Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/8331e0-e8ab-4a6e-92b7-8a96f03bc617/1/FqXqM-CF5p0Rq38uJsia_NQp_xY.roa
File: FqXqM-CF5p0Rq38uJsia_NQp_xY.roa (raw, json)
Hash identifier: GMH0+ju4uwTjeyWz+p9XJEoUNztNymm7JQRhgTt4Qx4=
Subject key identifier: 16:A5:EA:33:E0:85:E6:9D:11:AB:7F:2E:26:C8:9A:FC:D4:29:FF:16
Certificate issuer: /CN=baa7ed08b8e9e8eef5f83e3ccb26745f8b3885e7
Certificate serial: 0194EEC783C266FAE6B7E66487EF2EF3F7B5
Authority key identifier: BA:A7:ED:08:B8:E9:E8:EE:F5:F8:3E:3C:CB:26:74:5F:8B:38:85:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uqftCLjp6O71-D48yyZ0X4s4hec.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/8331e0-e8ab-4a6e-92b7-8a96f03bc617/1/FqXqM-CF5p0Rq38uJsia_NQp_xY.roa
Signing time: Mon 10 Feb 2025 07:34:00 +0000
ROA not before: Mon 10 Feb 2025 07:34:00 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 273384
IP address blocks: 194.38.194.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:ee:c7:83:c2:66:fa:e6:b7:e6:64:87:ef:2e:f3:f7:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=baa7ed08b8e9e8eef5f83e3ccb26745f8b3885e7
Validity
Not Before: Feb 10 07:34:00 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=16a5ea33e085e69d11ab7f2e26c89afcd429ff16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:44:bf:0e:f0:c8:f2:c3:84:70:0a:b1:ee:0a:
82:a9:69:ae:4a:37:a5:7f:2d:e2:16:70:65:1d:d7:
2a:14:0c:ee:77:1a:e6:3d:5c:f6:d9:2b:a3:a7:31:
36:55:47:e6:4b:a4:61:cb:bf:65:0a:3c:6c:cb:99:
e7:31:af:5f:18:c9:a5:1c:6c:6a:3a:2e:12:e9:47:
b1:8c:d6:45:4d:e4:6e:6f:da:16:a4:18:68:17:a6:
3f:63:04:ee:83:75:df:dc:71:82:3e:a1:55:b8:38:
82:00:d2:0c:54:0a:25:78:e5:fe:2b:c3:f0:6c:c5:
64:f4:f6:4f:da:eb:65:f3:cf:1d:3d:40:a0:40:bc:
07:26:f6:8c:52:3b:75:5f:a6:e0:70:e3:36:c3:11:
94:ee:d7:18:9b:38:9b:c0:89:c1:e6:3b:30:86:7e:
22:b7:db:1b:8d:ee:4a:49:a0:f5:0d:85:42:42:fd:
b5:21:e6:cc:0e:12:f7:6d:cf:55:3c:06:dc:31:c9:
60:f5:f2:c1:f6:54:48:9a:c6:90:4a:ea:f5:d3:81:
21:8b:6d:06:2e:9d:b9:5d:1b:10:a4:2a:64:81:8a:
89:41:b1:11:d5:70:2b:77:20:c1:14:46:4c:0f:b3:
bf:4e:8b:7d:a7:9b:d5:02:0a:b8:e8:c6:8e:a9:62:
ee:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:A5:EA:33:E0:85:E6:9D:11:AB:7F:2E:26:C8:9A:FC:D4:29:FF:16
X509v3 Authority Key Identifier:
keyid:BA:A7:ED:08:B8:E9:E8:EE:F5:F8:3E:3C:CB:26:74:5F:8B:38:85:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uqftCLjp6O71-D48yyZ0X4s4hec.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/8331e0-e8ab-4a6e-92b7-8a96f03bc617/1/FqXqM-CF5p0Rq38uJsia_NQp_xY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/8331e0-e8ab-4a6e-92b7-8a96f03bc617/1/uqftCLjp6O71-D48yyZ0X4s4hec.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.38.194.0/24
Signature Algorithm: sha256WithRSAEncryption
b0:76:db:e0:00:db:52:af:69:01:dd:46:0b:58:b7:a9:8e:84:
21:df:21:f6:6d:fc:3a:c7:df:29:55:8d:d3:d3:05:47:ba:0c:
a2:a6:48:19:d5:d8:e6:a9:6b:f5:c2:84:90:c2:bd:38:50:fe:
a9:47:4e:73:3e:28:76:25:96:78:7c:14:d3:87:b7:e6:f5:e6:
ff:aa:f0:9d:ac:65:2e:df:40:09:88:51:e5:3c:d8:1e:2d:85:
df:ef:e9:c1:7e:7f:3a:f7:09:0e:63:8d:eb:70:48:df:eb:3b:
23:78:92:5f:99:1c:f1:44:2d:a8:29:b4:d5:27:76:14:57:86:
01:db:9b:3d:86:ca:6a:1f:3a:61:ab:93:b2:7a:9f:22:1b:86:
e7:c2:38:64:9b:81:35:a6:6f:d2:4f:5e:e9:22:39:86:60:63:
12:09:a3:16:bb:d0:2e:94:d4:2c:b8:56:dc:1e:8d:56:c0:1d:
fa:1d:a1:70:3e:51:bb:fd:80:8b:6a:eb:80:92:29:ea:aa:d6:
b7:c6:15:68:b9:6d:93:54:c3:35:11:53:3e:6c:91:80:5b:e1:
80:99:49:a4:d3:bd:5c:c8:03:f1:99:d3:db:38:e2:a3:3c:92:
c8:f7:53:a5:92:88:39:f2:a5:7f:23:0b:c6:1a:bb:47:af:db:
a3:12:12:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:54 2025 by rpki-client on console.sobornost.net