Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/ad4e57-d901-4485-98d2-9196ce446527/1/DhjZlSi7bqGhIkqNbNRX3gfsI1w.roa
File: DhjZlSi7bqGhIkqNbNRX3gfsI1w.roa (raw, json)
Hash identifier: OLHxHuTVhtCvi3/5uLA8d2kHj2pF2AkB7W65s8ZibPM=
Subject key identifier: 0E:18:D9:95:28:BB:6E:A1:A1:22:4A:8D:6C:D4:57:DE:07:EC:23:5C
Certificate issuer: /CN=ef3e71b96992da3d91c88dd74ef41f9b95b9485b
Certificate serial: 0190A334557F6BA74ACD98F2EBF4604EA9E8
Authority key identifier: EF:3E:71:B9:69:92:DA:3D:91:C8:8D:D7:4E:F4:1F:9B:95:B9:48:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7z5xuWmS2j2RyI3XTvQfm5W5SFs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/ad4e57-d901-4485-98d2-9196ce446527/1/DhjZlSi7bqGhIkqNbNRX3gfsI1w.roa
Signing time: Thu 11 Jul 2024 19:10:34 +0000
ROA not before: Thu 11 Jul 2024 19:10:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 206833
IP address blocks: 195.5.68.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:a3:34:55:7f:6b:a7:4a:cd:98:f2:eb:f4:60:4e:a9:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ef3e71b96992da3d91c88dd74ef41f9b95b9485b
Validity
Not Before: Jul 11 19:10:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0e18d99528bb6ea1a1224a8d6cd457de07ec235c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:f8:7f:0d:ea:27:33:ba:b9:dd:53:00:d2:90:
b5:eb:3d:27:50:e3:c1:84:2a:70:97:be:aa:81:90:
69:5e:9f:c4:e9:34:f6:d6:42:6f:0b:17:fd:a4:50:
f7:c8:c4:69:05:11:fe:2b:d3:30:e7:48:98:b9:ae:
05:d0:f8:e5:c4:bc:8e:d6:6f:74:f9:ce:35:9a:ad:
cf:1a:93:35:06:4c:a4:94:cd:f2:e4:c0:3e:7d:66:
bc:8d:3e:6c:3f:7c:68:3d:45:78:38:9e:7a:43:8c:
4c:da:f7:6c:5e:02:d2:e9:42:a5:45:e0:94:d8:1c:
69:41:05:eb:7e:19:4e:33:6c:70:3f:99:8b:7b:ce:
4c:39:ec:c3:28:92:d7:8e:49:6b:b5:af:91:db:17:
44:ea:f0:3f:58:90:b1:ea:28:0c:ca:3a:16:ba:70:
f8:e1:e7:e9:29:42:b1:69:90:fd:38:9e:39:66:86:
2c:e2:4c:41:96:90:f4:d5:c5:31:23:0e:a6:01:bd:
c7:44:7d:a3:85:0b:50:3b:31:72:4b:17:c7:df:1e:
46:43:15:ee:1d:5f:31:b1:26:f4:19:0d:cb:a8:3a:
b0:73:23:3a:69:77:98:dc:22:3c:12:65:76:52:ce:
0d:3c:72:a4:54:6e:4e:b7:4e:35:5a:dc:db:49:38:
6c:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:18:D9:95:28:BB:6E:A1:A1:22:4A:8D:6C:D4:57:DE:07:EC:23:5C
X509v3 Authority Key Identifier:
keyid:EF:3E:71:B9:69:92:DA:3D:91:C8:8D:D7:4E:F4:1F:9B:95:B9:48:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7z5xuWmS2j2RyI3XTvQfm5W5SFs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/ad4e57-d901-4485-98d2-9196ce446527/1/DhjZlSi7bqGhIkqNbNRX3gfsI1w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/ad4e57-d901-4485-98d2-9196ce446527/1/7z5xuWmS2j2RyI3XTvQfm5W5SFs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.5.68.0/22
Signature Algorithm: sha256WithRSAEncryption
47:49:e4:e4:d6:24:67:4a:e0:66:d2:a6:35:c2:c4:9f:7b:ef:
e9:23:a2:53:33:a0:c0:a0:aa:f3:8c:7e:16:62:ce:f8:49:73:
7c:73:4b:e6:a1:5e:2e:6e:55:70:2f:98:44:aa:a3:c9:3d:c0:
6f:ba:75:02:0a:e8:93:6e:23:9e:aa:89:f8:65:c6:b7:a0:73:
85:9c:87:d1:7c:27:57:0f:31:18:53:d8:d9:5c:c8:11:0d:da:
3a:cc:7a:a3:ce:ff:d3:79:0c:af:f7:f3:ff:ab:1c:10:d6:8c:
d9:ad:32:a2:6b:0f:b6:f7:8a:fd:8b:0c:e6:34:18:fb:e0:8d:
aa:b3:2d:25:a9:ff:ee:7e:e2:2c:61:97:23:76:e4:a8:76:7e:
bd:8e:be:02:d8:da:d1:ff:aa:20:66:26:51:80:3e:14:6d:80:
7e:32:43:83:40:79:ef:54:bb:6b:83:92:4d:d9:7a:ba:19:b0:
cc:77:ee:f9:de:a4:c8:a7:9e:bc:3e:dd:f5:ae:1f:ea:27:74:
5b:82:da:ec:44:fb:a4:a3:a7:64:14:b2:28:3b:40:73:51:7e:
e0:de:a7:01:a0:53:b6:74:1b:6b:5f:4c:6f:1f:d7:a1:99:79:
75:9d:41:3f:37:71:c2:36:ef:1b:65:3b:e9:cc:04:1b:e3:b1:
72:58:73:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 3 07:59:11 2025 by rpki-client