Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/iCul-S3xtgwdGJfPuGKXsM2GBOc.roa
File: iCul-S3xtgwdGJfPuGKXsM2GBOc.roa (raw, json)
Hash identifier: lj70fAAWcH+774coLpGoN6gmvpotuGvm1ghO0/d8VV0=
Subject key identifier: 88:2B:A5:F9:2D:F1:B6:0C:1D:18:97:CF:B8:62:97:B0:CD:86:04:E7
Certificate issuer: /CN=86d648bdba965461b1e8c11b9dd436c61382873c
Certificate serial: 019420684C3CD3970823AC8117AD5FF7CC30
Authority key identifier: 86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/iCul-S3xtgwdGJfPuGKXsM2GBOc.roa
Signing time: Wed 01 Jan 2025 05:48:13 +0000
ROA not before: Wed 01 Jan 2025 05:48:13 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 200195
IP address blocks: 193.233.135.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:68:4c:3c:d3:97:08:23:ac:81:17:ad:5f:f7:cc:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86d648bdba965461b1e8c11b9dd436c61382873c
Validity
Not Before: Jan 1 05:48:13 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=882ba5f92df1b60c1d1897cfb86297b0cd8604e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:d9:51:8c:79:d1:8b:30:88:fc:eb:4d:92:41:
6c:d6:c0:5a:0a:ed:a0:41:c1:bd:24:87:07:3c:01:
a4:1b:99:a7:75:99:39:9e:ed:89:69:d6:e4:d4:06:
fc:37:10:e6:e3:e7:04:a4:09:f5:87:b4:1a:4a:6b:
48:b7:8c:e6:e8:b7:82:ca:cb:ba:2b:e2:11:73:72:
0d:00:da:56:ec:dd:a9:eb:fb:8c:95:ed:4e:0f:47:
c9:1b:9a:a7:1e:f9:4e:d4:6c:e4:8a:02:7e:8d:dc:
90:49:a0:af:43:a0:44:60:b8:0e:02:ac:01:76:ab:
f0:29:b1:38:61:7b:c7:8a:31:14:be:92:2d:fc:15:
5e:af:cf:f1:8b:22:38:05:18:51:74:d4:b8:cd:86:
f9:a4:c8:65:71:83:a8:fb:32:1d:9c:96:24:ba:02:
23:75:01:0f:11:1c:0b:08:92:7b:26:1b:03:b2:29:
5b:9a:cc:89:e8:67:eb:45:81:27:b5:c9:11:b3:b2:
4e:b6:c6:db:68:e3:2e:0d:c8:33:46:4a:17:11:a7:
a0:23:cb:9b:f5:20:17:71:de:bf:d8:9c:30:e6:6e:
b3:63:0f:00:b7:17:23:dd:06:b7:28:05:8b:8c:60:
b3:49:83:31:c8:cc:26:e5:e1:de:e9:9e:6e:00:d4:
43:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:2B:A5:F9:2D:F1:B6:0C:1D:18:97:CF:B8:62:97:B0:CD:86:04:E7
X509v3 Authority Key Identifier:
keyid:86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/iCul-S3xtgwdGJfPuGKXsM2GBOc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.233.135.0/24
Signature Algorithm: sha256WithRSAEncryption
94:e6:fa:6e:49:81:29:18:7f:c5:2b:6b:74:16:c4:c6:b3:e1:
cf:9c:82:1a:fb:7a:35:fc:59:e4:67:d5:a4:21:85:41:82:73:
17:40:d8:db:67:e5:1c:18:cc:54:70:8a:55:2c:72:53:53:65:
fe:e0:2a:6a:10:aa:98:90:ea:24:9f:4c:97:05:61:88:d1:84:
16:d1:5a:2a:f5:57:6d:f0:8d:32:a5:94:32:d2:44:92:86:b8:
6e:16:26:74:9c:f8:a2:25:d4:30:86:9d:4b:34:a9:3d:da:40:
60:7d:bc:1e:8a:d1:4c:71:94:a7:cc:9f:f9:4b:30:28:4b:2e:
31:ed:1c:ec:f8:51:9e:df:56:7a:3c:8b:70:b3:93:a6:ba:50:
84:98:eb:0c:c5:60:a3:89:cc:49:a9:b0:e9:94:89:dd:cd:01:
e9:f1:b1:60:0a:c5:30:24:9f:9a:30:bb:53:1f:68:b2:d6:8b:
4d:7f:27:29:b7:a0:26:93:19:0f:f2:cb:f7:75:11:e9:3b:8a:
6c:71:54:74:a3:e1:0a:f4:4f:e6:44:09:68:6f:1c:37:73:bd:
d5:d5:25:a5:5b:b2:d5:40:8f:b3:3c:58:3e:41:f1:01:66:72:
e1:34:d2:ea:42:23:60:83:bf:6a:be:e7:e8:7f:cb:6e:05:5c:
45:a4:ba:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 03:05:12 2025 by rpki-client