Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/938443-be9a-4f8b-8801-2c0fc6be1e57/1/NLCwkRuxMAVqIE4s2Awhm1yzmmc.roa
File: NLCwkRuxMAVqIE4s2Awhm1yzmmc.roa (raw, json)
Hash identifier: 7DV7f34yFMiHA1iSUlpq7Rg0BJ76/rrx0KnPa1dhIeQ=
Subject key identifier: 34:B0:B0:91:1B:B1:30:05:6A:20:4E:2C:D8:0C:21:9B:5C:B3:9A:67
Certificate issuer: /CN=1c0e216e5791e1b01da21bcaf330041ad72a7e6c
Certificate serial: 0194266A0A563248EFB247321198A733A244
Authority key identifier: 1C:0E:21:6E:57:91:E1:B0:1D:A2:1B:CA:F3:30:04:1A:D7:2A:7E:6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HA4hbleR4bAdohvK8zAEGtcqfmw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/938443-be9a-4f8b-8801-2c0fc6be1e57/1/NLCwkRuxMAVqIE4s2Awhm1yzmmc.roa
Signing time: Thu 02 Jan 2025 09:47:51 +0000
ROA not before: Thu 02 Jan 2025 09:47:51 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 1935
IP address blocks: 193.160.0.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:6a:0a:56:32:48:ef:b2:47:32:11:98:a7:33:a2:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c0e216e5791e1b01da21bcaf330041ad72a7e6c
Validity
Not Before: Jan 2 09:47:51 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=34b0b0911bb130056a204e2cd80c219b5cb39a67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:8c:cd:2f:0e:29:5c:49:75:ef:f4:c9:8a:dd:
39:fa:17:e6:28:27:5f:be:d0:10:ac:4a:d4:5f:3c:
8a:a1:d7:1b:68:f8:dc:87:57:ad:41:71:c8:b0:46:
ee:6d:da:f4:06:e8:cf:66:9b:0b:64:7f:20:41:6e:
c7:64:87:b4:49:be:f2:c5:4f:06:b0:54:07:3b:91:
76:f4:3b:fc:ee:21:0c:c0:2c:45:3b:6a:66:fd:f4:
f7:fd:2f:9e:df:67:1a:f9:c1:84:ce:48:3a:53:39:
18:f8:ef:3c:47:07:3d:67:3a:26:1b:63:9f:20:ec:
ad:59:20:4e:cb:c6:f4:21:4c:2c:ef:40:c8:f0:89:
73:46:9d:67:fa:ad:cd:17:d3:12:78:bb:09:9e:23:
30:bb:44:52:99:1c:e3:b7:dd:bd:c7:ea:0f:0c:f9:
6d:2b:84:a4:3d:fe:71:71:4e:49:eb:db:3f:54:10:
c8:f0:77:4b:f6:64:fb:b0:a0:fe:66:79:f1:59:ae:
df:f2:1c:9e:b9:6a:b3:0f:bf:ad:cf:a8:7e:84:59:
75:0e:b6:49:ec:65:7f:9f:21:04:c6:88:50:8a:eb:
a8:5b:4b:ad:0a:bc:5c:71:dc:50:25:75:8a:4d:97:
6a:7f:b6:09:b9:a0:72:86:c7:84:08:f9:9c:bf:b3:
df:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:B0:B0:91:1B:B1:30:05:6A:20:4E:2C:D8:0C:21:9B:5C:B3:9A:67
X509v3 Authority Key Identifier:
keyid:1C:0E:21:6E:57:91:E1:B0:1D:A2:1B:CA:F3:30:04:1A:D7:2A:7E:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HA4hbleR4bAdohvK8zAEGtcqfmw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/938443-be9a-4f8b-8801-2c0fc6be1e57/1/NLCwkRuxMAVqIE4s2Awhm1yzmmc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/938443-be9a-4f8b-8801-2c0fc6be1e57/1/HA4hbleR4bAdohvK8zAEGtcqfmw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.160.0.0/24
