Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/NDqWE8Ex-zmfkuvRn_34dSHE6vY.roa
File: NDqWE8Ex-zmfkuvRn_34dSHE6vY.roa (raw, json)
Hash identifier: 9QxL8L+bK2qMMp9fXZ1kw1PMmSbRZGE8xMlKWoMLMFI=
Subject key identifier: 34:3A:96:13:C1:31:FB:39:9F:92:EB:D1:9F:FD:F8:75:21:C4:EA:F6
Certificate issuer: /CN=253a3b5f51808168c212c094a2baaff38e16464a
Certificate serial: 019425FD68069D9D9D065BAB3C9D85FF6009
Authority key identifier: 25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/NDqWE8Ex-zmfkuvRn_34dSHE6vY.roa
Signing time: Thu 02 Jan 2025 07:49:11 +0000
ROA not before: Thu 02 Jan 2025 07:49:11 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 216127
IP address blocks: 195.19.93.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:fd:68:06:9d:9d:9d:06:5b:ab:3c:9d:85:ff:60:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=253a3b5f51808168c212c094a2baaff38e16464a
Validity
Not Before: Jan 2 07:49:11 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=343a9613c131fb399f92ebd19ffdf87521c4eaf6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:90:f1:39:fe:f0:71:59:37:58:f3:67:aa:0e:
cd:90:95:83:45:a9:21:84:6e:c3:e2:d6:cd:fb:0d:
7f:93:ee:79:03:a1:0f:2b:0a:e2:5c:97:60:52:ce:
9c:c1:0f:43:3d:ba:ef:01:98:a4:6e:45:ee:49:de:
8b:37:eb:ad:46:11:d8:79:51:08:c8:45:f3:2b:44:
dc:41:d1:e0:8e:0a:77:6d:a1:2a:e8:f9:ba:37:24:
b6:0b:8c:32:73:c7:f0:66:a3:64:66:c6:96:32:da:
74:3d:68:4b:a3:9a:b0:a4:b4:65:14:ac:8c:ff:f8:
a9:09:5a:a4:dc:c5:b2:99:4e:b5:c4:9e:bf:3d:86:
11:44:23:63:38:11:33:aa:57:ad:ca:46:8b:b0:66:
1a:c3:6a:9b:41:9d:50:ed:85:d5:e5:c7:eb:e7:5c:
d7:22:83:7d:4f:f7:e2:d8:68:78:ee:62:04:02:07:
2a:9e:1e:b1:85:61:17:92:c0:bf:0a:ed:32:d3:fb:
23:10:29:40:c4:6c:9f:b7:63:0a:af:0d:2e:19:20:
c9:3d:33:b8:75:98:33:78:7a:44:a3:61:c2:89:2a:
5d:09:64:91:74:20:92:bd:8b:18:95:05:36:5f:0f:
0a:12:b2:e3:4a:1e:87:0c:31:2a:27:ca:42:57:bf:
23:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:3A:96:13:C1:31:FB:39:9F:92:EB:D1:9F:FD:F8:75:21:C4:EA:F6
X509v3 Authority Key Identifier:
keyid:25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/NDqWE8Ex-zmfkuvRn_34dSHE6vY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/JTo7X1GAgWjCEsCUorqv844WRko.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.19.93.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:5f:dc:f8:b6:f4:71:b4:31:1e:7f:e0:56:65:69:a2:bc:91:
bb:39:f5:97:7a:40:f6:68:36:55:2c:56:c6:91:c4:d7:d5:9e:
fd:3a:ce:d0:d8:b3:48:80:53:c4:7e:6a:bb:d7:46:ff:32:8e:
6c:a5:f0:b8:bf:40:af:97:41:38:f6:8f:f9:a4:a5:3c:91:fd:
54:3e:9a:a2:e8:ba:04:f8:83:12:4e:15:4f:87:ed:51:82:3a:
5a:36:a9:08:f5:a8:ff:97:7b:27:b7:f9:94:90:67:42:1d:8a:
1a:f7:5f:55:d2:e2:4c:ed:82:fa:b0:0a:d9:7f:59:1d:bc:02:
1a:66:2d:32:1f:25:a7:66:48:62:94:0c:a0:13:9e:56:2e:00:
87:d3:01:ce:49:2e:f3:49:dd:6f:7c:b4:37:84:41:b1:0e:b3:
b5:25:05:20:3e:1b:0b:d9:5e:73:fd:80:06:c7:94:3b:f1:22:
69:43:cc:0c:bd:09:71:62:9c:02:4b:b1:83:4a:b7:40:63:e2:
b6:aa:49:1e:4a:21:47:69:1f:d1:ca:9f:7c:31:7b:3a:05:03:
45:f0:4f:83:47:9e:58:45:93:88:8e:3b:24:96:ce:74:e8:c5:
69:86:94:9b:f9:42:af:47:a6:5b:ec:9a:c4:67:9a:db:df:cb:
10:9b:28:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 20:31:40 2025 by rpki-client