Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/41fe1b-2f0e-4faa-9fd4-ca746867dac8/1/Sf5t6YxNuVy_QmmCDlAJFdLydbs.roa
File: Sf5t6YxNuVy_QmmCDlAJFdLydbs.roa (raw, json)
Hash identifier: 84pXBKdWUeBM3XRDHyhAVZXwwfPh9reL6aBdIjVrlKs=
Subject key identifier: 49:FE:6D:E9:8C:4D:B9:5C:BF:42:69:82:0E:50:09:15:D2:F2:75:BB
Certificate issuer: /CN=97aaf892b8991e8c02779cb2db864d321eebe905
Certificate serial: 019421B1FC6ABD97715A36FBC825354B8484
Authority key identifier: 97:AA:F8:92:B8:99:1E:8C:02:77:9C:B2:DB:86:4D:32:1E:EB:E9:05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l6r4kriZHowCd5yy24ZNMh7r6QU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/41fe1b-2f0e-4faa-9fd4-ca746867dac8/1/Sf5t6YxNuVy_QmmCDlAJFdLydbs.roa
Signing time: Wed 01 Jan 2025 11:48:20 +0000
ROA not before: Wed 01 Jan 2025 11:48:20 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 3303
IP address blocks: 193.135.219.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:b1:fc:6a:bd:97:71:5a:36:fb:c8:25:35:4b:84:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=97aaf892b8991e8c02779cb2db864d321eebe905
Validity
Not Before: Jan 1 11:48:20 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=49fe6de98c4db95cbf4269820e500915d2f275bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:8c:27:eb:49:d6:bf:ab:1d:0c:f7:a5:c0:a0:
8c:c1:72:6e:41:89:18:da:e6:df:82:fa:95:61:a2:
69:a9:e6:15:61:11:b9:7c:bd:3c:e6:35:85:1a:76:
09:54:b0:11:5a:12:6f:9e:e8:84:31:4d:62:66:47:
9b:f9:3a:46:77:a6:8e:47:0b:5b:8a:03:8d:5e:e6:
25:16:e0:c7:ce:b5:6d:e4:4e:62:56:5a:6d:12:c0:
54:d3:78:c2:2c:5c:2a:95:08:77:8d:90:d7:d2:a9:
3e:f0:85:76:e1:1b:8b:8e:69:20:19:ba:0d:7e:83:
07:2a:b5:bd:2e:fc:1f:36:09:9b:98:f1:8c:06:6f:
e2:bb:0f:6f:68:bc:d5:17:af:aa:33:98:84:5c:ab:
ac:74:7e:ba:60:a1:a1:2d:41:34:fb:62:1e:00:91:
28:97:e3:aa:e6:4f:29:ed:0f:33:f3:f6:b6:1d:e0:
6b:87:64:00:8a:f3:ac:d0:89:76:1a:56:71:fd:84:
33:9a:68:cc:5b:a1:89:67:a8:a6:47:bc:d3:c4:38:
13:3d:52:2c:9c:ec:c5:3a:3b:04:40:5b:1d:41:a6:
db:36:5b:9f:57:fa:c2:e2:a8:cd:a2:c5:5b:27:4d:
c2:ec:be:80:74:fe:db:61:3f:0e:7b:00:69:e9:f8:
d4:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:FE:6D:E9:8C:4D:B9:5C:BF:42:69:82:0E:50:09:15:D2:F2:75:BB
X509v3 Authority Key Identifier:
keyid:97:AA:F8:92:B8:99:1E:8C:02:77:9C:B2:DB:86:4D:32:1E:EB:E9:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l6r4kriZHowCd5yy24ZNMh7r6QU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/41fe1b-2f0e-4faa-9fd4-ca746867dac8/1/Sf5t6YxNuVy_QmmCDlAJFdLydbs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/41fe1b-2f0e-4faa-9fd4-ca746867dac8/1/l6r4kriZHowCd5yy24ZNMh7r6QU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.135.219.0/24
Signature Algorithm: sha256WithRSAEncryption
38:b7:8c:c6:c6:e2:bf:a5:64:71:29:63:33:a5:cd:a6:ca:e4:
55:5b:23:e2:51:fc:2d:48:12:6e:1c:78:ff:ba:f6:a5:c1:53:
09:ae:ec:d8:f5:df:45:c2:9e:33:1e:e9:16:a4:10:56:a8:7f:
68:e9:5e:10:a3:a2:e9:f9:f8:d3:12:74:8d:b6:56:7c:f9:d0:
07:3c:04:1c:9c:a6:02:62:11:43:22:36:bc:fc:17:c5:86:4f:
e2:30:b3:90:1f:45:6b:7d:c3:82:33:56:e8:49:30:1d:51:e1:
00:77:e8:df:13:8f:27:fd:c6:6a:9a:a8:98:73:d1:51:da:78:
1e:34:3c:ca:44:27:5c:57:d3:81:77:66:70:5b:75:36:c5:2a:
54:92:cd:2f:ab:f5:cd:62:05:e2:13:ba:ba:f4:da:29:97:9b:
06:c8:46:05:c3:64:6e:6e:da:0f:38:0b:ae:68:73:90:c8:e9:
02:f7:8d:b1:86:ba:ed:17:a7:76:65:f7:d2:40:4b:9c:8c:7f:
4a:ce:85:cf:26:e9:6d:82:81:d8:11:34:63:19:70:28:6b:fe:
23:e5:e9:5a:0f:d2:fd:95:90:ba:21:f2:47:bb:52:f4:d4:10:
58:19:bb:60:ca:a1:c5:89:1e:0a:95:8a:f4:84:c9:6f:36:31:
02:fc:3b:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 20:12:45 2025 by rpki-client