Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/5423c1-871f-461c-9970-4db3f188f5b6/1/o33nzDd8Ud4SHUROSKPBqYvsK3I.roa
File: o33nzDd8Ud4SHUROSKPBqYvsK3I.roa (raw, json)
Hash identifier: 0uR5NTZUtirBbDZZiV+z6XYeVClsGx8GOL6f3pU8rh0=
Subject key identifier: A3:7D:E7:CC:37:7C:51:DE:12:1D:44:4E:48:A3:C1:A9:8B:EC:2B:72
Certificate issuer: /CN=137837d5d17969d2bc0d44e5634a94bf7d34e90b
Certificate serial: 019423690AC9460C16D39C3C8133BA36504D
Authority key identifier: 13:78:37:D5:D1:79:69:D2:BC:0D:44:E5:63:4A:94:BF:7D:34:E9:0B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/E3g31dF5adK8DUTlY0qUv3006Qs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/5423c1-871f-461c-9970-4db3f188f5b6/1/o33nzDd8Ud4SHUROSKPBqYvsK3I.roa
Signing time: Wed 01 Jan 2025 19:47:54 +0000
ROA not before: Wed 01 Jan 2025 19:47:54 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 207286
IP address blocks: 185.80.29.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:69:0a:c9:46:0c:16:d3:9c:3c:81:33:ba:36:50:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=137837d5d17969d2bc0d44e5634a94bf7d34e90b
Validity
Not Before: Jan 1 19:47:54 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=a37de7cc377c51de121d444e48a3c1a98bec2b72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:5c:93:47:e6:32:d1:b5:9b:1b:10:9c:09:6a:
b5:de:14:b3:b4:1f:63:a3:3c:8b:02:bb:e2:d4:dd:
4c:40:0b:3e:86:bc:d1:a7:ae:11:de:9f:73:25:b3:
2b:e8:bc:c9:35:e6:be:82:72:1c:85:8a:1d:ff:1b:
58:80:c0:51:b4:43:e3:ac:bf:59:10:f4:e1:bc:9e:
d0:72:15:a4:1e:2e:6f:17:41:ec:c6:dc:79:13:04:
3b:50:48:fd:9a:b3:a0:51:54:eb:9b:6d:a9:39:7a:
47:4e:fc:5a:60:c8:9e:59:1e:8b:70:65:8f:99:66:
2d:cd:bd:08:72:20:f9:0b:4b:67:e6:94:9b:e8:ea:
33:ba:38:ff:50:d6:30:86:4c:13:0b:9b:a7:73:ca:
a6:ae:8d:70:45:fb:e1:6b:3a:eb:d8:c9:1a:9b:eb:
ca:3a:04:29:1d:f2:ae:77:64:6e:9e:73:33:5e:74:
78:86:82:b6:7d:94:a9:5a:84:a0:00:0c:b0:f9:dc:
03:4f:12:22:47:e2:f5:cd:eb:54:44:e2:2d:75:eb:
8a:0e:14:5a:25:62:53:a1:d3:eb:70:5e:99:15:03:
48:d5:aa:37:8a:7a:93:58:26:99:a0:a3:fe:dd:93:
73:4c:45:2d:3d:02:99:7e:57:22:03:b7:b6:c5:6c:
ac:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:7D:E7:CC:37:7C:51:DE:12:1D:44:4E:48:A3:C1:A9:8B:EC:2B:72
X509v3 Authority Key Identifier:
keyid:13:78:37:D5:D1:79:69:D2:BC:0D:44:E5:63:4A:94:BF:7D:34:E9:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/E3g31dF5adK8DUTlY0qUv3006Qs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/5423c1-871f-461c-9970-4db3f188f5b6/1/o33nzDd8Ud4SHUROSKPBqYvsK3I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/5423c1-871f-461c-9970-4db3f188f5b6/1/E3g31dF5adK8DUTlY0qUv3006Qs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.80.29.0/24
Signature Algorithm: sha256WithRSAEncryption
30:6a:b5:8e:5e:c7:fb:c3:8b:3f:39:23:97:62:0f:48:fe:8c:
a7:79:87:12:b2:81:8c:1c:b2:9d:b3:07:47:b4:e9:c5:06:2b:
3e:c3:d0:8e:47:d2:3f:4a:cf:9f:44:c0:cc:40:3f:89:15:eb:
f6:77:0f:7a:91:32:46:ea:5a:d0:08:b5:62:5c:25:7e:ca:40:
b5:9c:b8:58:1c:00:00:06:f0:ef:7b:13:70:2e:72:d0:16:6d:
ce:14:bf:09:f8:bb:70:2d:b9:02:38:a9:a1:6e:44:99:c4:6e:
e0:08:f4:5a:ad:1a:9b:78:02:56:5e:4d:b4:69:e2:55:26:45:
fe:fd:e4:a4:73:04:a1:2d:33:f0:48:7c:d4:e1:99:20:d8:20:
37:d8:37:1e:91:09:d0:55:e6:b2:e7:1c:d1:0b:4a:b6:21:f4:
e7:98:b8:59:9a:ef:ca:c0:7c:1e:49:1c:e9:1b:a7:6a:2c:c2:
08:6c:b5:e2:64:ce:15:34:06:ff:9e:e8:c2:c5:2e:13:b8:11:
cb:99:d5:7d:61:71:37:12:cc:81:8c:24:54:c8:72:59:b9:2a:
27:b8:fe:7c:82:9d:54:e7:b0:d7:39:cd:20:37:5f:ed:97:ff:
15:9c:9d:23:17:31:0d:48:b3:da:bf:e4:4a:ba:e9:e7:9d:32:
ba:6d:43:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 02:36:30 2025 by rpki-client