Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/febef8-a0ea-4c7e-8806-20e19780cb2e/1/PVvGYWt24uzVlwnsAFMPqAtNvZQ.roa
File: PVvGYWt24uzVlwnsAFMPqAtNvZQ.roa (raw, json)
Hash identifier: jUjkhiHyuibAHI/mM+xTuAPWbIQGwY5NVpAGVowuUvU=
Subject key identifier: 3D:5B:C6:61:6B:76:E2:EC:D5:97:09:EC:00:53:0F:A8:0B:4D:BD:94
Certificate issuer: /CN=d08da9cf00d4d58b854ffc62010f235b06df354a
Certificate serial: 0194221FF1B56AF9AB1042CBB536F17619A8
Authority key identifier: D0:8D:A9:CF:00:D4:D5:8B:85:4F:FC:62:01:0F:23:5B:06:DF:35:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0I2pzwDU1YuFT_xiAQ8jWwbfNUo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/febef8-a0ea-4c7e-8806-20e19780cb2e/1/PVvGYWt24uzVlwnsAFMPqAtNvZQ.roa
Signing time: Wed 01 Jan 2025 13:48:26 +0000
ROA not before: Wed 01 Jan 2025 13:48:26 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 48678
IP address blocks: 193.160.222.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:1f:f1:b5:6a:f9:ab:10:42:cb:b5:36:f1:76:19:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d08da9cf00d4d58b854ffc62010f235b06df354a
Validity
Not Before: Jan 1 13:48:26 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=3d5bc6616b76e2ecd59709ec00530fa80b4dbd94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:a7:37:bb:82:6a:55:43:b1:f6:55:7d:c5:d4:
ce:64:3f:8f:78:8b:a3:06:44:ff:51:10:6a:af:a4:
60:00:34:7f:be:94:65:8d:8b:d4:db:7b:09:0f:ea:
37:6f:de:db:34:7d:1a:ae:8b:f9:8d:21:9b:f8:33:
1f:20:5f:f3:e3:70:5d:b0:c1:65:d2:2d:ff:12:01:
a3:c7:08:78:7e:c3:c6:47:bc:15:1f:d4:59:81:d2:
96:46:86:82:68:52:f9:4a:b1:9e:a9:9c:2e:13:62:
d3:71:e4:9f:fb:89:78:f9:62:a0:0b:54:2c:25:7f:
f9:cf:68:dc:91:16:4c:36:63:bc:b0:6d:61:2f:85:
fa:76:dd:af:56:b4:95:a7:13:49:19:0a:09:7b:a3:
91:d1:8b:c7:1e:9a:a7:56:26:de:26:43:37:98:ea:
c9:83:bf:50:db:49:62:07:0f:2c:df:cb:f5:eb:a8:
4f:59:3e:b2:4b:b6:cc:e5:55:c6:f3:17:19:18:43:
d8:6e:e2:ef:bb:5a:0d:62:36:58:62:38:19:d5:39:
5b:b3:6f:e3:0f:1e:21:f9:30:f4:16:e8:fb:c9:bf:
f1:78:df:de:cb:20:f4:96:a8:b1:bc:41:5a:0c:9f:
c2:cd:ff:ba:05:c7:8e:20:27:7c:0b:1e:05:cb:16:
01:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:5B:C6:61:6B:76:E2:EC:D5:97:09:EC:00:53:0F:A8:0B:4D:BD:94
X509v3 Authority Key Identifier:
keyid:D0:8D:A9:CF:00:D4:D5:8B:85:4F:FC:62:01:0F:23:5B:06:DF:35:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0I2pzwDU1YuFT_xiAQ8jWwbfNUo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/febef8-a0ea-4c7e-8806-20e19780cb2e/1/PVvGYWt24uzVlwnsAFMPqAtNvZQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/febef8-a0ea-4c7e-8806-20e19780cb2e/1/0I2pzwDU1YuFT_xiAQ8jWwbfNUo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.160.222.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:03:58:90:b6:35:4b:a7:08:10:09:d1:a3:3e:a3:13:b7:f2:
ce:0a:05:75:1e:89:4b:64:0c:4d:64:23:f4:15:58:e0:12:3f:
29:66:7a:7a:ad:0b:f8:36:e0:6a:7b:54:24:6e:05:80:b1:9e:
b1:60:d3:78:39:77:ef:57:b0:0c:e2:4a:4a:06:23:15:26:22:
f7:7e:15:f2:e9:d4:1d:6d:b8:97:ac:06:62:e3:d2:6c:05:1c:
c9:4e:0b:26:fa:e6:2a:b4:58:27:a1:b9:a4:aa:a4:77:e8:74:
26:7d:2c:c9:d0:1b:20:22:24:55:bc:8d:5f:8b:06:15:43:33:
fb:e1:52:23:e6:63:4c:eb:2b:49:9c:35:30:0d:84:0c:99:b6:
f7:aa:be:59:ff:a0:42:2d:a1:0e:3b:2d:d9:f0:62:8d:14:eb:
28:14:ec:18:ee:f7:01:91:78:aa:58:16:93:8f:28:59:30:e2:
d3:aa:1e:bf:f7:84:94:da:38:15:45:df:e6:98:38:e2:de:ca:
d7:e0:4a:db:4f:ed:e9:87:82:01:1a:10:57:e3:4c:b2:85:3a:
f1:ea:ae:e1:82:b1:64:00:9b:21:f8:ab:a2:d0:a8:e0:14:a5:
0e:fc:8f:2b:01:da:04:2c:97:f2:44:53:cd:c6:87:69:4c:89:
c4:08:f6:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 08:47:38 2025 by rpki-client