Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/5f93a4-9340-4ea9-9a80-8a099be0899b/1/dMq3hQA-1OhwYi7asAHLT1Encd4.roa
File: dMq3hQA-1OhwYi7asAHLT1Encd4.roa (raw, json)
Hash identifier: MauNgYy/TgO6EjHbLw90n4YonHQuFN9v3e2gcP2dLBU=
Subject key identifier: 74:CA:B7:85:00:3E:D4:E8:70:62:2E:DA:B0:01:CB:4F:51:27:71:DE
Certificate issuer: /CN=3c7d334181cc6a3553f758b7b70e370f2d8b1c0a
Certificate serial: 4EA7F1
Authority key identifier: 3C:7D:33:41:81:CC:6A:35:53:F7:58:B7:B7:0E:37:0F:2D:8B:1C:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PH0zQYHMajVT91i3tw43Dy2LHAo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/5f93a4-9340-4ea9-9a80-8a099be0899b/1/dMq3hQA-1OhwYi7asAHLT1Encd4.roa
Signing time: Wed 27 Apr 2022 06:20:24 +0000
ROA not before: Wed 27 Apr 2022 06:20:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 5089
IP address blocks: 193.203.127.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5154801 (0x4ea7f1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3c7d334181cc6a3553f758b7b70e370f2d8b1c0a
Validity
Not Before: Apr 27 06:20:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=74cab785003ed4e870622edab001cb4f512771de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:67:a7:af:93:d0:b1:d7:12:f1:36:77:49:ae:
28:fb:b7:23:45:7b:7e:87:2b:36:ab:63:2b:1e:a2:
73:15:b6:f3:04:cd:ea:10:e6:1c:a0:d1:e7:03:5e:
03:1b:2a:3a:78:8a:e9:8a:58:e3:67:1b:73:b0:19:
57:9b:2a:7b:b1:73:fb:a6:df:b3:38:c2:f7:2c:c7:
74:2f:4b:cc:b2:a3:1c:53:bd:42:cf:2c:14:95:86:
54:2e:3f:ae:ff:fc:46:55:e1:75:5f:f7:9a:16:6a:
1a:e0:70:1c:86:6b:c4:bc:e2:6d:6f:00:5d:92:9c:
0f:ba:59:7e:eb:32:71:e1:f8:fd:08:58:f0:1b:c0:
4d:30:04:2a:64:a8:3e:ab:27:2a:d4:a5:bd:98:28:
c8:8f:ab:81:fc:e3:c3:1c:a2:65:c1:78:fd:23:a7:
92:e8:0d:0e:c4:62:0c:90:46:63:67:56:c5:3b:89:
b0:ed:83:4f:5c:0c:3d:13:94:30:3e:53:0b:1b:d3:
b3:e4:48:5e:1f:c6:f2:cd:ae:d1:50:d5:3a:ef:82:
06:36:57:86:02:fb:ed:47:16:d3:1f:15:2f:cf:59:
f6:ac:00:ef:c7:58:4e:a3:58:ef:08:7f:6e:c4:f3:
c6:12:fb:32:7d:04:c0:bf:64:ee:55:c3:eb:16:1e:
c4:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:CA:B7:85:00:3E:D4:E8:70:62:2E:DA:B0:01:CB:4F:51:27:71:DE
X509v3 Authority Key Identifier:
keyid:3C:7D:33:41:81:CC:6A:35:53:F7:58:B7:B7:0E:37:0F:2D:8B:1C:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PH0zQYHMajVT91i3tw43Dy2LHAo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/5f93a4-9340-4ea9-9a80-8a099be0899b/1/dMq3hQA-1OhwYi7asAHLT1Encd4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/5f93a4-9340-4ea9-9a80-8a099be0899b/1/PH0zQYHMajVT91i3tw43Dy2LHAo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.203.127.0/24
Signature Algorithm: sha256WithRSAEncryption
22:58:12:6d:4b:d6:84:2e:f8:4b:87:32:0e:fe:a7:46:fc:c8:
cf:2c:31:57:b9:85:83:79:38:41:97:85:10:cc:1b:82:84:21:
f0:6c:04:86:37:8f:10:6b:51:78:e1:60:a3:54:83:c3:61:5b:
8d:45:fe:48:45:f6:b2:9c:f9:8c:aa:32:9c:3d:bb:13:e3:a8:
60:06:83:6e:63:45:06:08:de:d4:2b:c1:83:51:f9:cb:12:35:
a3:28:29:8a:1c:5b:82:bd:b3:f8:74:4e:b7:46:b8:89:da:cb:
05:9e:77:7b:1c:72:1e:15:b9:2c:3e:92:0a:08:31:eb:a8:b0:
a4:0d:e5:45:05:6f:db:9e:e5:6d:87:00:ab:03:67:43:cb:99:
65:ec:15:5f:1f:6b:43:af:a9:61:54:99:93:c3:78:34:cf:d4:
19:bc:1d:cd:cd:94:96:c7:70:b1:60:f6:11:b1:6f:f9:8c:24:
4e:4b:02:c7:2d:37:27:bd:cd:0c:5a:5c:1c:2b:73:1a:31:c0:
dd:fd:5f:d7:c4:9e:18:f9:e2:6e:33:f4:9e:6b:10:af:78:8a:
99:75:54:24:15:4b:2c:99:ee:07:2c:99:28:f4:72:f3:05:e1:
8d:77:88:77:cc:7d:31:20:0b:68:6a:77:f8:22:f7:01:45:c2:
68:8e:82:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 20:18:09 2025 by rpki-client