Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/3a886e-4c26-425a-a14d-f21b6ae3be6c/1/4Oh7XZMGUvgYsZH7CZdGUoLIrDw.roa
File: 4Oh7XZMGUvgYsZH7CZdGUoLIrDw.roa (raw, json)
Hash identifier: h4FhAkel555dNYUyqzqCdfQBJmgL5LydnG571p+4BQM=
Subject key identifier: E0:E8:7B:5D:93:06:52:F8:18:B1:91:FB:09:97:46:52:82:C8:AC:3C
Certificate issuer: /CN=662c6c3d22cf6b101d7148006da7a7284dcbb320
Certificate serial: 019423694AAB8D3DC238A68946BCBBBD7C3B
Authority key identifier: 66:2C:6C:3D:22:CF:6B:10:1D:71:48:00:6D:A7:A7:28:4D:CB:B3:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZixsPSLPaxAdcUgAbaenKE3LsyA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/3a886e-4c26-425a-a14d-f21b6ae3be6c/1/4Oh7XZMGUvgYsZH7CZdGUoLIrDw.roa
Signing time: Wed 01 Jan 2025 19:48:10 +0000
ROA not before: Wed 01 Jan 2025 19:48:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 212055
IP address blocks: 195.226.199.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:69:4a:ab:8d:3d:c2:38:a6:89:46:bc:bb:bd:7c:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=662c6c3d22cf6b101d7148006da7a7284dcbb320
Validity
Not Before: Jan 1 19:48:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=e0e87b5d930652f818b191fb0997465282c8ac3c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:f3:84:14:9f:da:73:4b:4d:cf:4e:52:2e:d6:
e3:d7:2c:d4:30:fe:03:35:35:b7:45:e6:37:c4:fb:
0b:fd:ed:a1:2a:f5:d4:3e:bd:de:b4:61:91:54:9c:
57:0a:20:be:54:b6:30:55:73:6f:a8:e6:d6:32:0a:
4d:44:26:56:6c:b5:0c:20:6f:29:e7:26:26:16:72:
fc:ab:d4:e5:96:3c:73:fb:4c:96:ac:90:1b:d7:d4:
a5:e0:da:a4:24:a2:fc:6a:ca:d1:14:95:e9:ba:0d:
83:21:2f:9b:5a:c2:57:c6:af:1e:9c:67:d3:dc:26:
9b:e1:b9:76:aa:a5:b7:ba:c1:ad:0d:1e:98:80:a5:
12:6c:b6:7c:0b:20:70:5d:cf:d2:27:97:4a:24:d6:
27:c5:e8:63:04:81:eb:b0:97:5f:f0:6a:51:7a:b0:
d3:98:1c:5c:5d:28:ac:48:e2:31:8a:a0:7e:41:8c:
e1:91:1e:48:32:52:5d:3d:91:68:da:8b:7d:5e:cc:
b2:5f:36:bb:30:4f:52:5f:6d:de:af:ac:14:65:74:
5d:e8:f6:65:5b:a9:42:d3:16:ee:c9:4b:35:b7:5d:
12:be:94:9e:a0:f6:6d:66:b3:a1:d9:3a:26:ed:2f:
22:e6:25:75:a5:b1:25:66:16:4f:f4:31:95:ae:e6:
34:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:E8:7B:5D:93:06:52:F8:18:B1:91:FB:09:97:46:52:82:C8:AC:3C
X509v3 Authority Key Identifier:
keyid:66:2C:6C:3D:22:CF:6B:10:1D:71:48:00:6D:A7:A7:28:4D:CB:B3:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZixsPSLPaxAdcUgAbaenKE3LsyA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/3a886e-4c26-425a-a14d-f21b6ae3be6c/1/4Oh7XZMGUvgYsZH7CZdGUoLIrDw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/3a886e-4c26-425a-a14d-f21b6ae3be6c/1/ZixsPSLPaxAdcUgAbaenKE3LsyA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.226.199.0/24
Signature Algorithm: sha256WithRSAEncryption
78:37:13:08:3f:c6:65:fb:e7:63:db:0a:90:3a:02:29:95:07:
bf:5b:69:a0:8a:3f:d4:a8:62:20:0f:aa:18:a6:df:35:89:0e:
c2:7f:f8:8e:4c:46:e7:96:dd:03:88:fa:ae:39:5c:e5:8c:2f:
90:d9:44:56:5e:eb:bb:09:4e:cd:11:6c:f9:de:c7:f3:53:35:
56:fd:b4:b5:d4:6f:be:6a:b7:1e:ab:3b:21:18:14:4c:ef:79:
21:f6:96:4c:4e:e1:c2:10:39:cb:e7:e7:6a:92:b6:d9:f9:84:
03:c4:a0:b1:b5:bb:1b:f4:d7:17:5f:c5:b7:1f:19:a7:2a:b5:
5e:a2:97:58:f9:8c:cb:d9:ad:d0:58:5a:81:c3:fd:64:50:e5:
94:21:c7:40:a0:a6:5d:61:06:e0:30:7d:f7:00:8d:3e:46:2b:
61:f7:0c:8c:6d:c6:80:11:98:d9:12:8a:9d:8b:73:33:1e:ca:
36:a7:56:f9:cd:fd:f8:7e:c8:56:36:f5:99:59:c5:22:84:a0:
77:32:60:aa:b1:ea:32:6c:f9:14:a3:7f:b5:79:dd:a5:e9:00:
3d:af:20:5c:cf:39:44:da:1d:53:ed:a3:1c:12:31:d8:11:00:
ff:a1:b4:e9:ce:39:df:15:2c:e8:6f:93:ff:a4:73:58:1c:cb:
e6:2c:f0:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:11 2025 by rpki-client on console.sobornost.net