Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/Ie46VxUQL-uGM7KfBCtlq5lXLs0.roa
File: Ie46VxUQL-uGM7KfBCtlq5lXLs0.roa (raw, json)
Hash identifier: CJ+Jz2VBbegAGroVOyxHpkpX25bv4zbG0v4Gu2xYoVE=
Subject key identifier: 21:EE:3A:57:15:10:2F:EB:86:33:B2:9F:04:2B:65:AB:99:57:2E:CD
Certificate issuer: /CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Certificate serial: 019424451F379F5A0CD27B9A36E4A939F80F
Authority key identifier: D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/Ie46VxUQL-uGM7KfBCtlq5lXLs0.roa
Signing time: Wed 01 Jan 2025 23:48:17 +0000
ROA not before: Wed 01 Jan 2025 23:48:17 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 51192
IP address blocks: 193.163.21.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:45:1f:37:9f:5a:0c:d2:7b:9a:36:e4:a9:39:f8:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Validity
Not Before: Jan 1 23:48:17 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=21ee3a5715102feb8633b29f042b65ab99572ecd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:02:b5:78:2a:e7:80:f6:51:61:15:f1:10:bd:
e1:f6:57:e8:6d:9d:d1:01:ee:a0:c4:26:3b:e2:13:
58:7e:2a:58:db:9c:21:93:d4:80:e7:e6:fd:dc:0e:
b7:f1:39:72:1b:dd:c0:d9:dd:d8:58:66:a5:9f:c9:
0d:d5:ed:a0:ef:d9:0f:99:3b:64:ba:ff:dd:51:6d:
88:38:70:01:f9:6e:ac:5f:4e:5d:bb:00:38:49:42:
29:b1:ea:39:bc:8b:83:d2:89:76:b3:99:81:36:c7:
8a:13:35:49:0a:df:93:29:8d:75:3b:ec:86:21:12:
26:7d:67:0a:b8:22:16:68:0e:a2:ac:2d:ae:c3:9b:
43:33:29:44:4e:dc:9a:db:0c:33:9c:74:71:a7:76:
b2:a2:67:34:36:38:b1:3d:d4:b9:12:48:c3:7f:e5:
bd:d5:2d:81:6d:dd:e2:db:6e:5d:34:df:ac:ec:86:
6b:01:1c:cb:6e:29:ac:8e:f3:63:58:9e:81:c6:aa:
81:3c:74:28:c6:1e:ee:4a:51:8d:d2:f7:37:18:cc:
31:4a:13:06:f4:ef:94:9c:c0:c6:c5:cb:6c:80:5e:
3e:1d:0a:f8:28:09:b3:ea:47:23:c5:19:b6:c1:4d:
90:82:8e:dc:82:7b:5b:88:9e:a3:80:f2:8b:bf:7e:
f3:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:EE:3A:57:15:10:2F:EB:86:33:B2:9F:04:2B:65:AB:99:57:2E:CD
X509v3 Authority Key Identifier:
keyid:D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/Ie46VxUQL-uGM7KfBCtlq5lXLs0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/12u0jpPooAWMXHKoGoeZRVMH7lY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.163.21.0/24
Signature Algorithm: sha256WithRSAEncryption
42:e3:59:17:f2:c0:8c:a7:db:ce:47:3a:89:99:0c:a4:d9:53:
37:57:e1:34:7c:7f:a4:47:7e:f3:d8:b9:20:03:45:20:bf:4f:
63:00:79:a2:df:ea:90:8b:76:70:5b:67:68:bc:a5:5d:af:47:
d1:ca:ad:af:57:d9:20:47:40:26:26:31:36:22:99:cd:d7:50:
aa:92:2d:3d:05:37:16:c7:83:21:83:d4:6d:62:8b:8f:c3:c2:
77:c8:89:48:37:48:16:a1:67:7a:96:a4:fc:34:83:62:61:d6:
79:2d:92:cf:d8:e1:c8:f7:b6:c2:ff:86:ed:d2:36:e3:4d:6c:
6a:51:e7:c2:eb:bb:90:9d:84:f6:87:64:43:0b:82:65:25:00:
7e:e4:33:1a:5c:df:16:f1:af:f5:fa:c4:c4:ca:d7:b9:80:04:
ca:46:96:79:17:1c:74:75:d8:4e:e2:f8:98:f0:8d:8f:d4:cc:
2d:af:db:40:22:0f:ad:df:8a:5e:c9:da:81:c4:02:28:6b:d7:
d2:f8:f6:28:f9:d0:3d:ad:f6:aa:3c:da:77:82:d8:f1:34:c0:
bc:d0:19:dc:9c:24:e3:69:d2:9c:ce:be:f1:a9:2a:08:26:4e:
76:00:ad:4d:7e:18:7c:db:5d:10:c8:67:be:d3:f9:d3:50:5e:
cf:79:86:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 17:37:57 2025 by rpki-client