Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/TZnMCWCDD7gEt2iDrVgun6OOwPs.roa
File: TZnMCWCDD7gEt2iDrVgun6OOwPs.roa (raw, json)
Hash identifier: SXv2dOCtyEflvEs/51vkBcKAPnsJErnwyCUiGSJl1Gs=
Subject key identifier: 4D:99:CC:09:60:83:0F:B8:04:B7:68:83:AD:58:2E:9F:A3:8E:C0:FB
Certificate issuer: /CN=5124fba1e401c03e5ba1cd77ae9ee39cfd631bfb
Certificate serial: 01942444D579022F70B7DA59693551DCE63B
Authority key identifier: 51:24:FB:A1:E4:01:C0:3E:5B:A1:CD:77:AE:9E:E3:9C:FD:63:1B:FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UST7oeQBwD5boc13rp7jnP1jG_s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/TZnMCWCDD7gEt2iDrVgun6OOwPs.roa
Signing time: Wed 01 Jan 2025 23:47:58 +0000
ROA not before: Wed 01 Jan 2025 23:47:58 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 43063
IP address blocks: 88.80.130.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:44:d5:79:02:2f:70:b7:da:59:69:35:51:dc:e6:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5124fba1e401c03e5ba1cd77ae9ee39cfd631bfb
Validity
Not Before: Jan 1 23:47:58 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=4d99cc0960830fb804b76883ad582e9fa38ec0fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:39:a5:17:a6:8f:41:46:7f:62:28:2c:69:4b:
bc:8c:b0:18:37:d7:e6:1c:f2:26:63:38:48:5e:1f:
4a:5d:fe:83:67:70:3e:a3:71:78:ed:b1:e3:9f:44:
c2:80:5d:5c:15:5c:e8:be:b3:c3:7e:1d:ea:47:43:
80:3d:4e:0f:06:69:0c:c0:36:7a:0c:40:7d:af:2b:
54:37:e9:d7:07:8b:30:9d:d3:1a:e9:a9:ca:f9:b4:
e4:5a:ba:58:46:7c:3a:d7:ea:ec:e7:a2:aa:7c:bd:
3d:2f:1f:67:32:39:33:c0:3d:77:b3:6a:d4:6d:41:
c2:0c:30:20:e0:a4:2a:fa:10:67:24:53:83:24:ec:
39:50:42:36:c5:d0:7e:d1:6b:d9:c8:c2:b1:2f:73:
78:6c:2c:51:c9:e0:f6:02:8d:b6:32:8e:67:92:0e:
f2:29:7d:36:55:d2:03:f4:41:3c:dc:44:54:79:46:
f8:29:03:7f:a1:66:3c:43:14:93:b1:f5:bb:44:0f:
63:cf:32:82:da:b8:ff:95:1e:bb:e1:f4:e8:5a:82:
64:64:28:61:c5:c7:45:69:7a:42:28:0e:2d:a2:59:
49:05:56:af:d2:7e:04:28:29:7f:d8:af:bf:8b:b9:
38:54:fd:c7:cc:1b:c6:8b:3b:07:a6:36:fa:6d:c5:
71:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:99:CC:09:60:83:0F:B8:04:B7:68:83:AD:58:2E:9F:A3:8E:C0:FB
X509v3 Authority Key Identifier:
keyid:51:24:FB:A1:E4:01:C0:3E:5B:A1:CD:77:AE:9E:E3:9C:FD:63:1B:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UST7oeQBwD5boc13rp7jnP1jG_s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/TZnMCWCDD7gEt2iDrVgun6OOwPs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/UST7oeQBwD5boc13rp7jnP1jG_s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.80.130.0/24
Signature Algorithm: sha256WithRSAEncryption
25:51:20:48:73:a4:ad:20:e2:61:a4:98:15:cc:72:00:f1:84:
36:aa:69:17:c4:21:44:ae:3c:ea:1a:09:1c:a2:ba:c6:c7:24:
45:83:20:fe:1d:f0:18:69:f2:85:6a:45:22:0a:71:ec:d0:1d:
99:e6:75:9e:80:0b:2c:da:4b:98:0c:34:fe:5c:05:1e:71:f3:
52:ff:f8:7c:63:af:7c:bb:06:6c:ad:f0:b0:b7:18:ae:80:90:
9b:59:9b:c8:10:8c:0e:7e:b6:47:75:b2:9f:8c:fd:46:56:3d:
80:cc:95:6e:02:e5:3b:0d:cb:d4:79:8e:94:7a:ac:49:63:91:
68:ca:b6:48:88:ae:77:a9:4b:76:62:ea:6c:49:31:da:36:98:
e5:0d:4e:e2:52:62:38:c7:ac:ff:32:3d:af:59:14:4e:9c:b9:
f9:97:fa:91:2f:c2:c2:64:b7:e2:ee:4d:96:bf:92:42:72:a6:
c2:df:a5:d5:90:5a:d0:89:f8:6c:74:4e:b3:6c:5e:5f:6a:37:
b0:a7:17:43:dd:7f:79:46:26:f8:00:71:05:22:07:75:3e:0c:
f7:9e:f9:ce:15:53:f8:a5:a8:aa:0e:4e:67:a6:5c:7a:67:4c:
e1:72:b8:1e:32:0e:a5:4e:2d:02:12:22:4d:11:cf:c2:ce:7a:
b7:20:7b:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 09:38:16 2025 by rpki-client