Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/kUOmzCfktXCBfukTMQfPZjdRKNs.roa
File: kUOmzCfktXCBfukTMQfPZjdRKNs.roa (raw, json)
Hash identifier: SHLWhxrsfuv2itfh47NaOoFxteetAQxIcG0IlkT73EY=
Subject key identifier: 91:43:A6:CC:27:E4:B5:70:81:7E:E9:13:31:07:CF:66:37:51:28:DB
Certificate issuer: /CN=0548cedf17029ed98a108113c6c109ecaccd82ec
Certificate serial: 019428282DF97DB1BFFE6091996A05C5B902
Authority key identifier: 05:48:CE:DF:17:02:9E:D9:8A:10:81:13:C6:C1:09:EC:AC:CD:82:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/kUOmzCfktXCBfukTMQfPZjdRKNs.roa
Signing time: Thu 02 Jan 2025 17:55:09 +0000
ROA not before: Thu 02 Jan 2025 17:55:09 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 205526
IP address blocks: 213.169.37.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:28:28:2d:f9:7d:b1:bf:fe:60:91:99:6a:05:c5:b9:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0548cedf17029ed98a108113c6c109ecaccd82ec
Validity
Not Before: Jan 2 17:55:09 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=9143a6cc27e4b570817ee9133107cf66375128db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:a2:ef:0e:7b:4d:b0:dc:db:76:b8:25:6e:cf:
6f:e7:19:2b:01:24:dd:2b:1a:ad:2a:00:9c:e2:3d:
6f:e8:5f:02:80:70:7c:95:16:70:91:ec:0b:55:3c:
56:0f:4a:b8:fe:50:e4:f8:4e:27:fa:15:6c:d2:3e:
75:20:64:16:b3:47:90:2d:41:4b:e8:6b:d8:38:34:
d5:58:57:9a:3a:8c:b2:fa:ab:63:e4:29:cc:11:a1:
97:e7:29:e0:63:38:0c:3b:ac:50:d8:aa:ca:d6:ee:
a9:21:13:aa:cb:2f:37:10:50:a0:79:ab:bf:ef:a0:
32:b8:6b:67:f1:a8:52:34:1a:29:8c:7c:e6:02:1e:
52:91:03:e3:47:ef:b9:43:e6:52:a3:6d:b3:ad:e5:
27:cb:e8:37:48:5a:d9:ab:58:d6:24:3e:0d:66:ce:
af:84:52:30:c5:c3:9a:65:13:f9:ab:b2:82:44:1a:
a0:bd:aa:73:fe:7b:f0:4b:aa:c6:26:34:e9:48:09:
37:d7:15:93:96:a9:75:c8:9f:1b:1d:68:f9:17:05:
16:00:96:43:57:ec:a8:1f:9c:29:e9:75:0a:ef:1f:
2f:4e:f6:ce:5f:6c:42:dd:3e:e5:2a:a6:6e:d4:4d:
26:9a:fa:50:e0:9b:1c:58:c5:35:8c:ba:a4:7a:8f:
75:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:43:A6:CC:27:E4:B5:70:81:7E:E9:13:31:07:CF:66:37:51:28:DB
X509v3 Authority Key Identifier:
keyid:05:48:CE:DF:17:02:9E:D9:8A:10:81:13:C6:C1:09:EC:AC:CD:82:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/kUOmzCfktXCBfukTMQfPZjdRKNs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/BUjO3xcCntmKEIETxsEJ7KzNguw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.169.37.0/24
Signature Algorithm: sha256WithRSAEncryption
01:f7:95:1b:c3:8a:45:39:a8:eb:cf:e5:e3:94:e5:10:b2:03:
f4:d6:c2:1c:6d:51:b3:39:ba:76:31:63:50:ac:c8:56:a0:78:
47:a3:96:8e:3c:c4:18:06:d0:70:6b:c0:b8:3f:12:cd:e0:a0:
38:48:4d:52:43:5d:81:7f:2c:c1:26:ea:ad:68:6c:7f:4a:81:
59:60:18:64:e5:63:04:7d:2f:12:2d:ab:36:76:86:17:fa:ca:
8e:37:72:a8:05:ae:64:ec:2a:42:d2:73:57:c2:71:93:84:01:
0d:b4:45:2d:23:21:a6:b5:85:70:bf:aa:b3:af:f8:ab:22:c0:
77:e0:09:1a:9a:57:ec:52:0f:d6:f7:ef:cf:fc:4c:03:6d:2d:
88:bd:5c:f0:69:a2:a8:22:ec:9d:dd:d1:c7:d6:d0:33:8e:82:
f9:4a:35:22:32:01:9e:98:4f:92:3c:fc:00:1a:00:e7:a0:d1:
80:f9:d3:35:a4:31:f3:8f:bc:09:ea:1f:dd:bf:a2:c5:21:c4:
f4:e3:cb:4b:39:cc:c7:93:b9:25:c5:be:4a:b2:f4:72:04:06:
44:bb:2b:da:db:11:9a:ea:25:9d:c3:b5:47:0f:40:81:a5:bd:
4e:ea:4a:00:da:9a:55:cc:8f:f4:52:1c:c5:13:6e:70:50:77:
8f:cb:31:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 16:44:59 2025 by rpki-client