Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/1cb8ca-5993-4d17-a61e-ee7328adcc7c/1/KXzpTdTxCSbGho36fxF_GlyitdE.roa
File: KXzpTdTxCSbGho36fxF_GlyitdE.roa (raw, json)
Hash identifier: ja4O1EdxMCJxKPr1B3Qa1PCD1Bl7ADRKIl+M/D2uNSI=
Subject key identifier: 29:7C:E9:4D:D4:F1:09:26:C6:86:8D:FA:7F:11:7F:1A:5C:A2:B5:D1
Certificate issuer: /CN=de01c443831cf930b7478708d76a3cf44d89a162
Certificate serial: 01867C5FED186A5F854AC619F3C66EE401F1
Authority key identifier: DE:01:C4:43:83:1C:F9:30:B7:47:87:08:D7:6A:3C:F4:4D:89:A1:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3gHEQ4Mc-TC3R4cI12o89E2JoWI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/1cb8ca-5993-4d17-a61e-ee7328adcc7c/1/KXzpTdTxCSbGho36fxF_GlyitdE.roa
Signing time: Thu 23 Feb 2023 03:45:06 +0000
ROA not before: Thu 23 Feb 2023 03:45:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202391
IP address blocks: 185.42.24.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:7c:5f:ed:18:6a:5f:85:4a:c6:19:f3:c6:6e:e4:01:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de01c443831cf930b7478708d76a3cf44d89a162
Validity
Not Before: Feb 23 03:45:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=297ce94dd4f10926c6868dfa7f117f1a5ca2b5d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:39:6d:69:71:16:5b:34:5c:79:5f:10:8b:e6:
88:dc:09:71:de:3a:f4:e9:2b:19:02:47:c8:d9:87:
1c:02:65:ff:f9:9e:61:c8:e3:0e:d6:e6:34:8a:4a:
84:c8:4c:fe:70:5a:5f:b6:d7:46:b6:2f:aa:09:88:
e1:92:5e:11:10:67:85:1c:f1:d1:f9:e9:e3:53:56:
5c:e7:49:14:87:6b:7e:30:51:47:f3:24:8e:ab:23:
1b:01:b0:b3:69:d1:45:90:52:e2:c5:0b:9d:66:ba:
02:40:31:96:3c:d4:fc:7f:61:1d:fd:47:06:19:82:
e5:54:49:04:1d:bf:e7:46:6d:10:55:7c:fc:5a:c2:
8a:98:db:0f:54:bc:ee:d7:f3:c7:87:4f:8e:32:d2:
cf:96:88:1a:24:ef:ff:aa:cd:a2:1d:8a:11:a7:98:
d3:45:ab:3e:1c:68:f5:e6:32:06:76:08:cd:da:37:
e8:0b:99:9f:7e:e1:d0:9f:78:95:f9:e5:fa:dd:13:
26:53:ef:02:cb:00:7e:1f:6e:3e:62:da:0b:02:6d:
2a:eb:36:ee:f5:da:dd:4c:81:fb:7b:51:66:6c:31:
fe:e9:5c:2a:e4:76:7f:9a:d0:38:3d:f0:3a:9e:f6:
74:86:8a:7c:de:14:99:9a:2c:92:a3:f7:c0:13:51:
cc:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:7C:E9:4D:D4:F1:09:26:C6:86:8D:FA:7F:11:7F:1A:5C:A2:B5:D1
X509v3 Authority Key Identifier:
keyid:DE:01:C4:43:83:1C:F9:30:B7:47:87:08:D7:6A:3C:F4:4D:89:A1:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3gHEQ4Mc-TC3R4cI12o89E2JoWI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/1cb8ca-5993-4d17-a61e-ee7328adcc7c/1/KXzpTdTxCSbGho36fxF_GlyitdE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/1cb8ca-5993-4d17-a61e-ee7328adcc7c/1/3gHEQ4Mc-TC3R4cI12o89E2JoWI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.42.24.0/24
