Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/8f0218-543d-4943-8e3c-aef1b34a287d/1/WfvC6123xfKENVd-zb3XlASAszo.roa
File: WfvC6123xfKENVd-zb3XlASAszo.roa (raw, json)
Hash identifier: 6SvW+m32iHXt+VqGMoFD6E0jUHXyHvqrZQ85os+ovbw=
Subject key identifier: 59:FB:C2:EB:5D:B7:C5:F2:84:35:57:7E:CD:BD:D7:94:04:80:B3:3A
Certificate issuer: /CN=ca58aeb4129f8e2c9bc42cd19185c8d7f0e6eaf9
Certificate serial: 0194266ADFB593B07285C1AB6EE0D8CA4EA2
Authority key identifier: CA:58:AE:B4:12:9F:8E:2C:9B:C4:2C:D1:91:85:C8:D7:F0:E6:EA:F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yliutBKfjiybxCzRkYXI1_Dm6vk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/8f0218-543d-4943-8e3c-aef1b34a287d/1/WfvC6123xfKENVd-zb3XlASAszo.roa
Signing time: Thu 02 Jan 2025 09:48:45 +0000
ROA not before: Thu 02 Jan 2025 09:48:45 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 45049
IP address blocks: 194.113.116.0/24 maxlen: 24
2a14:4400::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:6a:df:b5:93:b0:72:85:c1:ab:6e:e0:d8:ca:4e:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca58aeb4129f8e2c9bc42cd19185c8d7f0e6eaf9
Validity
Not Before: Jan 2 09:48:45 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=59fbc2eb5db7c5f28435577ecdbdd7940480b33a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:01:30:46:ea:75:7e:45:fa:1c:7f:aa:89:4e:
78:1d:4e:f1:77:d5:09:b1:6a:5c:06:6a:52:d9:2b:
f6:11:52:90:ba:bc:45:bc:f8:f0:42:f9:75:eb:c1:
d7:09:3b:0a:2c:b4:c6:c5:35:8b:0e:1c:ee:a9:51:
12:85:c6:4d:ea:e9:13:bb:dc:a8:ed:30:a9:c3:35:
c3:1e:f9:bb:90:b2:ed:56:dd:ce:e9:2d:9b:45:bd:
bc:de:fb:7c:5e:41:49:67:de:6d:18:0c:61:08:ef:
17:f2:00:2f:34:d9:1b:9f:a6:08:31:9c:66:77:32:
93:f5:79:aa:a8:7e:d7:e5:71:ef:b6:63:75:1e:b7:
cd:9c:03:40:d1:b1:04:42:40:d7:d4:3d:86:1e:4e:
f9:82:29:ed:e2:6e:20:77:21:74:c0:7d:d3:11:7f:
9c:65:84:ca:e2:3b:2b:f8:20:18:bf:c4:41:be:38:
c8:73:8e:04:b2:6d:9e:1b:04:4b:3e:60:1c:a6:90:
98:3f:17:d3:fa:07:4c:a2:53:e6:a0:d9:cc:4a:18:
88:e7:45:d7:67:8e:e3:f2:f5:e4:99:6b:b0:41:89:
60:a3:4f:81:88:f3:78:ba:16:17:37:e5:31:25:bc:
f2:4f:9c:f2:21:bf:1c:fe:42:c1:31:1b:36:04:e2:
ed:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:FB:C2:EB:5D:B7:C5:F2:84:35:57:7E:CD:BD:D7:94:04:80:B3:3A
X509v3 Authority Key Identifier:
keyid:CA:58:AE:B4:12:9F:8E:2C:9B:C4:2C:D1:91:85:C8:D7:F0:E6:EA:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yliutBKfjiybxCzRkYXI1_Dm6vk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/8f0218-543d-4943-8e3c-aef1b34a287d/1/WfvC6123xfKENVd-zb3XlASAszo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/8f0218-543d-4943-8e3c-aef1b34a287d/1/yliutBKfjiybxCzRkYXI1_Dm6vk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.113.116.0/24
IPv6:
2a14:4400::/32
Signature Algorithm: sha256WithRSAEncryption
34:9f:30:94:00:6b:65:29:cd:2e:85:35:c4:e0:c4:05:43:57:
d6:30:5a:8c:ac:77:36:fa:ec:0d:61:58:6c:ae:a6:dc:1e:9f:
51:53:f8:9d:81:a9:55:ce:00:1c:e6:17:1a:08:5a:1c:16:1d:
6d:85:c8:3f:a4:28:2d:74:7e:ab:4d:a3:5b:86:c5:f6:49:7b:
73:f2:26:5f:86:cf:73:a0:c3:53:50:f7:ff:98:7e:21:6a:0e:
e6:2d:69:f3:d3:fa:6a:60:75:dc:83:85:ec:a6:5b:9b:00:2e:
9b:d8:20:68:ca:91:24:bf:d8:f7:86:f6:71:e0:b4:93:74:40:
a3:ef:2b:84:01:01:59:5b:c0:d2:a1:25:12:76:ae:86:1a:98:
88:10:21:5d:97:0d:28:5c:1f:8e:a1:d6:8b:ad:64:d5:d1:e3:
2e:0b:ee:e5:94:c9:51:0e:27:1f:00:6c:e1:78:ed:c0:91:11:
25:3c:1d:ce:f6:f3:25:8a:f8:32:70:72:55:bd:62:bd:d2:31:
50:6d:3a:e8:4b:87:22:ec:17:ba:79:ca:aa:e5:bd:74:33:35:
e4:1d:8d:c5:86:89:bd:d1:bd:9f:f6:d1:92:70:85:89:9b:5f:
ee:54:4b:7c:ef:6c:3d:ba:17:c1:15:9b:ea:a3:fe:90:f7:ff:
b2:30:0e:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:26:48 2025 by rpki-client on console.sobornost.net