Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/130d95-5641-4ada-80c0-da3e1192cdf6/1/TEEAzNoMda-D3tOKgf4SY7IimUo.roa
File: TEEAzNoMda-D3tOKgf4SY7IimUo.roa (raw, json)
Hash identifier: tTg9Xq6WVgT6MoT3R5W+XtjoYKjmYdxhDyD+zIhktKI=
Subject key identifier: 4C:41:00:CC:DA:0C:75:AF:83:DE:D3:8A:81:FE:12:63:B2:22:99:4A
Certificate issuer: /CN=2eebb691b24f2879253e3a6a45e0b5c52673b09d
Certificate serial: 0194884E79449F305EA1AD0ED55D4B781597
Authority key identifier: 2E:EB:B6:91:B2:4F:28:79:25:3E:3A:6A:45:E0:B5:C5:26:73:B0:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Luu2kbJPKHklPjpqReC1xSZzsJ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/130d95-5641-4ada-80c0-da3e1192cdf6/1/TEEAzNoMda-D3tOKgf4SY7IimUo.roa
Signing time: Tue 21 Jan 2025 10:00:31 +0000
ROA not before: Tue 21 Jan 2025 10:00:31 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 43260
IP address blocks: 89.19.219.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:88:4e:79:44:9f:30:5e:a1:ad:0e:d5:5d:4b:78:15:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2eebb691b24f2879253e3a6a45e0b5c52673b09d
Validity
Not Before: Jan 21 10:00:31 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=4c4100ccda0c75af83ded38a81fe1263b222994a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:31:e8:ba:d3:13:05:c9:6e:95:91:08:0e:9e:
ec:39:de:1f:34:3c:96:64:ef:57:a8:96:d3:f8:b7:
69:6f:57:f6:a2:4c:2c:7d:d2:9a:0e:df:d6:43:37:
6e:9a:74:de:30:ae:87:1f:59:90:04:f1:d0:e1:f6:
99:5d:9b:1b:de:76:61:79:d1:0f:29:f8:ce:1f:43:
85:93:cb:85:ef:c0:60:fa:24:d5:ae:4f:41:2d:60:
c5:ce:06:29:c9:9e:7a:e5:d3:60:3a:d2:6a:55:69:
29:ad:b9:f9:0c:95:7a:c2:86:c1:0e:1f:de:4f:39:
18:4b:c9:73:73:a6:cb:60:d9:b0:ad:d5:81:19:32:
56:42:27:da:e5:92:ca:ed:fd:63:2d:0c:1d:2b:26:
9b:b4:df:ec:8b:e4:f6:e8:dc:64:79:ed:7d:7a:43:
a0:33:1e:84:99:66:72:6d:e8:4a:1d:70:65:34:74:
1f:86:11:d2:b2:ce:e6:36:4c:bd:c7:8c:32:6d:2f:
88:fe:23:5f:42:a9:17:27:50:66:66:b3:fe:38:d6:
ca:66:3f:cc:7f:6c:29:88:ad:32:7f:21:b8:a8:69:
85:b3:88:52:92:e2:45:13:bb:35:71:e3:10:d0:52:
bd:18:d4:ea:61:cc:75:5e:45:71:d5:70:b4:3b:3a:
92:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:41:00:CC:DA:0C:75:AF:83:DE:D3:8A:81:FE:12:63:B2:22:99:4A
X509v3 Authority Key Identifier:
keyid:2E:EB:B6:91:B2:4F:28:79:25:3E:3A:6A:45:E0:B5:C5:26:73:B0:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Luu2kbJPKHklPjpqReC1xSZzsJ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/130d95-5641-4ada-80c0-da3e1192cdf6/1/TEEAzNoMda-D3tOKgf4SY7IimUo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/130d95-5641-4ada-80c0-da3e1192cdf6/1/Luu2kbJPKHklPjpqReC1xSZzsJ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.19.219.0/24
Signature Algorithm: sha256WithRSAEncryption
30:b4:ad:56:be:22:a1:7c:37:4a:c7:1b:a6:b2:e5:99:1f:4a:
ef:c5:60:39:98:ad:41:c0:bb:a8:04:ee:4f:98:7d:f9:f9:3c:
59:b5:ea:23:1e:a1:8f:72:09:da:de:03:32:95:b7:8d:ec:13:
68:dd:b0:b5:8e:b8:db:86:c5:32:62:66:f0:09:9d:06:7e:82:
39:1b:60:ba:cc:5f:f0:0e:ea:57:47:54:a2:c9:12:c5:7f:f0:
86:7c:90:4b:a0:1f:82:dc:14:3b:db:f7:2c:06:5d:25:8f:e7:
38:69:54:40:12:46:70:25:6a:59:ab:6a:4d:e7:a4:7d:97:dd:
f5:b1:be:1c:98:32:40:f5:c4:17:fd:3a:8c:36:3a:0e:60:44:
c9:d0:1f:77:ba:f2:e6:cd:16:ec:e7:ef:5e:31:47:d9:3f:60:
6e:d5:6d:f7:9e:69:42:81:4f:3b:42:3c:93:8a:80:00:72:dd:
84:b0:c1:c8:b6:15:23:7c:30:0c:09:9b:c9:44:bc:72:42:aa:
51:ae:4b:d3:b0:14:53:20:84:41:0e:ce:7f:a9:4c:8b:b4:eb:
d0:6c:26:71:77:ef:db:25:69:66:f2:80:28:7b:c4:99:5c:5b:
4b:de:c1:15:bc:c7:1d:15:e9:f6:4c:e0:16:1e:23:37:cc:64:
8f:c6:77:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 14:37:36 2025 by rpki-client