Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/xTuAuZjGvhOWk_uWBblKZiMtGig.roa
File: xTuAuZjGvhOWk_uWBblKZiMtGig.roa (raw, json)
Hash identifier: JWJieCjXl9LxlplGV8bxFX0iq85OHeYrqZ0wvwJREsU=
Subject key identifier: C5:3B:80:B9:98:C6:BE:13:96:93:FB:96:05:B9:4A:66:23:2D:1A:28
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 0193677C8D58DED3AC4E98BBFFE9F705134A
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/xTuAuZjGvhOWk_uWBblKZiMtGig.roa
Signing time: Tue 26 Nov 2024 08:00:36 +0000
ROA not before: Tue 26 Nov 2024 08:00:36 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 395793
IP address blocks: 163.5.17.0/24 maxlen: 24
163.5.44.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:67:7c:8d:58:de:d3:ac:4e:98:bb:ff:e9:f7:05:13:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Nov 26 08:00:36 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c53b80b998c6be139693fb9605b94a66232d1a28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:e3:b3:b4:96:31:5f:75:52:2d:d7:5d:f7:98:
4e:35:53:71:c0:cd:1d:e7:ac:35:88:17:8a:42:ce:
ca:8a:cd:ce:08:be:83:28:2c:a4:fc:c8:99:69:a7:
54:38:d4:aa:0e:55:d1:ab:32:4b:20:4b:7f:8d:3c:
9f:4b:d2:f5:95:80:03:94:72:5b:1e:7e:da:50:e3:
06:13:3b:44:4b:e5:74:04:25:82:75:15:26:17:65:
82:98:bf:29:cf:bd:ff:1c:cf:11:b6:6c:87:5d:c7:
cc:e1:e9:e3:73:ae:2c:ca:72:47:8a:32:12:31:ef:
2c:38:9b:c1:14:52:c9:24:26:37:82:6a:2c:9a:9b:
af:49:ed:73:aa:a4:95:21:34:fd:f5:ad:dd:c1:67:
26:4a:27:d1:8c:18:29:5d:93:30:d6:3e:03:38:39:
90:f6:e9:da:86:90:6a:88:89:d4:fc:96:42:a9:4d:
b0:ba:86:e6:9c:63:cc:30:e7:c8:af:85:f6:5c:44:
b7:82:12:fc:28:93:5c:1c:67:8e:97:fc:a1:b7:18:
a9:44:d6:7a:42:2f:f4:81:a9:9a:2f:23:3b:70:18:
3e:23:e7:48:f1:39:ce:43:fe:73:23:cd:d3:ac:6a:
2d:e7:0e:6e:8f:4c:4c:24:ae:3a:85:b0:53:43:f4:
7b:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:3B:80:B9:98:C6:BE:13:96:93:FB:96:05:B9:4A:66:23:2D:1A:28
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/xTuAuZjGvhOWk_uWBblKZiMtGig.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.17.0/24
163.5.44.0/24
Signature Algorithm: sha256WithRSAEncryption
80:9e:c4:6c:ee:bc:f4:fe:df:be:ba:f4:69:fd:48:8b:c7:fb:
fc:46:5f:d3:6d:e6:a3:1d:bc:3e:68:9b:ca:a3:a3:1b:1f:0f:
e1:5e:b5:6d:e0:58:b0:9e:0a:8c:e6:5c:9c:e7:c0:ad:26:17:
4d:7f:4a:57:ae:fc:23:4e:af:0c:08:f3:26:c0:68:4d:f2:51:
5c:fa:15:4e:6e:2d:ff:1e:a0:da:f0:3d:2f:c5:ab:1f:b5:7d:
38:95:59:d7:42:a3:dc:25:cc:3b:53:e3:cb:99:09:69:90:dd:
af:e5:6e:02:5b:09:46:c9:93:ff:ac:53:af:b2:80:10:e1:cf:
40:a4:03:99:9c:8e:6d:0d:d6:23:f7:3b:0f:74:63:53:71:61:
32:25:88:11:42:bc:21:c4:4f:15:05:b7:b5:89:90:e8:be:01:
d0:e0:54:ea:78:f5:54:44:71:9f:42:b4:cb:a7:4a:a0:ee:13:
a1:f9:c3:67:de:fa:29:e0:44:13:1b:cc:19:31:c4:63:37:2d:
f0:2b:c7:e5:b3:11:fa:8b:e4:e3:a1:9a:f6:b8:40:15:3b:83:
49:34:5c:e9:9c:66:3a:6e:8e:f3:d2:12:7c:32:37:b3:eb:d5:
38:45:a6:bf:73:4e:5f:4f:01:9b:2d:c5:2f:5e:7e:af:7b:53:
2c:cf:33:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 14:44:06 2025 by rpki-client