Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/a3bcad-1d98-48b4-afaf-d2c3b4c09ea1/1/w5RgxPZJeCHJ32aZdxHuHtsDhQo.roa
File: w5RgxPZJeCHJ32aZdxHuHtsDhQo.roa (raw, json)
Hash identifier: Uc4RlDE0xm/vlOwUXxqVD6EiTzssOmMkcQ4YcA/6FLE=
Subject key identifier: C3:94:60:C4:F6:49:78:21:C9:DF:66:99:77:11:EE:1E:DB:03:85:0A
Certificate issuer: /CN=33533d9eef5a8128dc435d02f2233280348dc2b6
Certificate serial: 019426D96289A89BE8ADBF63B7E315C5C836
Authority key identifier: 33:53:3D:9E:EF:5A:81:28:DC:43:5D:02:F2:23:32:80:34:8D:C2:B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/M1M9nu9agSjcQ10C8iMygDSNwrY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/a3bcad-1d98-48b4-afaf-d2c3b4c09ea1/1/w5RgxPZJeCHJ32aZdxHuHtsDhQo.roa
Signing time: Thu 02 Jan 2025 11:49:28 +0000
ROA not before: Thu 02 Jan 2025 11:49:28 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 16313
IP address blocks: 193.31.160.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:d9:62:89:a8:9b:e8:ad:bf:63:b7:e3:15:c5:c8:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=33533d9eef5a8128dc435d02f2233280348dc2b6
Validity
Not Before: Jan 2 11:49:28 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=c39460c4f6497821c9df66997711ee1edb03850a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:4b:2f:3a:36:9d:81:82:ce:67:c2:cd:ec:67:
1d:ea:ac:be:f2:75:cf:de:ca:94:3f:3a:13:ea:0c:
3d:2e:b8:58:e9:0b:ef:29:b5:7e:70:62:f3:54:9d:
b9:e0:fd:1b:fb:61:85:04:83:7f:c3:35:d7:61:ce:
d3:12:a9:0b:64:87:20:7c:7f:e6:7b:ae:6b:db:0b:
0d:17:28:b8:b7:61:55:cf:6e:30:dc:7c:61:21:3e:
97:f3:67:82:d0:a8:37:82:b3:b3:27:57:48:d9:b9:
2f:07:11:7c:a4:78:50:54:75:79:a7:bc:a0:99:1a:
f3:b9:88:5e:37:9d:8b:ed:2f:f3:c2:f1:a3:ff:36:
ee:fa:ef:95:b6:36:64:97:41:c3:45:c6:78:5f:84:
1d:d4:ce:dc:38:e7:9b:06:ef:3f:1e:9b:ab:ec:76:
cb:de:4c:df:52:22:47:f0:f2:6c:30:4b:30:c4:af:
e9:b9:e8:12:9b:3f:f7:dd:88:43:a7:14:ec:60:33:
4b:64:21:fe:4a:ff:0d:2a:32:8a:1f:4a:18:6b:b8:
f9:2f:ac:6f:c6:af:dd:bf:b1:a6:67:7f:d5:e0:ce:
ff:9c:c2:95:ba:56:bd:c0:ba:87:f2:48:21:51:81:
86:9c:e8:5e:f1:35:c7:b0:56:fc:83:a1:70:ed:5a:
c1:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:94:60:C4:F6:49:78:21:C9:DF:66:99:77:11:EE:1E:DB:03:85:0A
X509v3 Authority Key Identifier:
keyid:33:53:3D:9E:EF:5A:81:28:DC:43:5D:02:F2:23:32:80:34:8D:C2:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/M1M9nu9agSjcQ10C8iMygDSNwrY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/a3bcad-1d98-48b4-afaf-d2c3b4c09ea1/1/w5RgxPZJeCHJ32aZdxHuHtsDhQo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/a3bcad-1d98-48b4-afaf-d2c3b4c09ea1/1/M1M9nu9agSjcQ10C8iMygDSNwrY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.31.160.0/19
Signature Algorithm: sha256WithRSAEncryption
59:ae:14:e6:76:0d:bf:5a:e9:ac:56:0d:96:d4:cf:5e:32:8c:
69:b0:7c:70:b6:36:e2:e8:f7:d2:cc:ad:2f:1b:2b:01:62:7b:
c5:8c:4b:92:59:e2:b0:10:5e:84:67:00:0a:60:0b:3e:2a:6e:
10:5e:a1:8c:f2:b0:a2:c6:33:19:51:c0:d9:de:c0:51:5a:31:
d3:a9:d0:21:45:2e:62:71:65:b3:9e:44:cb:f5:9d:a8:09:6a:
cf:d6:08:97:a3:01:78:c8:c9:02:a7:f1:cc:a4:1c:9b:2f:dd:
d8:4a:d6:3c:00:8b:6a:6f:dd:66:10:c1:7c:ec:68:79:91:b0:
e3:77:cc:e7:41:62:68:8f:62:7e:19:ab:17:e4:2b:48:8d:1a:
08:77:28:dc:f6:43:c8:31:28:d9:f8:47:63:f1:59:6f:60:fe:
78:11:b0:93:e6:8b:44:6d:f7:ef:e6:39:c8:e3:23:48:5f:0c:
2b:11:ce:ee:c5:61:e8:61:93:a3:44:0f:b4:65:f5:9d:4f:bb:
e5:14:43:3d:d4:67:b6:b1:e3:9e:2a:67:ad:37:a6:26:1c:b2:
3b:e4:48:fe:af:28:aa:47:70:86:80:24:45:5f:96:8e:23:ec:
d4:76:1d:88:60:71:ba:a1:6d:35:c6:b8:4a:62:b2:f7:f3:7b:
8b:e5:cd:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Feb 21 12:42:18 2025 by rpki-client