Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CBVjWd86W_Cxg6j4O_CKHqRZZrQ.roa
File: CBVjWd86W_Cxg6j4O_CKHqRZZrQ.roa (raw, json)
Hash identifier: t94vbOP47WJ5gVu35u9RxmYGSjDcAKBDeCNnXv/rLq0=
Subject key identifier: 08:15:63:59:DF:3A:5B:F0:B1:83:A8:F8:3B:F0:8A:1E:A4:59:66:B4
Certificate issuer: /CN=093353c1fabe896af8b85fe7600e4634968fcc4c
Certificate serial: 019527520C288EEDF39930C7F62825853701
Authority key identifier: 09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CBVjWd86W_Cxg6j4O_CKHqRZZrQ.roa
Signing time: Fri 21 Feb 2025 07:04:03 +0000
ROA not before: Fri 21 Feb 2025 07:04:03 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 395092
IP address blocks: 213.166.94.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:27:52:0c:28:8e:ed:f3:99:30:c7:f6:28:25:85:37:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=093353c1fabe896af8b85fe7600e4634968fcc4c
Validity
Not Before: Feb 21 07:04:03 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=08156359df3a5bf0b183a8f83bf08a1ea45966b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:e1:14:46:fc:eb:f2:f7:c8:76:f8:37:91:cb:
53:57:ca:eb:7a:81:10:f9:2d:61:3a:db:9a:03:5a:
e0:00:3d:c3:9a:1b:bf:e9:03:b4:63:da:0e:37:84:
d7:c6:d8:29:14:01:6e:23:79:8f:75:f6:03:6d:57:
9d:ea:a9:19:05:d3:a1:df:ff:c7:f8:97:d4:ea:92:
28:44:36:6e:89:4e:de:7a:b7:9d:5d:3d:6c:aa:6f:
ad:e0:1a:4b:e9:f1:3c:c2:3b:84:b3:7e:78:59:28:
f0:78:ed:0d:70:31:fd:f4:aa:99:2f:05:6d:53:e3:
d4:12:b7:89:55:b1:42:37:62:65:71:dc:14:19:4b:
1c:04:d9:23:50:28:4f:07:d3:ca:3f:2b:ed:b8:1a:
0c:ae:4c:bd:98:bb:a1:a3:db:d3:ae:9f:86:b7:4b:
ac:3c:59:29:42:0b:79:13:48:a6:03:8c:55:b6:93:
d3:ad:ae:c9:dc:8e:6a:1a:8a:fe:53:0c:e8:46:7f:
8c:09:1a:55:73:f8:78:8e:9c:a8:a2:b6:38:28:ee:
73:ea:0f:f7:e9:07:70:68:e6:8c:e0:bb:96:44:ed:
b0:b9:07:06:4a:aa:c2:fc:7d:95:d5:22:80:20:bc:
10:be:26:99:05:1c:0b:ab:e9:63:7b:21:69:18:c4:
34:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:15:63:59:DF:3A:5B:F0:B1:83:A8:F8:3B:F0:8A:1E:A4:59:66:B4
X509v3 Authority Key Identifier:
keyid:09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CBVjWd86W_Cxg6j4O_CKHqRZZrQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.166.94.0/24
Signature Algorithm: sha256WithRSAEncryption
66:6c:5d:19:d4:5c:4f:3d:f0:68:ce:16:d8:eb:45:d1:5c:c0:
45:79:3b:00:11:9a:f1:11:20:86:07:16:a1:f7:57:b5:e7:40:
dd:61:f9:64:6b:4c:a0:6c:d6:65:32:50:78:2d:31:e2:0e:31:
