Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/fa09f3-d0ea-48d0-acb1-436e34484bfc/1/TdIoH0BoArC9ZmwDBHO1zSn0eTM.roa
File: TdIoH0BoArC9ZmwDBHO1zSn0eTM.roa (raw, json)
Hash identifier: bejn2ip/3615WopPIF+ol18u7Vbc9bGHh23WG4tkRDo=
Subject key identifier: 4D:D2:28:1F:40:68:02:B0:BD:66:6C:03:04:73:B5:CD:29:F4:79:33
Certificate issuer: /CN=d2090b6e7691f7e19d771e63581a181d7a6e0da1
Certificate serial: 4D00DC
Authority key identifier: D2:09:0B:6E:76:91:F7:E1:9D:77:1E:63:58:1A:18:1D:7A:6E:0D:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0gkLbnaR9-Gddx5jWBoYHXpuDaE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/fa09f3-d0ea-48d0-acb1-436e34484bfc/1/TdIoH0BoArC9ZmwDBHO1zSn0eTM.roa
Signing time: Sat 01 Jan 2022 00:53:58 +0000
ROA not before: Sat 01 Jan 2022 00:53:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211252
IP address blocks: 195.96.135.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5046492 (0x4d00dc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2090b6e7691f7e19d771e63581a181d7a6e0da1
Validity
Not Before: Jan 1 00:53:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4dd2281f406802b0bd666c030473b5cd29f47933
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:56:c6:b6:c1:2b:37:fd:09:80:55:74:da:d4:
d5:5c:95:ca:f1:8d:6f:e8:fb:3e:f1:a5:9b:45:21:
b0:a4:37:78:85:5a:99:e5:f7:3b:bc:3b:a2:09:7b:
97:dd:33:8d:6c:69:f6:83:20:6e:d7:af:12:87:e0:
9e:c7:d4:a4:4c:85:79:77:b2:2f:f1:a0:b3:3f:31:
9f:bc:4b:ef:af:cb:fa:e3:ac:a9:08:d8:b7:7e:b9:
9d:83:58:34:a8:01:ea:b9:4c:d9:57:4e:24:d0:3b:
96:cb:3e:bf:af:4d:c2:ee:8f:d3:ae:e7:9d:4e:56:
ae:36:91:3a:5a:63:e4:f8:6b:f6:07:46:e0:dc:3b:
3c:8c:ba:83:b3:f1:4b:85:c0:87:85:0a:0a:5b:84:
d8:1c:b4:ff:b7:5b:8b:e7:89:76:15:bc:9f:c8:fa:
ed:e0:92:1d:fc:cf:df:03:7c:09:3d:96:15:01:0d:
2a:fe:ae:76:09:16:a7:46:b6:6d:2f:07:69:52:3d:
f0:56:17:43:47:34:61:47:8e:6e:7d:95:36:80:57:
46:f4:4d:9a:78:14:4b:67:43:74:f5:81:c4:e1:6f:
08:5d:59:dc:b0:79:86:5b:3f:fa:54:99:5a:9c:1f:
ec:a3:7e:04:5b:9c:9e:f2:c3:76:f9:32:86:d5:b7:
46:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:D2:28:1F:40:68:02:B0:BD:66:6C:03:04:73:B5:CD:29:F4:79:33
X509v3 Authority Key Identifier:
keyid:D2:09:0B:6E:76:91:F7:E1:9D:77:1E:63:58:1A:18:1D:7A:6E:0D:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0gkLbnaR9-Gddx5jWBoYHXpuDaE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/fa09f3-d0ea-48d0-acb1-436e34484bfc/1/TdIoH0BoArC9ZmwDBHO1zSn0eTM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/fa09f3-d0ea-48d0-acb1-436e34484bfc/1/0gkLbnaR9-Gddx5jWBoYHXpuDaE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.96.135.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:c3:5a:c4:25:17:fc:ff:2e:f5:df:8d:6e:ae:90:ff:e2:01:
02:8d:5d:82:8c:63:e5:87:93:7e:de:85:e5:9c:f4:9f:db:ef:
56:df:0b:e4:4d:46:d7:c3:70:6c:b7:30:ad:ea:56:38:5e:77:
d3:02:69:65:d6:21:2f:ec:37:9a:47:98:b4:19:4b:cb:6d:a7:
fe:3c:59:63:c7:b2:41:f1:3b:7c:62:10:ce:e9:9a:97:82:05:
38:4f:6b:e9:73:f4:e1:01:56:46:e5:2e:dc:18:6d:22:d8:00:
3c:99:b0:00:b7:ea:cd:e4:60:51:c6:14:00:3c:07:35:a6:57:
c2:3c:1b:e6:f2:98:6d:61:6d:3c:4f:ec:2a:81:e1:76:da:89:
46:60:bf:f9:c6:ca:19:33:84:01:c5:97:24:02:7c:78:43:1d:
22:e0:69:c4:7b:23:41:e1:a2:8c:02:09:bf:1b:9f:c2:79:dc:
d8:71:d6:e7:d4:63:b0:56:92:02:cf:04:72:a8:28:c6:9a:d1:
e0:71:ee:ea:50:95:bf:60:6a:f2:7b:33:d5:98:7e:fe:04:f0:
f3:2b:f2:f2:90:f6:40:ba:71:46:c6:af:c6:c2:0c:83:32:52:
5f:97:8e:b2:ad:5a:2e:b6:9e:d2:37:b4:3b:fe:ea:cb:3d:c3:
51:9c:91:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 14:06:45 2025 by rpki-client