Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/k-I2ZIAPWSZ9c4Aov_3iigwYocQ.roa
File: k-I2ZIAPWSZ9c4Aov_3iigwYocQ.roa (raw, json)
Hash identifier: cCoD99ILLlO3llORlssa4oux4iJbeoWhUDL1iK5sy3A=
Subject key identifier: 93:E2:36:64:80:0F:59:26:7D:73:80:28:BF:FD:E2:8A:0C:18:A1:C4
Certificate issuer: /CN=253a3b5f51808168c212c094a2baaff38e16464a
Certificate serial: 019425FD54709EA35794C06F7664B0F4FA7A
Authority key identifier: 25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/k-I2ZIAPWSZ9c4Aov_3iigwYocQ.roa
Signing time: Thu 02 Jan 2025 07:49:06 +0000
ROA not before: Thu 02 Jan 2025 07:49:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 44597
IP address blocks: 193.232.225.0/24 maxlen: 24
2a0c:a9c7:225::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:fd:54:70:9e:a3:57:94:c0:6f:76:64:b0:f4:fa:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=253a3b5f51808168c212c094a2baaff38e16464a
Validity
Not Before: Jan 2 07:49:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=93e23664800f59267d738028bffde28a0c18a1c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:9e:9a:bf:89:c2:3f:dd:76:28:c1:de:7c:d7:
92:8d:05:9b:d8:2c:56:0e:f2:86:8c:bb:10:8a:e1:
cd:03:a5:ae:8d:4a:8c:41:4b:a3:f7:6d:54:29:dd:
90:aa:e8:49:d7:00:67:1d:a8:9c:a0:5b:ba:37:d3:
b5:6a:ce:09:09:11:ec:ec:7f:fe:f2:34:57:7a:b7:
c0:8c:25:77:3b:52:1c:c5:55:7a:56:90:64:b6:95:
e0:7e:7a:ae:1c:56:b5:18:65:ad:02:f8:31:b8:51:
ab:d5:1a:1e:b4:1d:55:f0:45:5a:63:05:ea:81:ae:
bd:c9:a5:d7:55:d0:e8:fa:10:8b:ca:6a:4f:f0:f2:
b7:00:03:3c:10:8e:cc:ae:5e:18:68:c2:93:80:d3:
d4:53:da:07:74:42:6c:5d:b3:b5:15:0e:f0:8f:13:
ec:63:b1:18:11:87:26:98:0f:ca:7a:63:0a:09:51:
4c:65:cb:f3:16:f2:94:2e:2c:fa:fa:55:5e:41:cb:
d8:de:f7:be:7a:70:57:f3:2b:05:d7:85:1c:4f:c6:
af:9d:59:88:ea:b1:cd:c4:c3:53:6b:25:67:12:07:
56:a4:a3:90:8a:11:0d:ff:f5:2b:31:e2:46:af:48:
10:3e:b2:d6:99:37:3f:19:55:84:59:ab:00:50:f1:
b4:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:E2:36:64:80:0F:59:26:7D:73:80:28:BF:FD:E2:8A:0C:18:A1:C4
X509v3 Authority Key Identifier:
keyid:25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/k-I2ZIAPWSZ9c4Aov_3iigwYocQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/JTo7X1GAgWjCEsCUorqv844WRko.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.232.225.0/24
IPv6:
2a0c:a9c7:225::/48
Signature Algorithm: sha256WithRSAEncryption
3d:8b:3d:01:50:c0:ad:a4:09:28:6b:52:fd:bb:27:cc:a0:fd:
7d:93:6b:da:97:87:2c:8b:a8:69:f6:26:4f:a9:e4:77:31:0c:
