Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/457e13-41d3-40ef-b572-9e895d0ef8d2/1/2kZhq7jkUqGmRZk9_Cvc6m4i_a0.roa
File: 2kZhq7jkUqGmRZk9_Cvc6m4i_a0.roa (raw, json)
Hash identifier: 0SMaN8AR/ncdmErkAKJBUDBESY6Rv+WF6bvuqZv3oR8=
Subject key identifier: DA:46:61:AB:B8:E4:52:A1:A6:45:99:3D:FC:2B:DC:EA:6E:22:FD:AD
Certificate issuer: /CN=4986c73994d02d91fc97d916e9809a6d981e6b17
Certificate serial: 018DEED00B50E1948E1D407C442B4DE18616
Authority key identifier: 49:86:C7:39:94:D0:2D:91:FC:97:D9:16:E9:80:9A:6D:98:1E:6B:17
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SYbHOZTQLZH8l9kW6YCabZgeaxc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/457e13-41d3-40ef-b572-9e895d0ef8d2/1/2kZhq7jkUqGmRZk9_Cvc6m4i_a0.roa
Signing time: Wed 28 Feb 2024 08:23:48 +0000
ROA not before: Wed 28 Feb 2024 08:23:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 60721
IP address blocks: 193.135.137.0/24 maxlen: 24
193.135.151.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:ee:d0:0b:50:e1:94:8e:1d:40:7c:44:2b:4d:e1:86:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4986c73994d02d91fc97d916e9809a6d981e6b17
Validity
Not Before: Feb 28 08:23:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=da4661abb8e452a1a645993dfc2bdcea6e22fdad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:42:f8:08:0d:ef:e7:a3:f8:fb:4d:6d:5f:c8:
45:d8:a4:f1:00:68:c8:9e:d9:5d:8c:6f:81:96:92:
d7:ca:92:2f:36:f2:81:c4:61:e8:89:ef:8e:59:36:
e8:b5:73:38:71:f0:1c:d3:7e:12:75:a4:50:25:08:
44:1e:11:1d:5a:67:dc:7d:39:de:14:eb:8f:0d:20:
96:06:2b:cd:e1:00:ff:c5:a0:5c:5f:d6:94:5e:ce:
cb:d7:2b:90:2f:35:fb:22:40:de:3e:d2:2c:7e:18:
f8:0e:6f:03:9a:60:86:cb:b9:5f:4d:08:74:c0:f1:
32:42:d3:c8:88:11:dd:c1:b7:99:b7:94:9d:c6:b9:
4d:99:b1:6d:ac:dd:4a:50:f0:32:5a:f5:b4:34:ef:
d1:a1:8b:3b:f0:c0:37:38:53:8a:cd:3b:e6:97:db:
56:93:06:f2:12:ab:9b:73:8c:6c:d4:ef:70:f0:ac:
25:d9:65:5c:e1:d6:8a:cb:11:0c:8e:13:db:7c:5c:
dd:7f:4a:50:e5:b9:04:e2:8f:6d:3f:09:0a:9a:ca:
ef:d3:a2:dd:c6:f1:0b:6a:b4:fb:53:aa:4e:f2:f6:
20:fd:aa:77:ce:62:d6:21:d0:4a:33:ff:88:18:8e:
be:31:e2:62:d8:d8:24:0e:4b:86:16:a8:2e:84:90:
20:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:46:61:AB:B8:E4:52:A1:A6:45:99:3D:FC:2B:DC:EA:6E:22:FD:AD
X509v3 Authority Key Identifier:
keyid:49:86:C7:39:94:D0:2D:91:FC:97:D9:16:E9:80:9A:6D:98:1E:6B:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SYbHOZTQLZH8l9kW6YCabZgeaxc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/457e13-41d3-40ef-b572-9e895d0ef8d2/1/2kZhq7jkUqGmRZk9_Cvc6m4i_a0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/457e13-41d3-40ef-b572-9e895d0ef8d2/1/SYbHOZTQLZH8l9kW6YCabZgeaxc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.135.137.0/24
193.135.151.0/24
Signature Algorithm: sha256WithRSAEncryption
91:ec:bf:06:64:44:8b:4e:0a:cf:96:06:db:e3:43:b3:ab:6b:
e9:7a:17:1f:36:7a:59:a0:31:7f:0c:f2:db:4e:73:9e:00:33:
e5:5c:2a:a0:20:d4:6a:ec:89:d4:28:2b:74:66:6a:43:d1:9b:
95:5e:2c:e2:7e:c0:1b:b1:06:98:cd:e3:ce:39:ae:5c:c1:36:
18:b6:2f:56:ce:3c:e9:58:1b:a8:fc:cf:6c:8d:22:be:24:7c:
2f:b1:2c:88:ff:dd:24:41:c0:7a:49:e1:b7:1f:92:b7:44:b3:
f9:dc:cf:31:de:a6:46:a6:aa:ef:24:e6:88:7a:97:93:53:52:
35:ba:61:e0:4a:c6:a8:8a:b3:ea:76:68:a0:75:4c:11:61:d0:
2a:cc:b4:af:ed:cb:a3:ab:cc:55:bb:b5:3b:68:1d:b3:f6:7b:
88:71:0c:e3:08:47:ae:b8:70:d6:c1:e1:12:01:70:59:0e:41:
45:e8:1c:d8:1e:07:90:73:77:7a:c2:70:e6:18:33:3e:1a:96:
28:91:ea:16:fa:83:4b:bb:7b:08:81:2f:9b:04:94:b2:4d:5d:
ce:20:70:d5:61:73:44:40:e1:2a:9d:2a:ec:50:81:cb:ab:d0:
b5:da:67:12:30:5f:e0:6a:cc:21:ea:66:9d:57:f5:8c:32:81:
9f:ad:61:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:08:30 2025 by rpki-client