Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/sWtSQADFK8Bk5Gpxjy67AiWChLU.roa
File: sWtSQADFK8Bk5Gpxjy67AiWChLU.roa (raw, json)
Hash identifier: oUf7Q6AbIMouSsDSOiQRMQJ3IVYUjze57Y/PY9NS3IE=
Subject key identifier: B1:6B:52:40:00:C5:2B:C0:64:E4:6A:71:8F:2E:BB:02:25:82:84:B5
Certificate issuer: /CN=253a3b5f51808168c212c094a2baaff38e16464a
Certificate serial: 019425FD4CDF1D162CB2859572F92E727467
Authority key identifier: 25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/sWtSQADFK8Bk5Gpxjy67AiWChLU.roa
Signing time: Thu 02 Jan 2025 07:49:04 +0000
ROA not before: Thu 02 Jan 2025 07:49:04 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 72
IP address blocks: 212.193.96.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:fd:4c:df:1d:16:2c:b2:85:95:72:f9:2e:72:74:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=253a3b5f51808168c212c094a2baaff38e16464a
Validity
Not Before: Jan 2 07:49:04 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b16b524000c52bc064e46a718f2ebb02258284b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:83:ec:d5:dc:57:d2:df:c5:8f:83:e4:21:4d:
4c:d4:62:1e:5f:b8:99:72:23:4c:90:75:f7:0a:d4:
a6:99:2b:25:e7:fb:3f:98:78:ac:9f:c2:ca:87:13:
67:f5:12:b4:fb:9a:f0:5d:5e:7d:1e:af:16:b0:de:
1b:2c:eb:4b:dd:91:05:2d:e7:18:da:a8:3d:65:5b:
2a:b7:21:f4:9a:41:87:99:64:3e:24:b1:45:25:cb:
64:ea:a2:da:00:cc:d1:2f:90:5e:c3:7f:12:ca:62:
8f:48:6e:38:99:ed:27:15:aa:b8:e8:9a:56:c6:17:
05:9b:4a:1f:ae:88:88:1d:61:87:d5:9f:9a:f5:3b:
5e:62:68:fd:cf:b8:aa:4a:99:70:28:c5:85:a8:9a:
4b:ee:32:5a:d5:3a:44:2d:3f:e3:44:ee:ab:30:1c:
1d:b7:fc:3c:a0:53:5b:63:94:fd:67:3c:01:aa:f4:
5e:4e:7c:44:9a:90:25:9d:d4:02:e3:cc:cb:03:fb:
03:93:db:ad:07:02:98:8d:86:87:e9:ad:6b:e8:49:
be:ba:41:90:b8:16:61:aa:a5:0f:b5:59:2a:80:54:
de:0e:0c:94:7c:57:29:6c:88:bf:19:e7:ed:66:6f:
59:7f:a8:d8:12:ac:53:c5:a1:5a:f4:c8:12:07:4b:
48:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:6B:52:40:00:C5:2B:C0:64:E4:6A:71:8F:2E:BB:02:25:82:84:B5
X509v3 Authority Key Identifier:
keyid:25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/sWtSQADFK8Bk5Gpxjy67AiWChLU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/JTo7X1GAgWjCEsCUorqv844WRko.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.193.96.0/24
Signature Algorithm: sha256WithRSAEncryption
a4:54:a0:3d:e7:7a:af:e5:0a:3b:3a:48:ab:28:d5:c8:c5:84:
e4:5a:88:b1:fe:b9:f1:d7:4d:3f:21:db:b6:4d:76:34:c1:a8:
24:2d:bd:0d:49:69:7c:dc:f4:9c:06:49:c1:2c:cc:2a:5c:71:
60:a4:ae:67:d7:93:17:39:c5:8a:27:f0:cc:2b:8f:0a:58:90:
81:91:38:f6:fd:b4:3c:66:d2:dc:84:fa:1c:80:f9:4b:b9:76:
e5:d9:31:67:21:d0:22:50:56:6c:e6:0b:b8:5b:98:82:ab:88:
1a:ca:a3:d6:d1:69:50:2f:6f:20:d6:00:14:b2:58:b3:ec:01:
ee:c1:e3:75:4a:03:ce:95:17:dd:c0:5c:1a:35:d8:d1:bb:4c:
4f:af:37:a9:25:2f:5f:f3:2f:03:bb:fb:6d:f6:8f:e2:2b:e6:
a0:5c:f5:e8:f2:b2:4e:30:cf:41:30:c6:1c:92:e0:5e:95:5d:
85:68:7a:c0:97:59:57:87:07:d2:8b:46:69:2c:eb:b0:d0:a4:
ae:01:78:6b:71:16:7a:e1:b1:be:ad:59:2d:31:67:9b:3d:d5:
b2:72:13:f8:c6:bf:5d:60:74:96:cc:0d:53:33:91:07:f9:af:
c0:9b:65:28:23:a5:f0:93:85:45:d8:70:48:e5:f0:9e:fe:ea:
a8:8a:94:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 10:57:02 2025 by rpki-client