Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/febef8-a0ea-4c7e-8806-20e19780cb2e/1/NjLk2e2zqXQskhSwEvgc6VrieSE.roa
File: NjLk2e2zqXQskhSwEvgc6VrieSE.roa (raw, json)
Hash identifier: /tSrJbpm+cVRf2wVaaTrsH5ognA/ZAO3z9nKKazqJL4=
Subject key identifier: 36:32:E4:D9:ED:B3:A9:74:2C:92:14:B0:12:F8:1C:E9:5A:E2:79:21
Certificate issuer: /CN=d08da9cf00d4d58b854ffc62010f235b06df354a
Certificate serial: 0194221FF51E02CF3ED3949C0B2722636311
Authority key identifier: D0:8D:A9:CF:00:D4:D5:8B:85:4F:FC:62:01:0F:23:5B:06:DF:35:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0I2pzwDU1YuFT_xiAQ8jWwbfNUo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/febef8-a0ea-4c7e-8806-20e19780cb2e/1/NjLk2e2zqXQskhSwEvgc6VrieSE.roa
Signing time: Wed 01 Jan 2025 13:48:27 +0000
ROA not before: Wed 01 Jan 2025 13:48:27 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 214941
IP address blocks: 193.160.222.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:1f:f5:1e:02:cf:3e:d3:94:9c:0b:27:22:63:63:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d08da9cf00d4d58b854ffc62010f235b06df354a
Validity
Not Before: Jan 1 13:48:27 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=3632e4d9edb3a9742c9214b012f81ce95ae27921
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:22:ed:12:0e:eb:1e:69:4d:0f:f2:de:6b:a4:
59:79:3c:fb:c4:54:95:e7:93:f9:82:83:c0:b8:81:
c4:7f:78:a9:47:84:58:87:50:4f:73:c1:72:f9:dc:
53:cc:2b:da:d7:b4:a4:4d:83:b8:b5:e4:b6:81:61:
5b:cc:b2:88:fe:4e:5f:7e:fb:f7:4e:43:03:17:d6:
a5:72:76:77:6d:a0:7f:cd:f9:0f:75:7c:4e:f9:b9:
53:9b:e3:92:40:52:35:c0:8e:39:73:75:f6:d2:c3:
78:88:40:01:a3:9e:9b:b8:80:56:2b:f9:c7:15:e4:
b1:7d:f1:2f:01:95:61:9c:3b:da:ba:bf:d8:e5:70:
16:40:c2:82:ac:9d:f5:22:f4:09:fd:77:e3:8f:44:
2e:f6:20:b1:e4:0d:ba:4a:fd:6f:c7:4a:52:e6:a0:
cb:a8:c9:f8:03:e8:95:a5:d5:2d:56:a8:d3:a5:0f:
cb:ce:f7:15:e0:ac:46:cc:74:5b:97:ec:2b:2c:03:
45:dd:ac:ec:96:65:85:55:10:6d:a3:f4:2a:52:42:
c6:9f:31:e5:61:a6:e9:d5:89:92:30:fb:63:99:52:
6b:0c:f1:26:0d:9b:24:22:63:72:eb:2f:4f:e2:84:
ab:46:ef:75:8d:06:3d:8b:60:03:7b:80:6c:95:24:
a8:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:32:E4:D9:ED:B3:A9:74:2C:92:14:B0:12:F8:1C:E9:5A:E2:79:21
X509v3 Authority Key Identifier:
keyid:D0:8D:A9:CF:00:D4:D5:8B:85:4F:FC:62:01:0F:23:5B:06:DF:35:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0I2pzwDU1YuFT_xiAQ8jWwbfNUo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/febef8-a0ea-4c7e-8806-20e19780cb2e/1/NjLk2e2zqXQskhSwEvgc6VrieSE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/febef8-a0ea-4c7e-8806-20e19780cb2e/1/0I2pzwDU1YuFT_xiAQ8jWwbfNUo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.160.222.0/24
Signature Algorithm: sha256WithRSAEncryption
14:14:80:18:51:b0:92:1a:d5:96:0e:ba:0c:a4:2a:5b:3a:d9:
81:82:44:e3:43:38:2b:e5:a5:e3:ec:13:a6:b4:45:18:9c:14:
70:93:ef:d6:4c:62:c1:a9:64:d4:1b:e2:15:d4:fa:f0:7a:c6:
c2:e4:4f:13:0f:ed:53:a0:04:6b:bf:b1:1d:5c:04:09:75:db:
fc:35:88:cc:82:f4:95:3e:c9:d4:d8:20:cb:19:5a:b0:05:d0:
98:6a:01:3a:3e:42:80:60:44:56:32:b6:4c:56:40:d0:23:a9:
e1:ed:b2:c0:6c:ba:0f:68:23:0b:63:55:6a:75:02:07:ba:48:
7c:0a:a4:26:00:67:23:60:50:9a:cc:95:8e:b4:5e:94:1f:18:
68:24:42:81:09:dd:fe:31:0f:4c:df:65:df:44:b6:1a:63:ac:
9f:55:e6:e9:27:94:bb:e4:a1:c5:61:9b:83:35:68:cd:e7:66:
c1:af:7e:82:62:f1:be:e8:c1:16:ff:61:ac:04:ea:11:85:a8:
dc:8b:b9:c8:3f:17:01:bb:67:5f:33:1e:a4:e7:ae:b2:e8:16:
68:8b:66:28:e1:7e:0f:97:58:5f:1c:80:73:0b:e3:af:ee:7b:
30:54:c3:93:85:4f:52:6e:0d:10:0a:8f:ad:d9:1d:f1:44:02:
99:48:ad:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 06:52:26 2025 by rpki-client