Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/3040df-768d-4c70-9aa0-011ba072f42c/1/1-Ko37JUhHHe8FmXbNtVxyzXmuYM.roa
File: 1-Ko37JUhHHe8FmXbNtVxyzXmuYM.roa (raw, json)
Hash identifier: YWuEByWc7bDQA6K3f1rcbkhdEFQOT+KOYSKuuI7irH8=
Subject key identifier: F8:AA:37:EC:95:21:1C:77:BC:16:65:DB:36:D5:71:CB:35:E6:B9:83
Certificate issuer: /CN=335525f5e51b622fdfee730cda8cda311b4400dd
Certificate serial: 02D13FC2
Authority key identifier: 33:55:25:F5:E5:1B:62:2F:DF:EE:73:0C:DA:8C:DA:31:1B:44:00:DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/M1Ul9eUbYi_f7nMM2ozaMRtEAN0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/3040df-768d-4c70-9aa0-011ba072f42c/1/1-Ko37JUhHHe8FmXbNtVxyzXmuYM.roa
Signing time: Thu 17 Mar 2022 10:09:57 +0000
ROA not before: Thu 17 Mar 2022 10:09:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211413
IP address blocks: 193.56.135.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 47267778 (0x2d13fc2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=335525f5e51b622fdfee730cda8cda311b4400dd
Validity
Not Before: Mar 17 10:09:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f8aa37ec95211c77bc1665db36d571cb35e6b983
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:57:94:c0:0b:13:eb:83:47:56:83:d3:1e:3f:
c6:9e:82:f6:a9:be:b9:06:2c:c7:a8:d0:80:cc:d3:
60:79:29:60:74:1c:5a:c7:f0:4a:0e:3d:fe:14:e1:
28:9c:b0:1e:f6:3e:0a:fb:84:05:b4:ae:44:22:7c:
21:c9:90:a8:4b:83:09:6a:25:7b:da:08:3b:62:1d:
46:4c:53:e3:0e:97:b6:69:e9:bb:7b:6c:c0:c6:37:
9e:3d:1e:2e:60:e5:a1:15:8d:70:8b:97:70:02:1a:
de:ef:10:fc:56:66:ff:ce:f0:ed:75:f7:f2:7c:b9:
4c:6d:dd:a5:b5:3b:df:a0:6e:d3:c1:12:43:ee:b0:
84:76:80:29:43:68:0a:49:8c:5e:30:8e:1d:9f:73:
57:37:4d:0b:9b:51:54:ba:85:58:9e:95:da:52:41:
28:f3:36:c5:79:8f:76:d8:f1:2f:f3:b3:5d:42:92:
4c:8d:58:ba:76:89:ad:8f:7b:0d:9a:51:e7:0f:22:
68:a6:8a:b7:22:2e:87:8f:0c:97:f7:9e:10:51:28:
39:b9:2e:95:ed:99:e0:85:d1:80:e6:eb:eb:58:b1:
a9:7a:0f:e1:47:53:c8:29:9c:ae:aa:1a:b3:94:30:
15:c3:f0:df:d0:20:7e:c7:5f:c3:3b:19:7d:f6:10:
fe:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:AA:37:EC:95:21:1C:77:BC:16:65:DB:36:D5:71:CB:35:E6:B9:83
X509v3 Authority Key Identifier:
keyid:33:55:25:F5:E5:1B:62:2F:DF:EE:73:0C:DA:8C:DA:31:1B:44:00:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/M1Ul9eUbYi_f7nMM2ozaMRtEAN0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/3040df-768d-4c70-9aa0-011ba072f42c/1/1-Ko37JUhHHe8FmXbNtVxyzXmuYM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/3040df-768d-4c70-9aa0-011ba072f42c/1/M1Ul9eUbYi_f7nMM2ozaMRtEAN0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.56.135.0/24
Signature Algorithm: sha256WithRSAEncryption
80:0b:3c:ab:2f:9e:f4:08:a1:45:0c:e8:ab:96:b5:cb:2a:f0:
86:24:f3:b6:49:3c:0d:c3:49:c1:a7:47:3b:8a:6d:1c:46:de:
68:7e:6b:5f:8c:a8:6f:3e:e6:77:93:8f:f7:2c:51:70:f2:3f:
0b:fb:ef:a1:57:56:35:67:75:53:94:91:68:1a:0e:c9:ed:0f:
54:61:8f:4f:38:41:69:14:2c:df:3a:ee:49:33:c5:21:ab:3d:
be:ca:0f:dd:7f:e4:13:64:f7:f3:0e:e6:12:0d:86:4b:64:d2:
82:f1:50:8e:30:95:32:a9:8f:96:92:4e:02:a5:b7:3d:e7:33:
49:7b:b7:b1:ec:a1:19:6a:3c:ff:60:cb:af:b2:3e:8e:67:07:
4b:07:49:67:5f:77:a3:13:12:b3:5e:e9:d1:87:d4:7c:64:43:
2f:e4:d1:40:e5:e3:2c:a1:3b:8c:6e:0e:f8:a4:22:ae:7c:38:
04:ba:2f:d1:bf:3c:2f:65:27:25:03:35:b5:4d:33:bf:c4:04:
43:85:88:bb:66:21:98:98:a6:d6:fb:47:e9:bb:79:0c:f0:69:
26:28:c2:4e:11:f6:f2:50:22:40:57:17:50:80:cb:2c:3e:9e:
8c:4a:23:f8:50:43:07:6d:5c:db:00:0a:3c:5d:34:61:74:7c:
4b:3f:cd:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 21:15:37 2025 by rpki-client