Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/aDpPPUHUWc75wN8VTAH9kDCFIso.roa
File: aDpPPUHUWc75wN8VTAH9kDCFIso.roa (raw, json)
Hash identifier: pS/7KtNj6eJTkR/oT9kNCoD0vPKtuwWzSqeAQKGTi4c=
Subject key identifier: 68:3A:4F:3D:41:D4:59:CE:F9:C0:DF:15:4C:01:FD:90:30:85:22:CA
Certificate issuer: /CN=37518d180923a7f3c00653ec12bc702b95aab907
Certificate serial: 018CC348AB6FA31475FD3F2AA1950DD1D189
Authority key identifier: 37:51:8D:18:09:23:A7:F3:C0:06:53:EC:12:BC:70:2B:95:AA:B9:07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N1GNGAkjp_PABlPsErxwK5WquQc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/aDpPPUHUWc75wN8VTAH9kDCFIso.roa
Signing time: Mon 01 Jan 2024 04:29:28 +0000
ROA not before: Mon 01 Jan 2024 04:29:28 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 207263
IP address blocks: 193.140.72.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:48:ab:6f:a3:14:75:fd:3f:2a:a1:95:0d:d1:d1:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=37518d180923a7f3c00653ec12bc702b95aab907
Validity
Not Before: Jan 1 04:29:28 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=683a4f3d41d459cef9c0df154c01fd90308522ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:1f:8e:57:e6:a7:24:2a:38:3c:51:99:a0:c3:
2b:08:78:ed:ef:4a:94:dc:5b:ba:54:27:ee:69:c7:
ba:07:ed:32:99:11:32:5d:9a:48:86:32:6d:e7:dd:
25:10:12:a3:c5:dd:8e:44:e1:d3:3f:ba:35:93:a5:
0b:58:bf:14:cc:da:f3:9a:66:a7:00:2f:65:76:b8:
8c:14:fb:af:9f:8e:98:f7:68:74:e2:09:43:91:d9:
e2:ba:7f:7f:fe:8c:f3:f9:96:c3:47:6f:e7:43:66:
d7:ba:f9:57:a1:50:43:fd:a4:33:8b:cf:9d:60:bf:
35:30:f0:11:82:e3:5b:29:1f:94:71:42:0f:cd:49:
e0:71:72:5d:bd:61:d9:73:0b:d8:96:b0:31:cb:39:
15:c6:f1:6f:c5:ae:f5:f7:01:3e:61:b2:3f:58:30:
52:8c:b3:c6:56:f1:8c:0b:bf:8b:ad:1d:c4:5d:5c:
c2:b6:ae:ef:8f:c7:f3:ef:00:de:19:0f:fb:6d:ec:
1e:1d:04:2c:04:3e:8a:5e:93:23:c5:70:8e:07:ef:
cb:bd:13:84:ff:cb:91:71:a9:df:10:2a:18:73:26:
ba:7a:7c:cb:b9:dd:ac:9f:bd:a7:63:8c:2d:1d:36:
83:9b:94:0d:aa:80:66:d5:4e:95:eb:e2:07:36:69:
64:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:3A:4F:3D:41:D4:59:CE:F9:C0:DF:15:4C:01:FD:90:30:85:22:CA
X509v3 Authority Key Identifier:
keyid:37:51:8D:18:09:23:A7:F3:C0:06:53:EC:12:BC:70:2B:95:AA:B9:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N1GNGAkjp_PABlPsErxwK5WquQc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/aDpPPUHUWc75wN8VTAH9kDCFIso.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/N1GNGAkjp_PABlPsErxwK5WquQc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.140.72.0/22
Signature Algorithm: sha256WithRSAEncryption
3c:1a:77:05:7e:0a:c0:8f:b3:0f:c0:40:6b:3a:d4:7d:ef:ef:
d3:f0:e0:1d:3a:7b:98:61:91:3e:3b:fe:ad:7a:ca:a5:d8:b5:
7c:83:89:0d:b2:22:85:39:44:57:66:2a:87:63:18:43:c8:ac:
a5:ef:d6:e7:54:53:65:be:c6:d0:87:a6:85:5a:1d:ff:b7:c9:
97:ea:99:b5:9b:36:8d:57:73:d3:40:5f:54:6d:95:ca:58:da:
94:ac:9a:43:20:73:07:66:c1:1b:cf:68:f0:88:fa:af:dd:5d:
49:9c:f3:67:dd:5f:b4:4a:6e:91:f0:d4:a1:be:32:6e:ad:d7:
d9:25:59:09:74:b9:67:06:1b:e3:bc:92:04:10:8e:d4:a4:ba:
5f:c6:a2:46:a6:5a:31:a0:44:15:b7:49:60:02:c8:ac:b7:91:
fe:cf:3e:64:bc:00:40:2c:42:23:10:9b:c4:5c:10:b3:9a:d8:
44:2f:bf:2d:aa:6d:c6:c4:02:be:3f:b2:96:01:28:df:05:7d:
1e:1d:10:34:14:1e:08:e1:75:16:e4:bf:ed:30:ff:21:31:c0:
10:ef:9b:10:28:19:dd:10:52:99:be:ea:c1:c0:59:e9:ce:fb:
7d:75:6f:15:22:31:ac:9f:c0:44:06:e8:b1:db:d7:f3:8a:f7:
b7:a8:d0:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 21:11:24 2025 by rpki-client