Signature Algorithm: sha256WithRSAEncryption
59:18:a7:22:14:70:9f:79:0f:97:ec:a5:df:c6:0b:45:a6:37:
7c:af:b6:34:7a:63:bc:9b:61:bb:27:ff:b5:9f:85:76:3f:ed:
ba:7a:36:39:d0:a4:2c:50:fc:a1:70:4d:6a:0d:bc:a3:0c:b9:
74:15:59:3a:41:c0:ff:b9:63:49:53:b5:98:fb:22:e9:36:8c:
df:8e:a4:59:f8:0b:12:a0:56:8e:51:b3:3e:bc:53:70:27:a7:
8d:6a:4d:f3:aa:b7:5b:92:cc:40:1d:aa:fe:59:9f:ac:20:06:
21:6e:eb:c2:6a:2f:e2:e5:82:c6:b9:92:21:02:f3:ad:75:e0:
cc:d9:cf:f9:c4:d2:c3:26:39:27:c1:37:89:67:9a:05:95:26:
77:3d:69:69:99:20:68:18:5b:57:de:33:2d:c9:71:35:a0:ae:
04:c5:4b:33:1f:e5:ff:39:66:34:57:16:84:1d:9a:39:76:aa:
74:b2:53:57:89:76:a1:c3:08:08:1d:69:8e:11:c3:6f:ea:d8:
26:3f:7b:ba:ea:df:83:39:52:39:fd:96:ad:39:d9:2b:96:b1:
f2:4b:9c:ca:9d:d0:42:2d:76:95:9a:be:3d:44:dd:af:1d:ea:
71:ad:71:cc:a3:1a:c8:20:50:34:e1:73:16:69:75:c4:21:a4:
b5:2b:2d:1a
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYZ8X+0Yal+FSsYZ88Zu5AHxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRlMDFjNDQzODMxY2Y5MzBiNzQ3ODcwOGQ3NmEzY2Y0NGQ4
OWExNjIwHhcNMjMwMjIzMDM0NTA2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyOTdjZTk0ZGQ0ZjEwOTI2YzY4NjhkZmE3ZjExN2YxYTVjYTJiNWQxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAojltaXEWWzRceV8Qi+aI3Alx3jr0
6SsZAkfI2YccAmX/+Z5hyOMO1uY0ikqEyEz+cFpfttdGti+qCYjhkl4REGeFHPHR
+enjU1Zc50kUh2t+MFFH8ySOqyMbAbCzadFFkFLixQudZroCQDGWPNT8f2Ed/UcG
GYLlVEkEHb/nRm0QVXz8WsKKmNsPVLzu1/PHh0+OMtLPlogaJO//qs2iHYoRp5jT
Ras+HGj15jIGdgjN2jfoC5mffuHQn3iV+eX63RMmU+8CywB+H24+YtoLAm0q6zbu
9drdTIH7e1FmbDH+6Vwq5HZ/mtA4PfA6nvZ0hop83hSZmiySo/fAE1HMywIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCl86U3U8QkmxoaN+n8RfxpcorXRMB8GA1UdIwQY
MBaAFN4BxEODHPkwt0eHCNdqPPRNiaFiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM2dIRVE0TWMtVEMzUjRjSTEybzg5RTJKb1dJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYy8xY2I4Y2EtNTk5My00ZDE3LWE2MWUt
ZWU3MzI4YWRjYzdjLzEvS1h6cFRkVHhDU2JHaG8zNmZ4Rl9HbHlpdGRFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zYy8xY2I4Y2EtNTk5My00ZDE3LWE2MWUtZWU3MzI4YWRjYzdj
LzEvM2dIRVE0TWMtVEMzUjRjSTEybzg5RTJKb1dJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuSoYMA0G
CSqGSIb3DQEBCwUAA4IBAQBZGKciFHCfeQ+X7KXfxgtFpjd8r7Y0emO8m2G7J/+1
n4V2P+26ejY50KQsUPyhcE1qDbyjDLl0FVk6QcD/uWNJU7WY+yLpNozfjqRZ+AsS
oFaOUbM+vFNwJ6eNak3zqrdbksxAHar+WZ+sIAYhbuvCai/i5YLGuZIhAvOtdeDM
2c/5xNLDJjknwTeJZ5oFlSZ3PWlpmSBoGFtX3jMtyXE1oK4ExUszH+X/OWY0VxaE
HZo5dqp0slNXiXahwwgIHWmOEcNv6tgmP3u66t+DOVI5/ZatOdkrlrHyS5zKndBC
LXaVmr49RN2vHepxrXHMoxrIIFA04XMWaXXEIaS1Ky0a
-----END CERTIFICATE-----
Generated at Thu Mar 13 02:52:51 2025 by rpki-client