Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/143392-d868-4a26-8543-3aa2227badfe/1/PlUFC6HKWWFjpql9DijziKwkcxw.roa
File: PlUFC6HKWWFjpql9DijziKwkcxw.roa (raw, json)
Hash identifier: 4W/hkwQltLoMthbvB9BB52pdcgOpX1UVyOI2+0P/Mmg=
Subject key identifier: 3E:55:05:0B:A1:CA:59:61:63:A6:A9:7D:0E:28:F3:88:AC:24:73:1C
Certificate issuer: /CN=5524b2e26dd3afcc5c1eac01f90263d201fbe099
Certificate serial: 0195A628D91F10A0A8FB3C2BF8C7A066D863
Authority key identifier: 55:24:B2:E2:6D:D3:AF:CC:5C:1E:AC:01:F9:02:63:D2:01:FB:E0:99
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VSSy4m3Tr8xcHqwB-QJj0gH74Jk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/143392-d868-4a26-8543-3aa2227badfe/1/PlUFC6HKWWFjpql9DijziKwkcxw.roa
Signing time: Mon 17 Mar 2025 22:10:49 +0000
ROA not before: Mon 17 Mar 2025 22:10:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 2914
IP address blocks: 193.104.245.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:a6:28:d9:1f:10:a0:a8:fb:3c:2b:f8:c7:a0:66:d8:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5524b2e26dd3afcc5c1eac01f90263d201fbe099
Validity
Not Before: Mar 17 22:10:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=3e55050ba1ca596163a6a97d0e28f388ac24731c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:b2:2b:11:8b:6d:cf:56:dc:63:8b:ba:f4:96:
6e:2e:43:76:ba:2d:91:58:f3:2d:31:60:a5:1e:28:
9e:19:39:2c:7b:8c:d7:af:9e:5e:1f:e3:fd:8f:c0:
ef:72:21:a8:f0:20:81:ed:26:73:65:41:9a:be:40:
fa:eb:fa:10:9a:13:8e:26:93:d7:2f:f4:eb:ff:cf:
19:d2:a4:02:d2:c4:7e:8e:11:6f:79:f4:7b:66:a9:
27:7c:aa:b5:af:4b:09:a5:a2:b9:42:b4:b0:fe:a9:
b5:5b:26:0c:6b:63:65:72:ac:a6:fa:19:41:c3:eb:
f8:a3:d6:fe:6d:9a:4e:09:dd:73:c1:ad:78:1a:82:
9c:b9:19:6d:ae:b6:67:9c:e6:96:09:b3:cf:85:e4:
be:20:6b:17:1d:67:15:b4:6b:01:e0:c6:9d:70:57:
6b:94:2a:cf:56:4c:fa:d4:7b:27:71:3a:88:9f:47:
4c:af:84:68:e6:84:f4:87:c2:fa:dd:fc:07:1a:75:
5e:6a:7d:e7:ef:8e:e6:3b:5b:fb:99:ce:45:6d:2b:
3b:d8:28:d1:22:ff:94:6b:f1:65:2f:58:3c:a0:7c:
7a:58:1d:66:d3:10:15:fb:62:57:fc:7e:b5:44:ab:
56:2a:e6:06:3e:c2:60:43:ea:35:8d:d8:d9:a6:f0:
d2:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:55:05:0B:A1:CA:59:61:63:A6:A9:7D:0E:28:F3:88:AC:24:73:1C
X509v3 Authority Key Identifier:
keyid:55:24:B2:E2:6D:D3:AF:CC:5C:1E:AC:01:F9:02:63:D2:01:FB:E0:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VSSy4m3Tr8xcHqwB-QJj0gH74Jk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/143392-d868-4a26-8543-3aa2227badfe/1/PlUFC6HKWWFjpql9DijziKwkcxw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/143392-d868-4a26-8543-3aa2227badfe/1/VSSy4m3Tr8xcHqwB-QJj0gH74Jk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.104.245.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:be:51:a8:4a:7e:31:bc:e5:10:26:18:2b:78:e6:52:1e:dd:
16:b9:14:4a:b4:c9:1d:52:54:52:53:b8:ce:d5:0b:b1:ed:07:
8d:cf:2e:14:e2:05:0d:a7:c4:84:9e:c7:33:ae:93:1e:c0:49:
72:42:ff:8a:43:11:7f:10:63:31:b2:27:f7:6f:0e:4b:5d:b0:
9f:f9:6d:10:5e:a2:46:81:e6:b1:8a:23:b1:54:7c:21:52:04:
78:3b:a8:c5:a5:e4:b7:e8:75:52:3f:42:bc:63:ac:80:ac:41:
1e:6a:22:61:d3:30:fa:e0:80:2e:25:36:29:7d:af:f0:8a:ac:
f0:9a:b8:93:71:3b:05:b2:17:cf:50:d6:3a:67:f5:10:95:63:
fe:fb:c9:43:78:31:01:94:9e:8b:51:62:88:01:ec:30:93:03:
77:ad:37:d4:1b:8b:f8:f8:ac:bc:9a:53:64:37:01:65:b3:f2:
7a:73:66:5f:24:95:43:a3:3b:98:04:c3:97:5b:87:48:cf:b8:
74:1a:dd:18:d8:85:38:12:94:cf:0e:06:c1:fe:f0:ad:9e:00:
25:57:37:98:0e:fe:f2:bd:5e:be:cc:83:c3:eb:5d:74:fa:c7:
01:aa:cd:ed:9b:34:96:a4:46:81:a8:d0:72:b1:35:05:6e:0f:
03:cf:1f:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 23:30:49 2025 by rpki-client