Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/UVTZDoEjk1YI37FQ_IvaaRHJnnQ.roa
File: UVTZDoEjk1YI37FQ_IvaaRHJnnQ.roa (raw, json)
Hash identifier: NOafG/qLvJxLyZs2q5FGTZ54IzUEYlZgdrCLQIm1dW8=
Subject key identifier: 51:54:D9:0E:81:23:93:56:08:DF:B1:50:FC:8B:DA:69:11:C9:9E:74
Certificate issuer: /CN=c66d9d50b3b89d51c8aa2493e7ef4701d6251dad
Certificate serial: 019420D630CFC9FC0D3A698743A7B7970CF4
Authority key identifier: C6:6D:9D:50:B3:B8:9D:51:C8:AA:24:93:E7:EF:47:01:D6:25:1D:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xm2dULO4nVHIqiST5-9HAdYlHa0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/UVTZDoEjk1YI37FQ_IvaaRHJnnQ.roa
Signing time: Wed 01 Jan 2025 07:48:15 +0000
ROA not before: Wed 01 Jan 2025 07:48:15 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 212946
IP address blocks: 193.41.217.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:d6:30:cf:c9:fc:0d:3a:69:87:43:a7:b7:97:0c:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c66d9d50b3b89d51c8aa2493e7ef4701d6251dad
Validity
Not Before: Jan 1 07:48:15 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=5154d90e8123935608dfb150fc8bda6911c99e74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:81:ac:a5:2a:21:3a:a8:27:93:fa:17:72:ad:
2a:59:a7:be:6b:75:89:10:f6:b8:79:65:6d:a7:ef:
60:a6:ce:de:e1:59:9d:76:5f:d6:74:04:f0:7f:b0:
9b:89:42:da:db:06:22:f5:bd:7f:9a:3c:52:8e:4a:
2d:10:16:36:7e:f3:34:8a:3f:cd:fb:b2:84:ab:7a:
85:d6:5f:fe:b4:41:26:65:71:a8:33:07:62:99:f3:
f6:0d:e6:a7:d0:75:ae:a9:e2:c7:e2:e6:39:e0:09:
a3:dd:1b:16:ca:44:a7:db:3a:a4:93:a0:91:aa:e4:
28:91:3b:e1:37:61:48:fb:73:4f:b5:78:97:7d:ac:
ff:53:1e:e8:b1:9b:56:b3:08:07:1c:09:d3:c9:d0:
76:a6:f9:ab:d4:f3:77:62:e3:29:16:04:f2:14:2e:
20:72:08:ea:37:92:6e:61:14:e6:c1:7c:61:77:d6:
ac:5b:aa:49:91:c3:ff:38:a1:35:72:a1:4e:8a:7e:
56:e0:3a:a9:be:3f:30:c4:3a:0e:5a:70:2a:89:8a:
ab:a8:21:fe:ec:9f:40:0b:18:58:45:e1:73:bc:47:
52:48:82:fc:02:58:0d:8a:87:cd:c3:5a:3f:d5:2f:
38:ea:ad:15:ac:6f:41:0c:fd:dc:20:04:89:29:fc:
7a:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:54:D9:0E:81:23:93:56:08:DF:B1:50:FC:8B:DA:69:11:C9:9E:74
X509v3 Authority Key Identifier:
keyid:C6:6D:9D:50:B3:B8:9D:51:C8:AA:24:93:E7:EF:47:01:D6:25:1D:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xm2dULO4nVHIqiST5-9HAdYlHa0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/UVTZDoEjk1YI37FQ_IvaaRHJnnQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/xm2dULO4nVHIqiST5-9HAdYlHa0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.41.217.0/24
Signature Algorithm: sha256WithRSAEncryption
96:25:f6:0b:8c:c5:4c:e0:75:bf:d2:9a:bf:4d:ab:56:6d:ce:
ec:da:17:48:0a:5e:d1:11:65:9d:7b:3d:62:bb:80:7f:dc:39:
9b:9e:26:a0:4f:11:00:52:7b:e2:42:8b:43:05:72:8c:e4:8a:
ae:49:9d:43:31:7a:9b:c8:6f:41:93:14:0b:8c:bc:60:e4:00:
47:2d:30:bf:75:4f:32:9d:a7:4b:01:6f:cb:46:88:21:90:20:
92:38:5e:25:61:ee:43:b3:fb:4c:7c:cb:f2:1b:ea:61:97:92:
62:4b:8f:81:c8:04:10:f2:34:c8:48:1b:ed:32:bb:42:66:19:
4b:d0:4a:ab:94:f3:04:22:49:b5:7c:39:08:48:da:cf:c8:cb:
df:e7:f8:13:57:eb:41:21:28:1f:5f:24:4a:08:24:05:7d:1a:
82:89:b1:44:77:97:a9:d8:b7:25:83:3b:26:66:58:b3:21:c9:
05:f8:01:e2:bf:4c:9e:a0:12:46:1a:09:a5:b3:2d:33:11:88:
36:a5:50:02:f8:27:fc:44:a0:16:b2:dc:e6:6b:2f:58:93:c5:
f9:85:a0:d1:3e:03:e4:7c:b7:77:ea:f6:2c:95:f1:cc:97:a2:
17:56:5c:e5:c2:62:c6:d0:f7:97:82:13:c0:53:56:dd:40:42:
60:ff:b9:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 22:28:37 2025 by rpki-client