Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/e7a772-8b39-430d-b192-a1b8bc5b2cd7/1/Aqgmt-0kmHhTxI4TNwO6CqQUAvI.roa
File: Aqgmt-0kmHhTxI4TNwO6CqQUAvI.roa (raw, json)
Hash identifier: OT3qKlUhR0guc2qzeYETLZJZRi9SFdXOekAamRFDQh0=
Subject key identifier: 02:A8:26:B7:ED:24:98:78:53:C4:8E:13:37:03:BA:0A:A4:14:02:F2
Certificate issuer: /CN=de0af7d83c5eeb0d434ad753c6a5f47549698b37
Certificate serial: 0194258FC1F84A62612F12BFB92776AB7210
Authority key identifier: DE:0A:F7:D8:3C:5E:EB:0D:43:4A:D7:53:C6:A5:F4:75:49:69:8B:37
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3gr32Dxe6w1DStdTxqX0dUlpizc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/e7a772-8b39-430d-b192-a1b8bc5b2cd7/1/Aqgmt-0kmHhTxI4TNwO6CqQUAvI.roa
Signing time: Thu 02 Jan 2025 05:49:25 +0000
ROA not before: Thu 02 Jan 2025 05:49:25 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 47543
IP address blocks: 194.26.148.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8f:c1:f8:4a:62:61:2f:12:bf:b9:27:76:ab:72:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de0af7d83c5eeb0d434ad753c6a5f47549698b37
Validity
Not Before: Jan 2 05:49:25 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=02a826b7ed24987853c48e133703ba0aa41402f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:79:48:07:a7:bb:bd:ba:70:d7:74:47:de:6d:
be:1b:b1:91:07:98:ae:0b:48:be:24:70:19:e9:cb:
7f:78:1f:82:ef:6d:4a:7f:19:6b:d5:f1:8d:73:2a:
53:43:a4:5b:c9:8e:87:fb:d3:10:e4:8c:a6:18:0e:
0a:97:5d:d3:a1:dd:57:63:66:af:c8:2a:9b:c2:ba:
68:6f:1c:d2:c6:4f:a0:de:32:a4:30:c4:be:4a:45:
b3:8b:ea:1b:06:60:df:32:ed:06:85:3e:6e:50:83:
1f:6b:d8:65:2f:3d:a4:36:41:23:42:09:20:37:ab:
31:da:dc:24:50:0f:5d:4a:0c:73:9c:e8:7b:0b:d9:
42:7f:80:94:33:b1:e0:4e:54:98:cb:24:b0:2d:be:
d3:ee:b5:e4:10:a8:78:b2:9d:41:29:34:13:df:fa:
b4:80:6f:92:47:2a:56:c1:6c:cc:8f:73:58:ff:bd:
d0:a3:a2:de:25:ac:1a:4c:1d:30:11:02:f3:c1:6c:
51:9d:ad:a7:ca:83:35:b5:82:5f:11:5f:38:e4:9f:
b2:b5:54:b6:27:b7:a9:6b:2a:34:1b:be:46:f7:1f:
c3:41:8f:55:af:6c:7b:51:32:9a:d9:af:e0:84:2c:
08:fc:5a:ad:f6:52:d5:a6:29:12:6c:83:cb:70:23:
d7:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:A8:26:B7:ED:24:98:78:53:C4:8E:13:37:03:BA:0A:A4:14:02:F2
X509v3 Authority Key Identifier:
keyid:DE:0A:F7:D8:3C:5E:EB:0D:43:4A:D7:53:C6:A5:F4:75:49:69:8B:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3gr32Dxe6w1DStdTxqX0dUlpizc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/e7a772-8b39-430d-b192-a1b8bc5b2cd7/1/Aqgmt-0kmHhTxI4TNwO6CqQUAvI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/e7a772-8b39-430d-b192-a1b8bc5b2cd7/1/3gr32Dxe6w1DStdTxqX0dUlpizc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.26.148.0/24
Signature Algorithm: sha256WithRSAEncryption
32:13:db:42:6a:b5:f2:62:0f:ac:45:ac:82:a5:e2:cd:77:40:
94:16:08:15:aa:2c:21:c0:51:c4:d2:2e:80:2c:df:68:c1:1a:
74:6a:d4:82:78:cf:d6:ab:2a:1f:06:e2:4e:ba:cc:35:92:7f:
9a:66:77:64:65:78:13:15:9f:62:c0:88:69:06:1c:99:cc:23:
e9:45:92:f5:cc:ad:bd:dd:4b:dd:6b:94:d7:db:ad:9f:e1:ce:
72:09:28:5b:cd:d6:6e:66:b9:35:4c:4f:92:77:7e:7f:d6:ef:
4f:1b:2c:83:3f:a6:24:f2:b3:e4:3b:1d:08:ee:6a:e0:17:e6:
cb:89:db:25:6f:40:ed:13:ed:d9:67:5c:cf:71:f9:3f:c3:fc:
de:ba:7d:fd:b5:20:35:77:b0:52:f7:9e:46:3f:15:f6:fe:42:
63:c5:9e:d0:a9:28:52:83:55:81:66:76:89:33:02:42:cd:5d:
84:4e:2e:d9:8e:3a:40:09:d4:c6:69:37:5d:61:61:01:48:b9:
5b:c1:c1:86:e9:43:c0:b8:cb:5d:72:e6:4a:31:15:3a:62:e8:
34:92:6e:f6:4c:9b:ff:1a:c4:d5:99:bd:37:bb:cb:61:d7:fa:
d3:0e:75:de:d5:43:05:fa:83:31:44:3d:99:00:96:ab:13:d7:
a4:f6:88:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:13 2025 by rpki-client on console.sobornost.net