Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/BwU-Qp4TnCWPIkALAtJknsVnuK4.roa
File: BwU-Qp4TnCWPIkALAtJknsVnuK4.roa (raw, json)
Hash identifier: ntOVFp4YQxJWdrzPTFrsEPCe9xYG/PY7+qgr2Vad8zE=
Subject key identifier: 07:05:3E:42:9E:13:9C:25:8F:22:40:0B:02:D2:64:9E:C5:67:B8:AE
Certificate issuer: /CN=86d648bdba965461b1e8c11b9dd436c61382873c
Certificate serial: 01942068591BF9C4088F1E571F3710B8F5F2
Authority key identifier: 86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/BwU-Qp4TnCWPIkALAtJknsVnuK4.roa
Signing time: Wed 01 Jan 2025 05:48:16 +0000
ROA not before: Wed 01 Jan 2025 05:48:16 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 213887
IP address blocks: 193.233.134.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:68:59:1b:f9:c4:08:8f:1e:57:1f:37:10:b8:f5:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86d648bdba965461b1e8c11b9dd436c61382873c
Validity
Not Before: Jan 1 05:48:16 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=07053e429e139c258f22400b02d2649ec567b8ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:60:50:78:b2:93:22:15:ed:39:29:a0:16:36:
77:6f:0c:4b:2f:eb:db:db:ce:f8:9a:e8:22:8a:d7:
60:47:e1:b2:9e:64:49:f6:2f:a3:91:bd:07:ea:60:
81:77:f6:22:67:61:9c:58:0c:39:ee:95:89:a2:3a:
ab:9b:42:7c:38:77:18:4d:d2:f5:b6:0e:77:98:7d:
8f:7b:05:6d:dd:52:2e:f5:93:5a:41:3a:d4:c8:04:
b7:2b:3e:0c:f6:3e:d5:ee:16:58:11:ca:24:fb:f2:
52:2a:3c:8b:87:21:b6:bf:f4:39:d1:4b:5a:c5:83:
b2:3d:bc:b8:62:48:b1:de:33:24:dc:a9:75:3e:1f:
1a:d9:e4:2b:1b:aa:21:0e:1b:e6:39:31:ac:58:71:
92:f1:c8:bf:1f:08:2d:0a:a2:75:d8:81:b7:22:66:
a5:41:4b:ee:19:25:d5:f6:84:3d:18:54:89:87:be:
bd:b7:97:4c:cd:3c:88:dc:86:48:9f:b6:c8:86:96:
14:7b:b0:25:5a:4c:d1:74:6e:c7:11:94:c3:dc:cf:
ef:fb:b4:ac:a3:76:cb:36:5d:54:7b:0b:3b:65:d6:
ac:05:77:2d:d1:50:9b:19:33:3b:20:d3:2a:26:30:
53:dc:fc:44:81:60:fc:39:c3:a7:e4:07:da:28:8b:
cc:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:05:3E:42:9E:13:9C:25:8F:22:40:0B:02:D2:64:9E:C5:67:B8:AE
X509v3 Authority Key Identifier:
keyid:86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/BwU-Qp4TnCWPIkALAtJknsVnuK4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.233.134.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:fc:41:15:30:1a:d1:26:02:34:08:5c:e6:35:8d:e3:36:df:
ff:e7:4e:37:45:0c:2e:c8:e3:df:ef:e4:9c:2c:f8:63:c7:fb:
1e:39:04:65:de:68:16:22:00:c8:a9:12:8e:90:e9:ba:92:4f:
7b:95:3a:5a:cd:52:89:0f:a4:58:ca:22:35:7e:45:d4:b3:00:
33:22:82:ea:8d:41:33:9e:37:f3:7f:c2:e1:ad:d2:e9:64:bb:
a0:36:63:09:d6:f8:b0:58:16:43:18:83:4a:15:03:19:f6:d0:
56:2a:f2:16:e1:29:4c:d2:3e:53:21:f9:40:c3:ee:37:45:23:
90:38:d7:17:ed:7d:77:93:14:a4:9a:fc:ba:74:04:a1:41:f6:
db:ab:41:54:a0:80:78:de:84:aa:91:61:1f:57:25:68:0d:35:
0d:92:c1:05:0a:71:86:9e:bd:10:89:cc:c8:11:7f:f5:42:2e:
d9:7c:55:a7:9d:e6:a2:71:4e:03:d0:d1:ef:02:5e:d9:6b:4b:
05:bf:b5:b1:1b:f1:ef:f9:d0:2b:94:f1:1a:ec:2b:54:cf:e6:
ff:ba:44:f7:12:ed:05:93:a6:cd:06:61:6b:57:b8:83:20:cf:
93:6d:79:5e:b3:6c:4a:04:4e:49:b2:88:cf:1d:78:2a:5a:6b:
0e:d0:f1:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 04:40:17 2025 by rpki-client