Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/316f15-bcb5-422c-92a0-826a48eefd96/1/rDLUksu5RJZHpovJcJfARGodJyk.roa
File: rDLUksu5RJZHpovJcJfARGodJyk.roa (raw, json)
Hash identifier: 6LsaGYClie7jwTmpMZAxkMISVs9EUqwDFuEv8m5cWNA=
Subject key identifier: AC:32:D4:92:CB:B9:44:96:47:A6:8B:C9:70:97:C0:44:6A:1D:27:29
Certificate issuer: /CN=04e32c43f969ba417ba36d0721b1d9d50624c40f
Certificate serial: 019428269381C40B58D31D101C8FA09EE21B
Authority key identifier: 04:E3:2C:43:F9:69:BA:41:7B:A3:6D:07:21:B1:D9:D5:06:24:C4:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BOMsQ_lpukF7o20HIbHZ1QYkxA8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/316f15-bcb5-422c-92a0-826a48eefd96/1/rDLUksu5RJZHpovJcJfARGodJyk.roa
Signing time: Thu 02 Jan 2025 17:53:24 +0000
ROA not before: Thu 02 Jan 2025 17:53:24 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 61317
IP address blocks: 193.36.226.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:28:26:93:81:c4:0b:58:d3:1d:10:1c:8f:a0:9e:e2:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04e32c43f969ba417ba36d0721b1d9d50624c40f
Validity
Not Before: Jan 2 17:53:24 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ac32d492cbb9449647a68bc97097c0446a1d2729
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:74:c7:86:e9:2d:ea:8b:36:6d:9f:ef:6f:b1:
e5:fd:de:f0:78:5d:9d:e2:97:ac:22:75:0b:a5:46:
46:8f:32:4c:59:94:b4:1f:12:59:09:5d:6d:d5:b0:
6a:96:dc:51:a9:ba:1a:4f:d7:24:f6:50:75:38:3d:
01:62:29:2e:3a:f8:86:ec:38:50:60:78:60:72:34:
73:08:4a:73:84:2e:ca:59:89:b7:2c:25:0e:f0:15:
ff:11:28:5a:9f:2f:60:5e:1a:15:27:a4:13:c4:8d:
a1:19:90:e1:19:a9:21:1b:94:d5:7e:6f:ec:57:21:
5d:78:23:9d:e2:d3:ab:41:c1:41:b2:2c:9e:24:9b:
23:92:39:a8:ae:21:9d:6e:41:b0:3a:f2:9a:fb:42:
ee:c3:bb:72:87:b2:2d:dd:5d:04:15:6d:24:77:c7:
14:c9:0b:45:d1:00:dd:67:0b:db:8b:22:e9:b2:07:
73:a8:eb:b6:ce:1a:bd:9c:92:6e:4a:6c:7c:96:7b:
2b:5a:cf:2c:67:a2:be:c7:ba:ac:4d:2d:4e:42:97:
b0:43:75:b1:01:e4:4f:7e:0f:00:3b:0e:9b:bc:e3:
2a:2b:a9:9f:ce:56:91:50:2d:44:96:1e:41:92:c6:
82:57:a2:8b:a2:bb:2f:1e:65:d7:1c:b6:a5:13:05:
a2:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:32:D4:92:CB:B9:44:96:47:A6:8B:C9:70:97:C0:44:6A:1D:27:29
X509v3 Authority Key Identifier:
keyid:04:E3:2C:43:F9:69:BA:41:7B:A3:6D:07:21:B1:D9:D5:06:24:C4:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BOMsQ_lpukF7o20HIbHZ1QYkxA8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/316f15-bcb5-422c-92a0-826a48eefd96/1/rDLUksu5RJZHpovJcJfARGodJyk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/316f15-bcb5-422c-92a0-826a48eefd96/1/BOMsQ_lpukF7o20HIbHZ1QYkxA8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.36.226.0/24
Signature Algorithm: sha256WithRSAEncryption
43:76:d1:eb:40:4f:67:83:ee:df:bd:47:32:d5:1f:9b:e1:76:
69:26:a0:a4:6d:c5:24:4a:c2:c7:ca:fe:c4:44:c5:83:6f:1f:
13:1a:f2:72:0c:5d:32:d7:90:cc:b4:3e:0e:4c:2d:d4:0d:fb:
62:17:20:ef:13:b3:34:82:29:2b:2b:c3:8d:ef:09:ac:78:5f:
8b:a8:98:a4:45:ed:5f:54:38:07:86:0b:e3:3c:ed:f0:fe:52:
22:ac:b7:b6:7c:73:75:b0:a8:54:0b:3e:d0:bb:d4:2e:46:eb:
14:00:30:57:f4:97:fc:57:2c:35:2e:9a:18:b8:6a:b0:24:72:
46:17:74:c2:2b:98:30:d5:65:d8:29:97:2f:7d:23:a2:9e:05:
51:c4:4e:f3:ad:b0:7d:6b:fd:c0:75:00:37:e9:3f:4e:3b:92:
f5:78:97:ba:0b:eb:e8:a7:7a:75:83:2d:da:29:08:9d:ab:1e:
16:22:21:ff:a8:3a:89:f1:21:ea:30:92:b8:e0:20:39:35:13:
f5:11:70:30:ff:61:b4:da:2c:63:ce:45:4b:40:ec:cb:53:fc:
60:87:7d:2d:2d:48:25:cd:58:8f:ff:62:17:ee:b7:ce:65:d2:
78:95:b1:0b:df:b7:61:4d:39:73:37:84:37:17:46:22:b8:6a:
84:80:a3:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 19:08:17 2025 by rpki-client