Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/0fef71-922e-4448-b37d-f740b9e1c480/1/vczBs4Goi10ecTWa3tK1YBxJ8fE.roa
File: vczBs4Goi10ecTWa3tK1YBxJ8fE.roa (raw, json)
Hash identifier: gc2DMvIse8l38XyQwNHPrj9Yz7w21wzufb/ypACqbDU=
Subject key identifier: BD:CC:C1:B3:81:A8:8B:5D:1E:71:35:9A:DE:D2:B5:60:1C:49:F1:F1
Certificate issuer: /CN=19ce488efa3c184f4acb2fc30eb1a71fa116f9b4
Certificate serial: 019426D92D88D6729BB0547C8E4C8F1C3F61
Authority key identifier: 19:CE:48:8E:FA:3C:18:4F:4A:CB:2F:C3:0E:B1:A7:1F:A1:16:F9:B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gc5Ijvo8GE9Kyy_DDrGnH6EW-bQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/0fef71-922e-4448-b37d-f740b9e1c480/1/vczBs4Goi10ecTWa3tK1YBxJ8fE.roa
Signing time: Thu 02 Jan 2025 11:49:14 +0000
ROA not before: Thu 02 Jan 2025 11:49:14 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 210877
IP address blocks: 195.225.232.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:d9:2d:88:d6:72:9b:b0:54:7c:8e:4c:8f:1c:3f:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19ce488efa3c184f4acb2fc30eb1a71fa116f9b4
Validity
Not Before: Jan 2 11:49:14 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=bdccc1b381a88b5d1e71359aded2b5601c49f1f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:f8:ef:0e:a3:a3:55:db:63:16:e7:24:cd:b7:
4d:40:43:e2:3a:34:03:d8:2e:86:50:04:48:ec:1f:
1b:4d:b8:c1:8c:33:3c:54:af:1d:2a:68:32:fa:61:
5a:9b:9a:20:a4:98:08:a5:a9:f7:90:60:da:a8:d0:
6f:64:0e:74:23:e1:22:60:4f:3b:f9:95:6a:73:de:
62:d9:63:b6:a4:e3:5f:7d:0e:8e:eb:76:21:38:6a:
fc:7b:83:c1:65:1c:07:0b:5c:95:9b:11:f1:dd:76:
52:37:9f:de:31:b4:d9:7f:1c:69:47:9a:1a:49:65:
d5:1c:c6:a7:3a:c9:38:a3:ed:ea:27:74:ae:dd:34:
55:40:99:ac:c4:fb:38:fb:b6:10:8b:c9:24:8b:ba:
2b:8d:59:c2:d1:47:29:61:f9:34:f1:c8:0e:df:61:
cf:e1:19:fe:55:89:a1:37:ba:ea:fd:0a:c9:d1:61:
f7:66:48:b0:12:59:35:1e:31:e8:09:5c:79:bd:01:
1c:f7:16:d8:23:75:0c:5a:a1:26:55:3c:65:19:48:
4f:de:5a:61:ca:70:ae:57:75:74:eb:c8:38:b3:71:
bd:2e:de:72:66:37:a3:d4:bd:93:09:d1:d9:a2:c0:
23:e9:c0:b0:19:02:cd:33:a7:56:f7:ab:5e:f9:af:
ee:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:CC:C1:B3:81:A8:8B:5D:1E:71:35:9A:DE:D2:B5:60:1C:49:F1:F1
X509v3 Authority Key Identifier:
keyid:19:CE:48:8E:FA:3C:18:4F:4A:CB:2F:C3:0E:B1:A7:1F:A1:16:F9:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gc5Ijvo8GE9Kyy_DDrGnH6EW-bQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/0fef71-922e-4448-b37d-f740b9e1c480/1/vczBs4Goi10ecTWa3tK1YBxJ8fE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/0fef71-922e-4448-b37d-f740b9e1c480/1/Gc5Ijvo8GE9Kyy_DDrGnH6EW-bQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.225.232.0/24
Signature Algorithm: sha256WithRSAEncryption
77:57:db:b5:96:c8:90:df:ed:88:c6:95:c2:0e:6f:15:a0:20:
86:c9:33:81:2a:ea:a2:b5:c5:ea:a2:ca:71:ed:de:8b:5e:14:
0d:b7:0d:07:33:6f:71:ad:4b:17:73:3e:47:3b:0d:0d:52:72:
0c:3d:8f:3b:4a:7b:9b:63:98:ab:5d:22:58:53:1e:6d:85:38:
73:a1:fd:49:49:1c:98:d7:4d:64:ca:55:e0:ed:de:6d:29:37:
5e:27:74:e1:22:9e:3f:26:cf:ec:2c:1b:c6:9d:c9:25:a2:f9:
4b:a0:ec:17:fc:79:f2:e7:24:aa:3d:a3:fe:8f:a9:4c:2c:51:
93:65:20:bc:56:e6:88:d0:b1:c0:60:c1:56:6b:be:21:28:22:
72:9c:54:bb:df:5a:36:6e:e5:61:3f:46:94:2a:6b:18:4f:49:
da:f6:0e:60:ba:11:11:5b:aa:7e:74:dd:cd:d3:66:8e:50:00:
8a:78:e3:b5:dc:d7:00:97:e5:db:8a:39:fb:b8:d8:76:fa:1f:
29:fe:35:30:37:86:34:18:e6:2f:3a:14:b1:f1:6e:89:c8:bc:
17:d6:40:21:aa:c1:7b:3a:d2:4a:42:c1:bb:72:a0:c5:fa:69:
ef:65:57:3d:57:b0:f0:41:9d:25:f2:2f:0a:d7:19:31:fd:3a:
eb:23:fe:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 04:03:38 2025 by rpki-client