Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/n30d8ZgnNZlP8pvs7Vu93b7ObZE.roa
File: n30d8ZgnNZlP8pvs7Vu93b7ObZE.roa (raw, json)
Hash identifier: xfoY7PkhPnhld67kZeHKTcbssht0cFMC0PHz2ycxAQY=
Subject key identifier: 9F:7D:1D:F1:98:27:35:99:4F:F2:9B:EC:ED:5B:BD:DD:BE:CE:6D:91
Certificate issuer: /CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Certificate serial: 019427486A0830541198E668F758509565AF
Authority key identifier: 21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/n30d8ZgnNZlP8pvs7Vu93b7ObZE.roa
Signing time: Thu 02 Jan 2025 13:50:44 +0000
ROA not before: Thu 02 Jan 2025 13:50:44 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 199470
IP address blocks: 194.103.160.0/24 maxlen: 24
194.103.161.0/24 maxlen: 24
194.103.162.0/24 maxlen: 24
194.103.163.0/24 maxlen: 24
194.103.164.0/24 maxlen: 24
194.103.165.0/24 maxlen: 24
194.103.166.0/24 maxlen: 24
194.103.167.0/24 maxlen: 24
194.103.168.0/24 maxlen: 24
194.103.169.0/24 maxlen: 24
194.103.170.0/24 maxlen: 24
194.103.171.0/24 maxlen: 24
194.103.172.0/24 maxlen: 24
194.103.173.0/24 maxlen: 24
194.103.174.0/24 maxlen: 24
194.103.175.0/24 maxlen: 24
194.103.176.0/24 maxlen: 24
194.103.177.0/24 maxlen: 24
194.103.178.0/24 maxlen: 24
194.103.179.0/24 maxlen: 24
194.103.180.0/24 maxlen: 24
194.103.181.0/24 maxlen: 24
194.103.182.0/24 maxlen: 24
194.103.183.0/24 maxlen: 24
194.103.184.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:48:6a:08:30:54:11:98:e6:68:f7:58:50:95:65:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Validity
Not Before: Jan 2 13:50:44 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=9f7d1df1982735994ff29beced5bbdddbece6d91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:57:71:22:33:db:5a:14:f6:2e:48:1f:50:38:
ae:79:c8:42:2e:84:26:9a:29:1a:60:f9:69:13:d5:
38:a4:17:16:32:8e:d2:91:fe:32:cc:2b:de:ef:68:
fa:bc:a4:90:65:a0:e3:9e:ae:99:96:3e:58:25:4c:
79:97:0b:e7:a9:e9:b6:87:fc:7c:e6:b4:da:9b:fc:
cc:ce:b7:19:cd:55:31:0f:49:aa:5d:d5:bc:61:34:
94:7d:c5:6b:50:04:f2:23:ff:ff:b7:b3:3b:c4:1b:
49:7c:a4:4f:ae:82:e2:6b:f6:e4:04:b6:a5:8f:dd:
d0:e0:aa:0c:45:f6:65:ca:85:08:48:63:52:70:3d:
4f:2c:17:be:94:d0:64:a6:17:c1:db:41:78:5d:80:
ac:28:12:16:45:7a:a9:6b:52:b1:af:6c:17:19:ff:
f5:ea:59:68:7e:3f:03:c0:37:03:26:3c:d9:fe:6f:
2a:46:4a:a0:cd:19:93:a0:cd:60:41:cf:a6:83:e6:
f0:86:a9:01:5a:8a:0e:68:51:0e:fb:da:35:10:92:
a9:ce:27:20:7d:53:83:f1:e4:22:cb:0b:e5:88:66:
d5:e1:9d:ca:4d:5c:0d:88:41:d2:b8:5d:c8:be:75:
de:7d:7e:26:a2:7d:4c:4d:b7:d6:e2:b5:86:78:12:
53:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:7D:1D:F1:98:27:35:99:4F:F2:9B:EC:ED:5B:BD:DD:BE:CE:6D:91
X509v3 Authority Key Identifier:
keyid:21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/n30d8ZgnNZlP8pvs7Vu93b7ObZE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.103.160.0-194.103.185.255
Signature Algorithm: sha256WithRSAEncryption
45:fc:e0:f7:67:22:54:3d:19:63:26:b7:61:18:73:51:e6:d2:
1b:a8:eb:59:f5:ef:7e:c4:f2:bb:57:73:e1:8a:9e:fb:67:13:
0c:9c:b6:bb:da:fe:05:dd:15:3e:7c:79:4b:99:ab:ab:ee:10:
12:4d:6d:cb:50:55:4b:87:18:e0:6a:12:af:01:f3:92:57:a5:
d9:04:45:2d:0d:59:c3:6d:46:c8:88:96:64:04:89:8b:28:0a:
6e:d5:6b:12:17:80:4c:29:7e:3f:20:b7:22:fd:d1:8f:b1:bf:
88:82:95:99:16:36:88:28:90:89:a3:a3:9c:2b:2d:84:13:9b:
3c:2c:18:89:d7:3e:e6:08:40:d9:06:2a:19:c1:b4:33:fd:95:
0e:d3:2b:18:25:df:66:d8:bf:6d:db:65:c6:63:00:37:ef:9f:
29:0f:37:89:fd:5e:38:8f:08:aa:21:18:57:8a:85:0f:b4:95:
13:54:cb:49:3e:5e:29:2d:e0:d2:99:61:e3:53:ea:d8:61:30:
cf:01:76:b3:ca:42:f0:aa:47:87:e0:1d:a3:68:98:ee:91:87:
12:87:a6:f5:6b:58:ba:32:48:3f:a7:e0:25:79:53:11:e8:f8:
9d:04:8a:17:a7:d9:3b:a5:1c:76:e8:a6:5c:3f:e0:e0:f1:bd:
e6:ec:55:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:03:12 2025 by rpki-client