Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/71c608-1cc2-4899-a5fa-846aaf0eb1ad/1/dr9TUWCMOOrZgw4ya4BHH6Fl9S4.roa
File: dr9TUWCMOOrZgw4ya4BHH6Fl9S4.roa (raw, json)
Hash identifier: MHmzUWCdf8/9JI0888l1CY7P5xnPYz06hMJxDs/OenM=
Subject key identifier: 76:BF:53:51:60:8C:38:EA:D9:83:0E:32:6B:80:47:1F:A1:65:F5:2E
Certificate issuer: /CN=2ee96208925d836f8d037d179980a83a1b0c1342
Certificate serial: 0194D6FD858AE21C06ECCCE35702FBCEA94E
Authority key identifier: 2E:E9:62:08:92:5D:83:6F:8D:03:7D:17:99:80:A8:3A:1B:0C:13:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LuliCJJdg2-NA30XmYCoOhsME0I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/71c608-1cc2-4899-a5fa-846aaf0eb1ad/1/dr9TUWCMOOrZgw4ya4BHH6Fl9S4.roa
Signing time: Wed 05 Feb 2025 16:42:06 +0000
ROA not before: Wed 05 Feb 2025 16:42:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 43824
IP address blocks: 193.30.96.0/24 maxlen: 24
193.30.97.0/24 maxlen: 24
193.30.98.0/24 maxlen: 24
193.30.99.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:d6:fd:85:8a:e2:1c:06:ec:cc:e3:57:02:fb:ce:a9:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ee96208925d836f8d037d179980a83a1b0c1342
Validity
Not Before: Feb 5 16:42:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=76bf5351608c38ead9830e326b80471fa165f52e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:ce:e3:f3:05:3b:e5:8f:68:da:76:83:98:42:
55:67:31:19:fc:f7:20:02:aa:d5:07:aa:0b:73:3f:
40:d4:90:94:16:47:c4:c3:78:6f:2d:ca:da:a9:bd:
08:52:59:aa:e9:14:40:62:bf:f1:c0:df:7f:12:b3:
56:aa:5d:ff:8c:cd:e6:6d:49:16:07:e5:68:57:86:
f0:66:33:23:29:37:b6:33:7a:3e:bf:11:4c:3d:2d:
30:22:86:b3:90:a4:2c:f3:97:4f:4d:5c:99:00:95:
46:9d:7b:a0:bf:8b:15:a5:53:9f:54:6e:37:8b:98:
34:e9:29:24:74:e0:5a:7b:98:c3:50:d8:63:3a:f8:
1f:d9:1d:c9:81:b8:a5:5a:47:46:70:95:c7:13:47:
79:8b:98:e8:2f:61:8a:86:ce:58:6c:e3:3d:3f:5e:
9e:41:63:98:91:29:40:de:10:ff:f2:53:2d:91:4d:
cd:6e:3c:9b:b5:f0:af:7b:b1:7d:fb:49:6a:5a:70:
56:03:ea:49:0d:12:2a:cf:8f:67:51:79:f2:c7:cc:
4a:3a:35:69:95:7d:e1:1e:6a:53:4c:b8:f0:0b:69:
17:7d:a9:98:f0:5e:fe:7a:5a:8e:41:07:28:3b:30:
5a:cd:a6:bd:33:4d:63:bb:0c:d6:ac:62:a0:25:ca:
41:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:BF:53:51:60:8C:38:EA:D9:83:0E:32:6B:80:47:1F:A1:65:F5:2E
X509v3 Authority Key Identifier:
keyid:2E:E9:62:08:92:5D:83:6F:8D:03:7D:17:99:80:A8:3A:1B:0C:13:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LuliCJJdg2-NA30XmYCoOhsME0I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/71c608-1cc2-4899-a5fa-846aaf0eb1ad/1/dr9TUWCMOOrZgw4ya4BHH6Fl9S4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/71c608-1cc2-4899-a5fa-846aaf0eb1ad/1/LuliCJJdg2-NA30XmYCoOhsME0I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.30.96.0/22
Signature Algorithm: sha256WithRSAEncryption
ba:53:e5:30:52:49:60:34:b2:24:a5:47:58:dd:5f:4c:94:8f:
26:b8:60:d1:fe:f3:c4:92:d7:94:d2:f0:5f:73:1c:ec:0c:d3:
93:bf:18:da:99:c3:1b:bb:9f:96:3d:bc:23:70:e4:4a:b2:d8:
7f:02:64:34:9f:f7:f1:e7:ac:5c:01:cf:b6:30:23:d0:51:c6:
74:0f:83:84:ca:94:bb:32:8a:a6:1e:fb:1f:42:5c:3e:86:98:
01:13:36:92:ec:af:80:d4:53:ac:7e:e8:fa:6b:62:d7:06:12:
df:a3:4d:5c:ed:c6:aa:09:20:36:b4:45:e1:d8:2c:00:db:71:
39:33:25:67:22:bd:8a:b1:5b:fe:15:a2:f0:64:ae:ea:c7:db:
f1:2a:ba:fe:00:1b:fe:3b:de:f6:d1:43:06:b0:65:eb:1e:41:
e4:7f:5c:3b:f1:f9:e7:5d:59:97:6c:9f:2f:9c:7c:12:fd:fd:
05:b0:9f:cf:b7:05:b4:f3:4b:53:c5:9b:3e:17:78:36:cf:2e:
40:ca:a7:aa:b8:85:ca:bd:87:4c:6c:a8:b9:df:8e:6e:6e:65:
8c:28:c6:a8:76:ca:07:7c:b7:8a:6d:a1:63:8b:ab:4d:a5:a6:
a3:1e:39:88:d2:db:a8:3a:fa:d1:64:ce:b0:af:1a:3a:99:a0:
9b:fa:a9:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 15:07:40 2025 by rpki-client