Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/624220-c076-4a1d-aefb-b7f5d4395cc0/1/xXqtZaQE8p1BJ-LrGDHK3ctGl88.roa
File: xXqtZaQE8p1BJ-LrGDHK3ctGl88.roa (raw, json)
Hash identifier: 19HlQM5dbXIMn5dc2AbBJAmDmCjDbQENEnPoWF/ZUJA=
Subject key identifier: C5:7A:AD:65:A4:04:F2:9D:41:27:E2:EB:18:31:CA:DD:CB:46:97:CF
Certificate issuer: /CN=9c329f3331f5343f290eb4a41f16c4363a282c90
Certificate serial: 019427B525F7CBCBA9BE50BF3983F76FB86A
Authority key identifier: 9C:32:9F:33:31:F5:34:3F:29:0E:B4:A4:1F:16:C4:36:3A:28:2C:90
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nDKfMzH1ND8pDrSkHxbENjooLJA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/624220-c076-4a1d-aefb-b7f5d4395cc0/1/xXqtZaQE8p1BJ-LrGDHK3ctGl88.roa
Signing time: Thu 02 Jan 2025 15:49:30 +0000
ROA not before: Thu 02 Jan 2025 15:49:30 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 41992
IP address blocks: 193.34.152.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:b5:25:f7:cb:cb:a9:be:50:bf:39:83:f7:6f:b8:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9c329f3331f5343f290eb4a41f16c4363a282c90
Validity
Not Before: Jan 2 15:49:30 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=c57aad65a404f29d4127e2eb1831caddcb4697cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:67:bf:bb:67:da:5c:98:ea:0e:45:36:ff:55:
93:c2:dd:9c:03:c9:1c:56:30:24:9b:e5:b5:ae:e0:
5e:ac:22:74:16:8d:33:76:78:0e:e4:f8:58:08:12:
8f:e3:b4:75:fe:d6:a1:8c:fd:b0:c7:91:9e:a9:35:
b6:47:9e:80:01:a4:75:f1:0a:50:2c:85:91:6e:bf:
1f:95:7b:09:1e:08:79:41:1b:84:0d:82:c2:cf:ef:
70:f3:da:80:35:00:6b:45:26:be:a9:c6:a0:f8:96:
fd:60:c9:35:fe:4f:1b:57:08:4d:9b:a9:8d:b4:4d:
f4:9c:33:ff:5d:29:96:39:24:85:61:2d:7c:a4:54:
2a:0d:9d:62:ac:da:13:85:8c:88:97:18:86:58:31:
99:17:14:74:0e:83:ce:23:d7:2f:8b:86:1e:65:eb:
5d:1c:55:88:71:f9:bd:28:fd:57:73:ea:d6:c5:73:
47:65:21:4b:06:52:95:0f:7e:4f:48:15:8c:da:a7:
0a:74:83:de:23:72:da:ef:54:3f:0c:54:24:9a:b7:
71:62:01:d6:a2:0c:ec:1b:a2:59:d8:02:96:bd:19:
44:a4:96:ce:46:2d:37:2a:dd:d1:55:8c:ce:2f:43:
1a:e6:50:dd:c8:aa:20:49:8f:47:c5:97:88:7e:e2:
6e:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:7A:AD:65:A4:04:F2:9D:41:27:E2:EB:18:31:CA:DD:CB:46:97:CF
X509v3 Authority Key Identifier:
keyid:9C:32:9F:33:31:F5:34:3F:29:0E:B4:A4:1F:16:C4:36:3A:28:2C:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nDKfMzH1ND8pDrSkHxbENjooLJA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/624220-c076-4a1d-aefb-b7f5d4395cc0/1/xXqtZaQE8p1BJ-LrGDHK3ctGl88.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/624220-c076-4a1d-aefb-b7f5d4395cc0/1/nDKfMzH1ND8pDrSkHxbENjooLJA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.34.152.0/23
Signature Algorithm: sha256WithRSAEncryption
8e:da:69:fa:b0:3d:fe:0a:11:02:90:fc:dc:32:e1:18:d4:36:
f7:6f:20:be:33:1d:5c:f0:e1:54:ba:b1:45:5a:68:6a:1b:5f:
05:38:54:24:99:30:53:58:39:f1:91:f1:57:8b:9a:f7:2e:12:
6d:6e:14:f7:a1:53:23:93:8b:c1:4e:ed:a6:25:18:d8:b5:c2:
9f:6e:8f:eb:22:3c:aa:9c:43:bb:32:61:8f:49:1a:b3:54:8c:
73:5b:ab:98:af:b1:ef:34:af:3f:e1:af:a6:fc:62:a0:fa:e9:
a0:24:a4:f6:68:13:6b:7f:59:c3:1b:fb:fb:38:d6:d9:c5:af:
05:61:84:29:72:84:ea:71:bb:6b:fc:08:1f:f4:5b:df:a5:d7:
dc:31:ae:56:53:cc:47:f6:2e:8e:ab:5a:39:9c:7f:8c:15:99:
c5:b8:5a:c1:25:53:f2:7d:14:29:d9:67:f3:b9:12:6a:ec:64:
95:40:86:a9:d3:18:e8:c6:97:c1:56:0a:ff:67:93:c8:72:91:
89:db:3e:c8:86:60:1f:51:34:d7:f7:39:ad:9f:dd:f1:20:88:
05:96:71:47:a1:74:64:88:63:c8:d4:00:7b:8e:3e:bf:3f:29:
eb:d5:ee:58:35:57:07:53:7c:bc:44:d2:6a:4c:df:8f:89:39:
8e:b3:aa:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 00:29:31 2025 by rpki-client