a7:9a:88:54:b6:10:e0:ec:0e:ab:40:49:2d:73:7f:19:a6:91:
7f:dd:c4:8f:d2:2e:62:93:4d:59:72:ec:f3:fd:c2:ef:1e:12:
82:1c:e8:ed:8c:9e:77:d5:c7:48:dd:28:cf:66:28:70:b8:a9:
73:e4:9f:08:7a:58:96:07:08:57:24:0c:d8:e7:cc:4c:33:ea:
92:0d:35:03:7b:0c:70:db:3d:8c:c5:b6:a1:35:a0:58:2d:0f:
f4:8f:91:57:e0:69:7e:7a:f1:41:44:4b:f4:a5:87:4b:ce:7c:
af:b5:27:1b:cc:d2:94:11:89:36:ae:20:48:29:77:37:77:ee:
85:b4:78:28:dc:c9:1f:73:ed:9e:4d:0c:04:d9:58:5b:26:f3:
05:9e:d0:01:0f:29:84:6e:a0:6d:7c:84:31:1d:5f:ae:7a:05:
95:56:8e:e4:45:1b:24:be:4d:04:f1:6b:98:1d:df:93:f8:8f:
4b:3f:32:68:60:a1:ce:c1:5f:2d:00:73:8e:f7:92:26:dc:3a:
c1:43:c4:6e:ac:26:6a:2a:df:9a:16:57:45:26:56:cd:be:b6:
ed:60:af:7d
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAZQl/VRwnqNXlMBvdmSw9Pp6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI1M2EzYjVmNTE4MDgxNjhjMjEyYzA5NGEyYmFhZmYzOGUx
NjQ2NGEwHhcNMjUwMTAyMDc0OTA2WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5M2UyMzY2NDgwMGY1OTI2N2Q3MzgwMjhiZmZkZTI4YTBjMThhMWM0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsp6av4nCP912KMHefNeSjQWb2CxW
DvKGjLsQiuHNA6WujUqMQUuj921UKd2QquhJ1wBnHaicoFu6N9O1as4JCRHs7H/+
8jRXerfAjCV3O1IcxVV6VpBktpXgfnquHFa1GGWtAvgxuFGr1RoetB1V8EVaYwXq
ga69yaXXVdDo+hCLympP8PK3AAM8EI7Mrl4YaMKTgNPUU9oHdEJsXbO1FQ7wjxPs
Y7EYEYcmmA/KemMKCVFMZcvzFvKULiz6+lVeQcvY3ve+enBX8ysF14UcT8avnVmI
6rHNxMNTayVnEgdWpKOQihEN//UrMeJGr0gQPrLWmTc/GVWEWasAUPG0DwIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFJPiNmSAD1kmfXOAKL/94ooMGKHEMB8GA1UdIwQY
MBaAFCU6O19RgIFowhLAlKK6r/OOFkZKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSlRvN1gxR0FnV2pDRXNDVW9ycXY4NDRXUmtvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMS85NzQ3NGMtMWRjMi00NjJjLWFhZGQt
OWU5YTFlMDM3MzhlLzEvay1JMlpJQVBXU1o5YzRBb3ZfM2lpZ3dZb2NRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMS85NzQ3NGMtMWRjMi00NjJjLWFhZGQtOWU5YTFlMDM3Mzhl
LzEvSlRvN1gxR0FnV2pDRXNDVW9ycXY4NDRXUmtvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAwejhMA8E
AgACMAkDBwAqDKnHAiUwDQYJKoZIhvcNAQELBQADggEBAD2LPQFQwK2kCShrUv27
J8yg/X2Ta9qXhyyLqGn2Jk+p5HcxDKeaiFS2EODsDqtASS1zfxmmkX/dxI/SLmKT
TVly7PP9wu8eEoIc6O2MnnfVx0jdKM9mKHC4qXPknwh6WJYHCFckDNjnzEwz6pIN
NQN7DHDbPYzFtqE1oFgtD/SPkVfgaX568UFES/Slh0vOfK+1JxvM0pQRiTauIEgp
dzd37oW0eCjcyR9z7Z5NDATZWFsm8wWe0AEPKYRuoG18hDEdX656BZVWjuRFGyS+
TQTxa5gd35P4j0s/Mmhgoc7BXy0Ac473kibcOsFDxG6sJmoq35oWV0UmVs2+tu1g
r30=
-----END CERTIFICATE-----
Generated at Fri Apr 11 10:49:17 2025 by rpki-client