Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/d3cce6-b47b-4d06-a30f-eb2411d212ab/1/KkgNTaO8Ej0mKs7zWZXNjTZ6ja4.roa
File: KkgNTaO8Ej0mKs7zWZXNjTZ6ja4.roa (raw, json)
Hash identifier: 5WwP+XaLn+kUHBFhOPlAYp+Od4/vUn/GY2fTlHhvevc=
Subject key identifier: 2A:48:0D:4D:A3:BC:12:3D:26:2A:CE:F3:59:95:CD:8D:36:7A:8D:AE
Certificate issuer: /CN=852ece9c9a324d45c35f9559f329d8869dab53ba
Certificate serial: 01856DC1E5ADBC8A534E100C026398D35C2E
Authority key identifier: 85:2E:CE:9C:9A:32:4D:45:C3:5F:95:59:F3:29:D8:86:9D:AB:53:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hS7OnJoyTUXDX5VZ8ynYhp2rU7o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/d3cce6-b47b-4d06-a30f-eb2411d212ab/1/KkgNTaO8Ej0mKs7zWZXNjTZ6ja4.roa
Signing time: Sun 01 Jan 2023 14:35:01 +0000
ROA not before: Sun 01 Jan 2023 14:35:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50140
IP address blocks: 193.104.145.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:c1:e5:ad:bc:8a:53:4e:10:0c:02:63:98:d3:5c:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=852ece9c9a324d45c35f9559f329d8869dab53ba
Validity
Not Before: Jan 1 14:35:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2a480d4da3bc123d262acef35995cd8d367a8dae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:73:5d:bc:52:11:6b:11:c3:3c:96:59:c3:91:
ba:75:1b:92:f5:71:f0:9b:dd:1c:0f:71:a5:a3:30:
f5:b4:e5:2b:ce:ef:75:f4:c4:c0:d3:41:40:ac:f7:
0f:55:1c:1b:52:be:f9:09:33:09:2b:ca:ed:93:84:
c4:7a:89:9c:64:0c:f7:ab:1f:34:fc:de:70:e1:54:
68:7d:60:08:04:e6:e5:96:30:b6:5e:f0:92:46:2f:
b2:1a:5c:5c:ee:3d:73:b3:33:02:6d:5b:62:6e:e2:
d6:c9:25:9a:1a:97:4a:30:2c:1a:06:a5:b4:a8:69:
4f:9d:f0:96:2a:38:20:45:31:6e:a9:71:61:e6:08:
71:df:62:d4:46:0d:2d:b2:e9:21:de:a3:8a:44:67:
a4:c7:6c:98:55:bb:ad:52:ca:01:06:a4:20:46:55:
13:4a:58:b3:c7:a5:21:90:5e:54:18:6b:85:64:65:
18:fe:84:74:fa:6f:35:9e:25:0a:24:04:31:8d:2d:
54:93:c2:77:c2:7c:6d:a4:bd:7e:67:8e:a4:e6:fa:
c7:b8:da:9c:22:28:18:bc:c3:73:69:fe:ba:22:be:
ad:2d:5b:e8:4a:49:93:ff:ce:5f:38:84:a3:d4:8d:
16:4c:5a:b4:e8:35:3c:ab:d9:f7:b2:4e:c0:f4:92:
58:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:48:0D:4D:A3:BC:12:3D:26:2A:CE:F3:59:95:CD:8D:36:7A:8D:AE
X509v3 Authority Key Identifier:
keyid:85:2E:CE:9C:9A:32:4D:45:C3:5F:95:59:F3:29:D8:86:9D:AB:53:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hS7OnJoyTUXDX5VZ8ynYhp2rU7o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/d3cce6-b47b-4d06-a30f-eb2411d212ab/1/KkgNTaO8Ej0mKs7zWZXNjTZ6ja4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/d3cce6-b47b-4d06-a30f-eb2411d212ab/1/hS7OnJoyTUXDX5VZ8ynYhp2rU7o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.104.145.0/24
Signature Algorithm: sha256WithRSAEncryption
21:4d:ea:b8:8b:61:4a:f1:b5:1e:97:4d:37:cc:a3:ed:e3:43:
42:d3:d6:61:e0:b6:a8:c4:00:9c:05:fd:17:2e:fc:6e:97:5a:
94:e5:11:cd:5e:1f:6e:f0:d0:37:90:9d:c8:bb:20:cb:7d:7a:
79:a0:e0:a2:e0:e2:91:45:3f:7b:a5:a0:3c:f2:92:82:d3:63:
04:b8:cc:64:8a:d3:e3:18:5d:32:61:24:b2:cf:61:c6:28:cb:
c0:3e:a6:6d:aa:7d:3a:0a:b5:89:15:a0:33:1b:aa:e4:45:c9:
7b:77:e8:11:98:91:8c:84:52:6e:bb:5b:0f:48:9f:5d:61:fc:
2d:a7:59:b4:67:09:51:bf:a7:e2:e8:e4:77:ed:40:07:77:86:
cc:c5:77:88:38:ce:4e:92:23:c7:dd:89:08:f3:66:15:4e:f4:
e6:e5:69:ac:32:49:14:d6:c4:09:37:04:0c:50:4c:9c:c1:fd:
20:1f:65:78:8b:3b:86:42:02:2c:34:76:3f:a1:2d:27:d1:a9:
95:4d:83:81:73:f3:79:52:18:0a:8f:9a:5f:11:05:35:2e:56:
6e:47:a9:a8:99:12:11:bb:10:e1:92:ec:b7:43:9d:9a:9e:5c:
e9:d2:ba:12:27:36:de:b0:6c:7e:46:b0:6e:38:2e:e6:69:35:
7e:e8:42:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 10:52:59 2025 by rpki-client