Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c9/6163e6-5b55-464a-b510-49a3db1f8626/1/F5TiOBaL6Os0eqoq3xhh6tfAtyA.roa
File: F5TiOBaL6Os0eqoq3xhh6tfAtyA.roa (raw, json)
Hash identifier: sKAA5OR81rGSfaC987fVuj57/nGu3pCDHnHvBPb3fCc=
Subject key identifier: 17:94:E2:38:16:8B:E8:EB:34:7A:AA:2A:DF:18:61:EA:D7:C0:B7:20
Certificate issuer: /CN=d3ab2e8c2d5b5ccd0baca545fadc3ec7f350236c
Certificate serial: 018D1E0D684037502F45E1C8B43A41545265
Authority key identifier: D3:AB:2E:8C:2D:5B:5C:CD:0B:AC:A5:45:FA:DC:3E:C7:F3:50:23:6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/06sujC1bXM0LrKVF-tw-x_NQI2w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c9/6163e6-5b55-464a-b510-49a3db1f8626/1/F5TiOBaL6Os0eqoq3xhh6tfAtyA.roa
Signing time: Thu 18 Jan 2024 19:30:11 +0000
ROA not before: Thu 18 Jan 2024 19:30:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 62300
IP address blocks: 194.110.203.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:1e:0d:68:40:37:50:2f:45:e1:c8:b4:3a:41:54:52:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3ab2e8c2d5b5ccd0baca545fadc3ec7f350236c
Validity
Not Before: Jan 18 19:30:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1794e238168be8eb347aaa2adf1861ead7c0b720
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:32:57:4b:13:c7:6e:68:85:5c:2f:ef:09:67:
65:a4:eb:ab:7d:42:65:26:ab:49:5d:b0:ba:ad:cf:
ed:52:5f:33:8c:02:17:6d:fe:0c:61:4b:f2:08:64:
07:ef:59:10:bb:5b:b0:6d:74:bf:e9:cf:c2:ce:1b:
fd:1a:31:bf:14:1d:c3:b7:32:70:69:23:ce:9e:67:
58:78:c3:cf:a1:d3:df:a2:6d:0b:ec:a8:b8:10:53:
d6:c3:fb:03:0d:cb:2d:1a:5b:43:e8:de:2d:b1:51:
48:10:2e:7e:54:4e:8e:aa:3b:be:f1:27:7c:8b:be:
12:2a:6f:40:78:f9:a2:bd:12:48:7d:d5:7a:3a:13:
35:9e:67:ad:0c:20:ab:bd:70:db:38:fe:c6:14:38:
0a:5e:08:a9:f4:6b:25:df:36:b6:20:5e:a4:8f:8c:
b0:4a:b2:f2:94:5e:7f:a8:84:9c:02:9d:28:04:78:
c2:79:ca:b4:c2:f6:3d:3f:4c:30:e1:73:80:f4:b2:
19:0e:73:5f:2b:3e:33:6a:df:ad:68:b5:8d:b7:f7:
f5:a5:d7:9a:2e:79:1e:67:bc:69:db:a3:2e:2a:91:
ce:89:f0:67:79:44:95:54:d9:2e:a1:73:fb:69:aa:
a9:37:e2:21:62:8f:de:77:63:39:48:43:c4:bd:3b:
81:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:94:E2:38:16:8B:E8:EB:34:7A:AA:2A:DF:18:61:EA:D7:C0:B7:20
X509v3 Authority Key Identifier:
keyid:D3:AB:2E:8C:2D:5B:5C:CD:0B:AC:A5:45:FA:DC:3E:C7:F3:50:23:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/06sujC1bXM0LrKVF-tw-x_NQI2w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/6163e6-5b55-464a-b510-49a3db1f8626/1/F5TiOBaL6Os0eqoq3xhh6tfAtyA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/6163e6-5b55-464a-b510-49a3db1f8626/1/06sujC1bXM0LrKVF-tw-x_NQI2w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.110.203.0/24
Signature Algorithm: sha256WithRSAEncryption
d4:e5:61:21:15:2a:4c:be:fc:56:ce:a2:29:72:21:cc:07:32:
a8:b7:74:a5:c7:92:6f:b3:8c:c6:31:53:41:4d:5a:97:58:1e:
0d:bd:15:db:86:f0:fd:c9:9d:a7:0c:ef:6e:75:d2:6b:9b:bb:
65:57:60:14:aa:6b:31:6d:2b:ee:e9:fe:f9:81:ee:b1:46:89:
ed:5d:1c:74:e0:20:96:2a:cd:db:0b:c7:5e:03:5e:ba:0d:fa:
11:7e:21:04:19:3f:07:fb:a2:97:29:80:2c:6b:c1:46:97:da:
c1:d1:28:ea:4a:48:b1:1a:16:5c:08:fc:22:3e:84:98:c7:ac:
95:ad:4f:38:79:26:0a:12:c1:44:ea:3d:73:cb:8f:5a:4e:9a:
17:60:40:71:13:79:e4:08:f5:2e:51:66:04:ea:f7:7a:14:d1:
d6:22:96:60:16:b7:3a:e4:35:3b:67:7c:54:39:97:c4:a3:2b:
7c:90:5b:94:f3:0b:cb:58:71:68:5b:7d:b5:46:6b:41:ad:9f:
26:9f:89:4a:fe:c1:dd:e3:8c:ab:d1:81:53:43:ef:4d:85:03:
ab:ec:9b:26:3c:b3:3b:ed:99:6a:c3:98:1a:fb:15:c3:8c:6e:
82:e3:85:77:47:4b:7b:8a:81:72:65:80:3f:34:ea:cd:33:aa:
2b:0d:0c:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 14 14:10:24 2025 by rpki-client