Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/73XBWuc7WrL1xZDzkaYj0WxyU70.roa
File: 73XBWuc7WrL1xZDzkaYj0WxyU70.roa (raw, json)
Hash identifier: RqCtpiNvjTD8Hmo/0SUXUAlMZ5dvunPzF+DUJTXA4Sw=
Subject key identifier: EF:75:C1:5A:E7:3B:5A:B2:F5:C5:90:F3:91:A6:23:D1:6C:72:53:BD
Certificate issuer: /CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Certificate serial: 0194274853D069E12391F01CE6629EBCF052
Authority key identifier: 21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/73XBWuc7WrL1xZDzkaYj0WxyU70.roa
Signing time: Thu 02 Jan 2025 13:50:38 +0000
ROA not before: Thu 02 Jan 2025 13:50:38 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 41884
IP address blocks: 192.121.218.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:48:53:d0:69:e1:23:91:f0:1c:e6:62:9e:bc:f0:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Validity
Not Before: Jan 2 13:50:38 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ef75c15ae73b5ab2f5c590f391a623d16c7253bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:56:59:d5:38:63:cb:da:06:d3:b1:c2:e2:02:
2d:64:ab:a8:5a:c3:8c:a7:51:f7:06:2a:e9:09:8c:
15:c3:8b:a5:75:77:31:fb:a2:e1:ce:68:21:af:17:
29:31:f2:c1:a5:79:65:2c:57:70:03:69:0c:a2:3c:
f8:05:10:2e:a6:26:a8:9c:69:cc:05:c0:aa:dd:a7:
5c:53:03:63:00:cf:d0:03:01:c8:60:57:ab:27:e1:
f6:50:b8:c1:46:db:e1:30:4e:24:46:fb:bd:2b:9b:
74:ff:cb:e6:2b:19:0a:dd:9c:20:83:9c:d2:f6:44:
1c:66:7d:c5:5a:68:94:8b:bd:aa:ac:d0:e8:53:ed:
89:e2:ab:75:51:2f:eb:04:48:e0:9c:eb:f2:09:b4:
03:8e:3e:aa:34:0c:9b:39:55:82:bd:36:15:aa:ed:
84:a3:9b:58:f7:20:3e:da:ca:ba:ae:bc:03:82:f3:
1a:35:05:c7:11:5e:c4:50:85:15:0c:d0:b1:a8:77:
dd:88:1e:f3:18:04:07:e9:a8:d1:00:1a:7c:76:92:
a1:06:a5:1f:83:53:57:8c:9f:e7:3f:b5:2d:fc:42:
7e:8d:db:6e:7a:63:49:1d:18:10:1e:99:05:25:92:
98:0c:02:8e:1a:a8:1d:e8:54:84:35:06:73:00:1b:
d0:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:75:C1:5A:E7:3B:5A:B2:F5:C5:90:F3:91:A6:23:D1:6C:72:53:BD
X509v3 Authority Key Identifier:
keyid:21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/73XBWuc7WrL1xZDzkaYj0WxyU70.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.121.218.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:f8:31:45:c5:98:b8:f5:8f:36:6e:99:3b:4d:f2:63:08:ac:
99:5f:a1:ea:1b:19:68:bd:de:e9:2e:3b:e5:5a:04:b5:9c:6a:
c9:d7:7f:9d:46:d2:ea:e8:a9:56:3a:93:25:c5:2b:99:d8:b6:
30:5e:65:ae:c1:94:7d:a5:02:7f:39:79:7e:12:5a:cc:a2:6a:
42:01:28:2a:b3:92:96:8d:b7:b6:20:b4:25:9f:52:a8:6c:08:
6b:df:13:ac:ec:c2:b7:25:91:90:cd:e2:a4:8c:42:69:5f:1d:
45:a8:5d:23:ac:55:29:e2:b3:43:3a:74:ff:c2:07:10:68:de:
62:43:1f:c9:b2:85:e1:b3:11:d3:b2:9c:74:33:75:f8:7e:ad:
7f:e6:7a:02:25:7c:8c:fa:68:34:91:1e:03:cc:37:30:4d:6e:
a9:ad:43:31:08:7f:42:d4:48:9d:a8:5f:3a:b6:67:2a:ed:64:
db:f7:49:8a:f8:a7:cc:c2:0d:d8:86:7b:54:a6:28:82:ca:45:
0b:e9:6b:09:c0:56:fd:39:fb:4d:43:04:72:4a:5d:53:0d:a1:
43:1d:47:60:34:e7:41:5b:5c:d0:3a:2d:4c:3c:29:87:0e:60:
ad:48:2b:10:7d:07:52:75:86:c2:f2:08:d3:7c:aa:97:f7:a8:
b2:e7:14:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:11:27 2025 by rpki-client