Signature Algorithm: sha256WithRSAEncryption
a3:74:b6:2c:74:54:26:73:31:00:0b:f7:8e:94:2f:73:00:3d:
f5:cb:39:e6:58:6e:e2:7f:68:77:9b:d4:e7:42:de:f3:97:a9:
f9:87:cd:f4:b6:1a:6f:5c:bb:36:0d:00:1e:09:62:8c:9d:18:
2a:c8:29:b3:04:cb:88:fd:9b:4a:92:b4:4e:00:02:c9:65:54:
5d:1d:12:37:25:1e:e4:92:84:80:7b:a3:d6:d5:e2:c8:19:5c:
c1:cd:f4:b4:bc:32:cd:57:c3:a5:47:81:1b:90:81:d0:e4:e7:
31:42:3c:cc:e1:54:ed:31:d5:2a:60:2d:7d:c4:41:70:b2:d6:
5c:4d:54:42:b6:bd:e6:7d:25:56:ec:34:b1:b8:c9:b1:37:3f:
fe:c0:55:07:e0:33:e4:44:b7:bf:a4:2f:84:cc:01:e8:1c:c9:
02:4a:1c:19:e6:c9:64:23:da:76:f1:89:5a:b3:34:d8:15:5f:
a3:2f:37:a8:29:48:a4:74:b5:d8:60:66:63:c2:fa:cb:4c:ed:
6f:0e:21:bd:03:36:96:ec:6d:64:d8:8c:97:5f:e7:99:42:f9:
74:8f:e8:f6:1d:b4:2a:4f:36:65:ed:1d:18:12:80:29:33:2e:
4c:32:d4:08:db:ef:65:b3:cc:76:48:ea:32:9f:32:1e:3e:72:
cf:d8:3c:d5
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQmagpWMkjvskcyEZinM6JEMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFjMGUyMTZlNTc5MWUxYjAxZGEyMWJjYWYzMzAwNDFhZDcy
YTdlNmMwHhcNMjUwMTAyMDk0NzUxWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzNGIwYjA5MTFiYjEzMDA1NmEyMDRlMmNkODBjMjE5YjVjYjM5YTY3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjozNLw4pXEl17/TJit05+hfmKCdf
vtAQrErUXzyKodcbaPjch1etQXHIsEbubdr0BujPZpsLZH8gQW7HZIe0Sb7yxU8G
sFQHO5F29Dv87iEMwCxFO2pm/fT3/S+e32ca+cGEzkg6UzkY+O88Rwc9ZzomG2Of
IOytWSBOy8b0IUws70DI8IlzRp1n+q3NF9MSeLsJniMwu0RSmRzjt929x+oPDPlt
K4SkPf5xcU5J69s/VBDI8HdL9mT7sKD+ZnnxWa7f8hyeuWqzD7+tz6h+hFl1DrZJ
7GV/nyEExohQiuuoW0utCrxccdxQJXWKTZdqf7YJuaByhseECPmcv7PfJQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDSwsJEbsTAFaiBOLNgMIZtcs5pnMB8GA1UdIwQY
MBaAFBwOIW5XkeGwHaIbyvMwBBrXKn5sMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSEE0aGJsZVI0YkFkb2h2Szh6QUVHdGNxZm13LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OS85Mzg0NDMtYmU5YS00ZjhiLTg4MDEt
MmMwZmM2YmUxZTU3LzEvTkxDd2tSdXhNQVZxSUU0czJBd2htMXl6bW1jLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82OS85Mzg0NDMtYmU5YS00ZjhiLTg4MDEtMmMwZmM2YmUxZTU3
LzEvSEE0aGJsZVI0YkFkb2h2Szh6QUVHdGNxZm13LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwaAAMA0G
CSqGSIb3DQEBCwUAA4IBAQCjdLYsdFQmczEAC/eOlC9zAD31yznmWG7if2h3m9Tn
Qt7zl6n5h830thpvXLs2DQAeCWKMnRgqyCmzBMuI/ZtKkrROAALJZVRdHRI3JR7k
koSAe6PW1eLIGVzBzfS0vDLNV8OlR4EbkIHQ5OcxQjzM4VTtMdUqYC19xEFwstZc
TVRCtr3mfSVW7DSxuMmxNz/+wFUH4DPkRLe/pC+EzAHoHMkCShwZ5slkI9p28Yla
szTYFV+jLzeoKUikdLXYYGZjwvrLTO1vDiG9AzaW7G1k2IyXX+eZQvl0j+j2HbQq
TzZl7R0YEoApMy5MMtQI2+9ls8x2SOoynzIePnLP2DzV
-----END CERTIFICATE-----
Generated at Thu Feb 20 02:46:27 2025 by rpki-client