Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/767d6d-36c8-403b-81b0-b4aaa23fdaa9/1/4p4OyqDjs8R0lJu93ckBXOOCz9g.roa
File: 4p4OyqDjs8R0lJu93ckBXOOCz9g.roa (raw, json)
Hash identifier: iDkWbFGVh/iseh/OuI+Rz4ThMYhWEQnIq1WNSjbVOvs=
Subject key identifier: E2:9E:0E:CA:A0:E3:B3:C4:74:94:9B:BD:DD:C9:01:5C:E3:82:CF:D8
Certificate issuer: /CN=9a5e76f929d21b586f42e30f7d9b00399b3dcbf0
Certificate serial: 0194835581B863E007B1E967C62467B7F965
Authority key identifier: 9A:5E:76:F9:29:D2:1B:58:6F:42:E3:0F:7D:9B:00:39:9B:3D:CB:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ml52-SnSG1hvQuMPfZsAOZs9y_A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/767d6d-36c8-403b-81b0-b4aaa23fdaa9/1/4p4OyqDjs8R0lJu93ckBXOOCz9g.roa
Signing time: Mon 20 Jan 2025 10:50:06 +0000
ROA not before: Mon 20 Jan 2025 10:50:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 174
IP address blocks: 194.54.181.0/24 maxlen: 24
194.54.182.0/24 maxlen: 24
194.54.183.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:83:55:81:b8:63:e0:07:b1:e9:67:c6:24:67:b7:f9:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9a5e76f929d21b586f42e30f7d9b00399b3dcbf0
Validity
Not Before: Jan 20 10:50:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=e29e0ecaa0e3b3c474949bbdddc9015ce382cfd8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:4d:fb:a1:5d:96:df:34:e6:01:e4:86:80:61:
44:f1:02:23:0f:0a:d0:54:0c:f4:bf:ba:1d:f1:98:
47:ee:ff:fc:05:d5:3c:87:ee:3b:3b:83:16:56:fb:
7f:3b:ad:54:e2:54:ad:41:e2:ff:ef:35:86:64:39:
97:b2:d6:01:31:41:6a:77:f4:85:5e:25:dc:82:30:
7b:a9:f4:86:78:51:a7:bd:df:b5:4e:1c:36:ed:11:
22:a7:c3:d1:72:ac:dc:93:01:0f:cb:c1:b6:d3:aa:
e5:2c:4e:c2:d5:01:8e:50:9a:4e:e6:37:17:f6:4b:
53:77:45:7a:b2:87:21:27:68:61:aa:4f:c4:d7:d1:
92:c5:7e:c4:3d:cc:cb:19:95:54:4f:eb:16:f9:f3:
8e:fa:41:5c:6a:a3:f5:3e:82:c4:d4:2b:25:c3:a7:
37:cf:f4:0c:bf:21:f0:9d:f0:59:28:b1:c7:7f:fc:
f2:35:74:f9:19:2b:78:72:3e:27:96:40:04:9e:08:
75:47:18:79:ac:a1:24:ae:b4:fd:cf:b9:d1:fd:98:
b0:92:d1:0d:72:30:c0:24:fb:39:59:31:c2:6d:92:
2c:69:b1:cb:1b:6b:bc:7a:3e:61:81:d7:35:3b:75:
60:bb:57:37:22:00:a6:a9:7b:e1:ac:7d:cd:f4:28:
37:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:9E:0E:CA:A0:E3:B3:C4:74:94:9B:BD:DD:C9:01:5C:E3:82:CF:D8
X509v3 Authority Key Identifier:
keyid:9A:5E:76:F9:29:D2:1B:58:6F:42:E3:0F:7D:9B:00:39:9B:3D:CB:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ml52-SnSG1hvQuMPfZsAOZs9y_A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/767d6d-36c8-403b-81b0-b4aaa23fdaa9/1/4p4OyqDjs8R0lJu93ckBXOOCz9g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/767d6d-36c8-403b-81b0-b4aaa23fdaa9/1/ml52-SnSG1hvQuMPfZsAOZs9y_A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.54.181.0-194.54.183.255
Signature Algorithm: sha256WithRSAEncryption
31:c1:ac:03:ca:87:2a:e8:37:a7:19:02:e5:bc:ba:c6:12:1f:
11:0a:4c:7d:3d:a6:bd:68:c6:65:d7:30:88:b2:8f:e0:42:aa:
39:6b:8d:9b:f7:da:94:0e:c7:c4:36:d2:c5:57:2d:51:ac:87:
93:5c:1f:14:ab:ec:a1:e3:05:3b:35:05:78:44:4d:d3:fc:46:
52:05:3f:37:4b:72:1f:83:e2:e6:e4:b1:44:2e:b3:0c:48:6b:
e5:29:fb:26:54:27:1f:68:b8:c4:bb:fa:fe:7b:d8:68:1c:05:
29:04:ff:69:2b:b5:e9:b1:b5:e4:88:78:65:5c:93:30:8f:60:
c4:75:2d:c2:4b:e2:80:c3:e8:c7:3a:2d:74:03:ab:e0:33:a1:
e0:e2:7b:45:de:8d:0b:24:5d:6e:47:44:c2:9e:30:c8:4b:4d:
b2:61:3a:39:1a:5c:fd:cb:43:37:46:20:4c:77:a9:7d:dc:60:
3f:a0:92:e1:e6:86:72:21:c1:90:1a:18:f7:62:3a:8b:30:6b:
6c:ce:84:f3:37:06:49:68:dd:29:72:ff:13:bd:7a:e8:77:7d:
ff:8a:8a:2d:cd:8f:f4:a9:d3:d1:50:0b:53:72:7e:dd:03:8b:
45:1e:2e:f5:e7:79:28:33:92:97:e9:e1:ae:5a:e4:6d:da:11:
8e:18:b8:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jan 23 19:17:04 2025 by rpki-client on console.sobornost.net