Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/457e13-41d3-40ef-b572-9e895d0ef8d2/1/89DiOoOjl2VKnANsMunuCUVj5Vc.roa
File: 89DiOoOjl2VKnANsMunuCUVj5Vc.roa (raw, json)
Hash identifier: yTkMqMBbFOVCujVrhs9UAGkrestEYuUBcPCS0mNESqs=
Subject key identifier: F3:D0:E2:3A:83:A3:97:65:4A:9C:03:6C:32:E9:EE:09:45:63:E5:57
Certificate issuer: /CN=4986c73994d02d91fc97d916e9809a6d981e6b17
Certificate serial: 019422FC4E7D014AB98D601AD844C3380BF1
Authority key identifier: 49:86:C7:39:94:D0:2D:91:FC:97:D9:16:E9:80:9A:6D:98:1E:6B:17
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SYbHOZTQLZH8l9kW6YCabZgeaxc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/457e13-41d3-40ef-b572-9e895d0ef8d2/1/89DiOoOjl2VKnANsMunuCUVj5Vc.roa
Signing time: Wed 01 Jan 2025 17:49:08 +0000
ROA not before: Wed 01 Jan 2025 17:49:08 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 43260
IP address blocks: 193.135.157.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:fc:4e:7d:01:4a:b9:8d:60:1a:d8:44:c3:38:0b:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4986c73994d02d91fc97d916e9809a6d981e6b17
Validity
Not Before: Jan 1 17:49:08 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=f3d0e23a83a397654a9c036c32e9ee094563e557
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:e6:08:94:86:43:76:09:79:6e:c4:6e:a0:e6:
67:ea:a7:96:d6:ba:6c:26:70:53:25:6e:a4:12:a5:
93:77:f9:aa:7e:81:22:73:4b:e5:b7:e7:b7:44:0c:
7b:97:48:e3:a7:4e:03:6e:6c:fd:f2:07:db:37:fa:
75:3b:2b:c3:3f:43:25:6d:df:8a:3e:dd:61:70:51:
9d:a0:44:00:ad:d1:44:89:c7:f2:af:ad:94:93:97:
e4:62:ab:d9:aa:24:03:7c:54:6f:48:78:06:e3:86:
6e:4f:ff:a2:ab:64:c1:76:fb:17:9d:f6:68:34:20:
ae:56:78:96:00:c4:dd:ba:db:f8:1e:71:ce:97:49:
d3:ff:c7:56:e5:5d:3a:b6:bf:1f:9a:59:e4:7e:11:
71:fa:4b:da:30:00:91:e6:55:7c:2d:03:95:d3:53:
0a:fd:8d:93:1a:b2:b9:33:ab:16:21:4a:03:07:b0:
52:06:3a:a7:2d:e2:a1:0c:b9:df:15:12:da:3b:2d:
1c:e1:0f:b7:b9:81:02:b6:ec:75:fd:75:21:03:bf:
07:c5:98:2c:41:2a:70:2f:88:5f:9b:3f:b0:df:33:
f1:18:ed:05:fa:9c:bf:fe:a5:de:cc:8b:60:ac:f6:
ba:c9:54:f5:30:19:85:59:a4:49:6a:c3:90:c3:8f:
c3:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:D0:E2:3A:83:A3:97:65:4A:9C:03:6C:32:E9:EE:09:45:63:E5:57
X509v3 Authority Key Identifier:
keyid:49:86:C7:39:94:D0:2D:91:FC:97:D9:16:E9:80:9A:6D:98:1E:6B:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SYbHOZTQLZH8l9kW6YCabZgeaxc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/457e13-41d3-40ef-b572-9e895d0ef8d2/1/89DiOoOjl2VKnANsMunuCUVj5Vc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/457e13-41d3-40ef-b572-9e895d0ef8d2/1/SYbHOZTQLZH8l9kW6YCabZgeaxc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.135.157.0/24
Signature Algorithm: sha256WithRSAEncryption
02:44:d6:ad:c6:47:83:24:01:0c:70:9a:66:01:2c:8f:40:f3:
bc:36:60:e3:d0:7a:52:b9:b9:fc:ed:a3:d4:05:d9:09:18:28:
24:22:6f:db:b0:b4:e2:ce:89:4a:08:3c:7f:c1:c6:95:33:a3:
a3:ed:2d:9b:08:7c:b3:20:df:e4:11:67:7c:86:73:d1:13:bf:
42:9a:dc:d6:20:4d:58:77:53:ce:12:98:9d:92:5e:23:49:d8:
79:f8:08:fc:b0:d6:ba:68:a2:55:f9:53:fb:6e:4b:1d:b3:ba:
b4:31:11:8e:e8:8c:61:83:6f:be:fa:d0:72:29:7d:de:18:bd:
8c:3c:39:6e:85:70:f4:95:85:0d:c9:f2:6e:ac:9f:79:cb:00:
96:69:4a:5e:29:01:d7:d4:b9:f1:2d:22:20:79:07:d6:31:4e:
56:ef:3b:11:cc:cd:10:3d:15:da:6f:60:a7:df:85:6c:21:40:
25:b5:65:de:30:ac:31:8b:61:90:04:40:c6:da:41:7e:12:ba:
5f:84:25:1a:ef:32:b6:40:4b:30:73:f2:7a:1a:a8:d0:3f:26:
f5:27:98:b7:e9:e5:2e:79:bd:7a:0d:1b:b8:5e:b7:be:18:ed:
fa:45:8b:7b:8f:ca:65:63:ed:10:c3:77:36:49:8f:bd:f2:e2:
b8:24:ba:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:07:45 2025 by rpki-client