Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/822b22-8ca3-469d-9083-345b2ab0db18/1/tBAnS3ymUAQmGfi4CNowsEWHdl4.roa
File: tBAnS3ymUAQmGfi4CNowsEWHdl4.roa (raw, json)
Hash identifier: cxNoVhZk6fGnu1pynsqNRKY+P3+OdQAptw2DD5peCyU=
Subject key identifier: B4:10:27:4B:7C:A6:50:04:26:19:F8:B8:08:DA:30:B0:45:87:76:5E
Certificate issuer: /CN=ce8a8d40e437adf4acd7cdb38e0402477a2e51a6
Certificate serial: 0194228D810589D448D01F35FE3D4DA4A4BA
Authority key identifier: CE:8A:8D:40:E4:37:AD:F4:AC:D7:CD:B3:8E:04:02:47:7A:2E:51:A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zoqNQOQ3rfSs182zjgQCR3ouUaY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/822b22-8ca3-469d-9083-345b2ab0db18/1/tBAnS3ymUAQmGfi4CNowsEWHdl4.roa
Signing time: Wed 01 Jan 2025 15:48:06 +0000
ROA not before: Wed 01 Jan 2025 15:48:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 208396
IP address blocks: 194.26.118.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:8d:81:05:89:d4:48:d0:1f:35:fe:3d:4d:a4:a4:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ce8a8d40e437adf4acd7cdb38e0402477a2e51a6
Validity
Not Before: Jan 1 15:48:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b410274b7ca650042619f8b808da30b04587765e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:f1:e0:90:2d:3c:c2:e9:d0:7b:8f:97:18:fc:
64:a4:cb:83:3d:3e:e1:74:1d:e8:9d:96:ca:d1:7f:
76:f2:cf:fc:ae:2b:dc:c7:75:84:21:b1:59:23:d9:
d4:1a:f7:52:3e:3d:62:a5:ca:3e:04:57:4a:95:a3:
97:db:0c:47:ad:92:bb:1f:03:c0:21:4f:3b:a6:f4:
7c:50:84:d3:99:73:9f:0e:7b:e7:57:72:b3:b3:bc:
23:a4:e9:86:20:96:38:4c:34:ea:89:25:af:d0:b2:
de:77:c6:bf:76:6b:1c:2a:4f:6a:3b:66:ba:eb:10:
72:e1:4c:1b:94:37:e9:29:ac:8f:b7:ec:8c:95:e1:
01:03:0a:86:22:8b:5d:80:4f:f0:20:7c:6b:72:21:
e2:18:fa:d4:8e:c4:f9:f4:2f:f5:9e:73:6d:a3:1d:
73:57:df:85:c6:7c:3e:59:fb:66:18:93:52:d8:e5:
5c:32:22:46:70:3d:a9:13:fa:64:0c:0d:84:fc:ed:
25:c5:14:d6:10:4b:1b:e5:61:62:e8:bf:94:7a:4c:
c0:09:de:02:e0:1f:1d:05:1b:52:7b:fe:bc:d0:2a:
aa:52:4a:fb:2c:12:7d:ce:53:40:c6:26:39:ec:ea:
f6:14:8f:64:2e:d1:27:d5:c5:ee:56:66:9a:57:39:
49:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:10:27:4B:7C:A6:50:04:26:19:F8:B8:08:DA:30:B0:45:87:76:5E
X509v3 Authority Key Identifier:
keyid:CE:8A:8D:40:E4:37:AD:F4:AC:D7:CD:B3:8E:04:02:47:7A:2E:51:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zoqNQOQ3rfSs182zjgQCR3ouUaY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/822b22-8ca3-469d-9083-345b2ab0db18/1/tBAnS3ymUAQmGfi4CNowsEWHdl4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/822b22-8ca3-469d-9083-345b2ab0db18/1/zoqNQOQ3rfSs182zjgQCR3ouUaY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.26.118.0/24
Signature Algorithm: sha256WithRSAEncryption
72:e9:8a:42:72:28:f9:ac:34:31:67:c0:fc:7e:61:92:2b:70:
fd:0a:49:c0:d1:92:de:58:90:a3:b5:77:c5:8c:4c:5d:b9:3e:
af:b9:6b:6a:b7:ad:1e:60:91:84:88:a1:e6:68:8a:4b:e5:ef:
0c:a6:c2:07:3e:cb:52:6d:70:23:68:a5:96:3a:2a:fb:25:bb:
70:31:31:81:22:8c:3c:8b:f0:29:c3:25:04:c4:3e:40:a7:51:
a2:76:89:d7:4e:aa:6f:d4:15:3a:51:57:29:54:48:37:e5:37:
d0:a5:0d:c8:34:1d:91:53:b4:2c:bd:00:73:24:be:23:bd:68:
2f:9f:72:40:ef:37:50:6f:4e:ba:f6:fa:c8:d3:97:55:58:16:
50:4c:de:2f:d4:02:c7:45:05:29:11:96:1b:4c:63:9d:26:5a:
1d:2b:63:36:24:0a:e7:84:72:16:36:7b:75:20:6a:77:9e:37:
1c:07:8b:48:a1:9d:58:ca:33:df:66:df:67:a2:15:1b:69:57:
d7:95:d6:20:ca:01:9d:db:a8:02:a7:56:c8:1d:3b:0e:a7:24:
45:ff:ee:51:f3:34:29:ee:9c:cf:10:a3:2a:e9:3a:16:68:a9:
21:b1:9f:54:a6:de:ab:80:03:c2:f0:80:7e:d5:7c:9f:90:e9:
94:5c:ef:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:33:08 2025 by rpki-client on console.sobornost.net