2:06:
d5:70:85:f3:95:97:9f:59:f8:d5:1f:03:9a:3b:52:
15:44:59:81:a6:08:92:7e:8f:a9:f0:cd:ad:ea:d3:
83:a1:4c:ee:00:3f:af:2e:4b:3c:e1:3c:a2:f8:89:
c4:78:e0:d8:cc:31:7e:3d:f6:3a:7d:5a:a2:2c:65:
2a:d4:59:eb:e7:29:ce:e1:61:48:88:23:62:52:db:
11:02:66:5f:63:22:56:4f:b9:14:4a:70:7b:1e:e4:
e7:e8:81:44:bd:66:23:6f:eb:06:7d:76:e3:8a:f2:
6f:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:D5:BF:1C:76:F6:66:3B:32:48:5E:27:E7:33:4B:B9:F3:FF:52:0A
X509v3 Authority Key Identifier:
keyid:EF:B4:5C:C9:23:97:8C:1A:24:BD:EE:96:CC:7B:3A:F3:73:86:D2:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/77RcySOXjBokve6WzHs683OG0qg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/aac010-5ef0-4844-b233-4457ebea5a45/1/ONW_HHb2ZjsySF4n5zNLufP_Ugo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/aac010-5ef0-4844-b233-4457ebea5a45/1/77RcySOXjBokve6WzHs683OG0qg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.177.202.0/23
Signature Algorithm: sha256WithRSAEncryption
4a:2e:3a:80:3f:57:e6:60:69:83:c4:32:e2:b8:c0:82:9d:2b:
14:ed:2e:3c:ba:cf:b0:31:bb:15:b9:ef:06:dc:d5:0c:45:b4:
ce:0f:94:0f:fc:60:61:68:48:69:f5:82:1f:80:a7:a6:ce:83:
4e:25:04:8f:de:91:af:07:32:27:4c:34:83:4f:2d:c9:de:14:
1a:28:98:76:b9:17:46:54:46:31:6e:36:0d:3b:ee:13:d9:fe:
1f:61:b4:cc:c4:b3:69:e2:22:64:2b:bf:ab:81:03:4d:c8:1c:
4b:65:d3:9b:a6:bf:cb:d7:e2:a6:03:5c:33:07:3f:cd:22:50:
0b:e1:01:01:d1:1a:f6:df:f2:79:b4:74:95:54:f8:9b:f3:e2:
40:2d:e0:4d:9f:c0:d2:04:d9:7e:27:16:d4:ce:10:bd:0d:74:
1a:9f:0f:9e:e7:9b:2b:99:96:6b:33:62:d2:b4:77:f6:d2:58:
9b:2d:3d:2d:60:f2:3e:c9:11:25:ee:71:90:ee:a0:20:c9:ee:
ff:6f:ae:8a:8a:12:ab:c8:cd:9d:e9:bc:30:71:7f:b7:e7:15:
d3:42:a2:75:e5:ae:2a:ad:c0:76:1d:76:dd:d3:0d:f7:6c:e0:
2b:f5:9d:c3:1a:73:db:95:29:56:c0:0e:d4:b0:3a:88:01:e3:
6b:a9:bb:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 07:53:21 2025 by rpki-client