Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/25df87-15ab-4b90-b760-52279153bbf4/1/Db3HFkgrXe_t0gz_wWcBFu9zXmw.roa
File: Db3HFkgrXe_t0gz_wWcBFu9zXmw.roa (raw, json)
Hash identifier: E0PYNSDlVhgQPFi1R7U2q+qwSRwkzfJASNVknrCx464=
Subject key identifier: 0D:BD:C7:16:48:2B:5D:EF:ED:D2:0C:FF:C1:67:01:16:EF:73:5E:6C
Certificate issuer: /CN=05072a23730bbe1a31051f07e3bb2d39d6085527
Certificate serial: 0183381E473536308DF01B0491BA15D600E2
Authority key identifier: 05:07:2A:23:73:0B:BE:1A:31:05:1F:07:E3:BB:2D:39:D6:08:55:27
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BQcqI3MLvhoxBR8H47stOdYIVSc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/25df87-15ab-4b90-b760-52279153bbf4/1/Db3HFkgrXe_t0gz_wWcBFu9zXmw.roa
Signing time: Tue 13 Sep 2022 18:30:51 +0000
ROA not before: Tue 13 Sep 2022 18:30:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209961
IP address blocks: 130.193.3.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:38:1e:47:35:36:30:8d:f0:1b:04:91:ba:15:d6:00:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05072a23730bbe1a31051f07e3bb2d39d6085527
Validity
Not Before: Sep 13 18:30:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0dbdc716482b5defedd20cffc1670116ef735e6c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:ab:c3:45:4f:83:c2:b3:bb:35:3d:b5:3c:aa:
ed:ea:95:20:4a:a6:88:20:9c:1f:9b:6a:2f:de:9f:
72:f1:87:a9:6f:29:96:42:48:7b:8f:af:e8:e9:44:
b1:66:20:80:0c:91:28:ad:27:1a:f5:e9:85:a6:5a:
9f:f2:c8:cc:f0:d8:b0:d1:53:32:5a:0a:90:18:df:
fa:2e:a5:14:05:17:48:4a:e1:1e:93:4e:a8:e3:6f:
a4:43:d8:d4:d0:ce:67:8d:eb:e3:d0:cb:25:77:01:
1d:d6:73:bd:30:20:64:c7:93:f3:01:46:23:97:06:
bc:d9:bc:da:d6:bb:b1:4d:d4:4c:e9:74:ba:22:d8:
83:68:3e:5c:5b:75:76:38:3f:88:b7:dc:8d:4c:be:
40:b3:16:44:49:18:f9:bb:42:aa:9c:0e:de:37:fe:
62:a1:47:1c:81:04:6a:3f:86:34:a3:36:90:19:4e:
37:f2:a8:96:ea:02:7f:40:5c:12:7c:df:aa:8a:84:
3a:13:0f:a4:6c:fb:32:b3:f9:7f:4a:17:f7:34:b0:
21:fa:7c:5e:39:26:a4:21:08:a1:58:f3:88:0a:c7:
a0:91:2a:74:7d:cf:93:81:09:16:cd:06:6f:d7:33:
ab:b0:55:08:95:3d:71:31:b3:90:05:17:ca:34:46:
30:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:BD:C7:16:48:2B:5D:EF:ED:D2:0C:FF:C1:67:01:16:EF:73:5E:6C
X509v3 Authority Key Identifier:
keyid:05:07:2A:23:73:0B:BE:1A:31:05:1F:07:E3:BB:2D:39:D6:08:55:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BQcqI3MLvhoxBR8H47stOdYIVSc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/25df87-15ab-4b90-b760-52279153bbf4/1/Db3HFkgrXe_t0gz_wWcBFu9zXmw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/25df87-15ab-4b90-b760-52279153bbf4/1/BQcqI3MLvhoxBR8H47stOdYIVSc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
130.193.3.0/24
Signature Algorithm: sha256WithRSAEncryption
73:9c:1f:dd:4c:1e:e7:5c:d6:73:dd:f9:63:70:a2:02:2e:58:
f7:34:b1:eb:5b:74:8f:a5:ab:9b:95:d2:9c:fe:44:19:f6:26:
30:37:06:11:f2:85:49:5e:a9:cb:d9:21:bd:4e:be:1c:55:19:
8f:4c:a2:42:75:ee:a5:9d:e7:b4:70:37:28:4f:a7:f4:f2:68:
69:ae:ab:f5:cb:46:df:7c:42:6b:dc:db:66:cd:fd:fe:09:47:
4a:80:07:04:8a:e0:f3:a5:1c:1e:f3:3d:d7:4e:b1:1c:5f:cc:
04:5a:8a:69:8b:c9:71:86:ef:0a:e6:8a:e1:14:79:21:2a:cb:
ec:d7:b1:f0:38:ae:36:d5:b4:a9:b4:14:bb:3e:4a:ca:d3:97:
b1:7a:d9:43:3b:88:70:b7:42:0f:f1:f8:82:c9:d8:c7:80:13:
ee:91:dd:9d:e4:ee:2d:3c:0a:9d:22:75:a9:58:ef:8e:55:5c:
44:5d:4d:2e:e5:55:87:a2:53:bc:41:39:19:a0:f4:d0:e1:ea:
64:3d:ab:15:1a:cb:b4:e5:84:28:6c:81:43:33:84:65:f5:be:
cd:0d:18:9b:c4:68:5b:6d:1a:52:be:36:5c:bf:2e:73:3d:d0:
1d:24:a9:f8:7d:c4:ed:04:74:b5:c6:20:ba:be:36:cf:63:53:
53:53:ac:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 19:30:55 2025 by rpki-client