8e:55:aa:50:b6:1c:5d:26:dc:1c:2b:81:cf:7d:7b:16:f5:c9:
97:cb:0e:2d:04:24:09:8b:95:f0:63:54:12:5a:9b:41:54:a8:
a9:4c:f6:56:cf:21:7a:2a:0c:64:11:cf:e8:b8:01:cd:f6:6f:
68:25:73:91:62:be:f4:ef:54:1c:77:d0:21:17:a0:0b:45:4d:
06:4d:19:1a:63:3b:6d:34:73:fb:12:c6:45:46:d7:98:3a:86:
28:ff:88:06:72:47:3d:78:d6:35:59:83:41:2c:0e:f6:a8:13:
15:02:c5:f4:0a:eb:ff:1a:51:83:1b:81:dc:6b:05:34:2b:59:
d2:a2:53:fa:4d:eb:58:2b:70:dd:b3:7d:9c:b1:df:12:af:0c:
c5:29:5e:65:bc:7f:b0:0e:01:6c:54:b8:5f:3d:5c:13:ed:37:
97:d1:6c:02:ed:34:5a:e4:c7:31:47:9c:45:7b:21:7e:20:b5:
c4:70:0d:8f:69:35:ec:af:b1:78:72:14:28:26:af:cb:a6:a6:
08:0e:39:8d
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZUnUgwoju3zmTDH9iglhTcBMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA5MzM1M2MxZmFiZTg5NmFmOGI4NWZlNzYwMGU0NjM0OTY4
ZmNjNGMwHhcNMjUwMjIxMDcwNDAzWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwODE1NjM1OWRmM2E1YmYwYjE4M2E4ZjgzYmYwOGExZWE0NTk2NmI0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1+EURvzr8vfIdvg3kctTV8rreoEQ
+S1hOtuaA1rgAD3Dmhu/6QO0Y9oON4TXxtgpFAFuI3mPdfYDbVed6qkZBdOh3//H
+JfU6pIoRDZuiU7eeredXT1sqm+t4BpL6fE8wjuEs354WSjweO0NcDH99KqZLwVt
U+PUEreJVbFCN2JlcdwUGUscBNkjUChPB9PKPyvtuBoMrky9mLuho9vTrp+Gt0us
PFkpQgt5E0imA4xVtpPTra7J3I5qGor+UwzoRn+MCRpVc/h4jpyoorY4KO5z6g/3
6QdwaOaM4LuWRO2wuQcGSqrC/H2V1SKAILwQviaZBRwLq+ljeyFpGMQ0YwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFAgVY1nfOlvwsYOo+Dvwih6kWWa0MB8GA1UdIwQY
MBaAFAkzU8H6volq+Lhf52AORjSWj8xMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQ1ROVHdmcS1pV3I0dUZfbllBNUdOSmFQekV3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yi83YjkzMzYtZTlmOC00ZTI3LWFmNGIt
MjM5ZDJmZTM5OGIxLzEvQ0JWaldkODZXX0N4ZzZqNE9fQ0tIcVJaWnJRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Yi83YjkzMzYtZTlmOC00ZTI3LWFmNGItMjM5ZDJmZTM5OGIx
LzEvQ1ROVHdmcS1pV3I0dUZfbllBNUdOSmFQekV3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1aZeMA0G
CSqGSIb3DQEBCwUAA4IBAQBmbF0Z1FxPPfBozhbY60XRXMBFeTsAEZrxESCGBxah
91e150DdYflka0ygbNZlMlB4LTHiDjGOVapQthxdJtwcK4HPfXsW9cmXyw4tBCQJ
i5XwY1QSWptBVKipTPZWzyF6KgxkEc/ouAHN9m9oJXORYr7071Qcd9AhF6ALRU0G
TRkaYzttNHP7EsZFRteYOoYo/4gGckc9eNY1WYNBLA72qBMVAsX0Cuv/GlGDG4Hc
awU0K1nSolP6TetYK3Dds32csd8SrwzFKV5lvH+wDgFsVLhfPVwT7TeX0WwC7TRa
5McxR5xFeyF+ILXEcA2PaTXsr7F4chQoJq/LpqYIDjmN
-----END CERTIFICATE-----
Generated at Sat Apr 5 07:10:08 2025 by rpki-client