Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/THz6Tkaak7zlC4LVsxwEpQSsc_k.roa
File: THz6Tkaak7zlC4LVsxwEpQSsc_k.roa (raw, json)
Hash identifier: H2YI5ivCXtYGbLeFQjePVpserdX9fXBhZCzpmkgqzKE=
Subject key identifier: 4C:7C:FA:4E:46:9A:93:BC:E5:0B:82:D5:B3:1C:04:A5:04:AC:73:F9
Certificate issuer: /CN=b4380b9b8c070457ed54bc45d12dddd244e06d52
Certificate serial: 019422FBB58864F10334C5E2E98760477F54
Authority key identifier: B4:38:0B:9B:8C:07:04:57:ED:54:BC:45:D1:2D:DD:D2:44:E0:6D:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tDgLm4wHBFftVLxF0S3d0kTgbVI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/THz6Tkaak7zlC4LVsxwEpQSsc_k.roa
Signing time: Wed 01 Jan 2025 17:48:28 +0000
ROA not before: Wed 01 Jan 2025 17:48:28 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 36631
IP address blocks: 81.19.195.30/32 maxlen: 32
81.19.195.31/32 maxlen: 32
185.100.0.53/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:fb:b5:88:64:f1:03:34:c5:e2:e9:87:60:47:7f:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4380b9b8c070457ed54bc45d12dddd244e06d52
Validity
Not Before: Jan 1 17:48:28 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=4c7cfa4e469a93bce50b82d5b31c04a504ac73f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:df:d1:d2:28:f2:ae:8c:35:ed:68:1c:d4:c0:
f6:5a:76:f8:79:63:23:1a:dc:55:b0:22:37:f2:e5:
8f:c5:e2:25:97:87:31:39:8c:f2:1b:16:30:9a:44:
bc:f8:2d:72:f6:58:f2:bd:2f:74:86:68:13:30:6d:
e0:29:bf:20:eb:ba:4d:72:2a:81:76:cc:ab:17:f4:
d6:8b:e1:90:e8:90:9f:bc:81:ac:3f:57:4b:c0:37:
7b:d9:fa:6d:9a:f6:ad:6a:a4:31:a2:c9:c1:1f:33:
b7:1d:c6:40:ce:bc:4b:25:41:dc:bc:26:d3:cf:1e:
20:88:c5:84:f9:2b:ac:49:90:77:a8:1d:1d:e6:5c:
a8:3a:89:16:5a:a1:bb:36:44:41:9b:90:68:04:b6:
35:6b:99:29:da:c3:04:58:f1:ac:71:49:76:a4:99:
21:3b:8f:d7:b7:90:52:5b:73:0e:29:78:f2:85:b4:
1a:ff:08:8b:9d:4e:9f:a7:fe:0b:ec:a3:7b:be:5f:
14:2e:e9:de:b7:62:91:05:98:b6:fa:26:88:ce:fd:
da:79:5e:db:ed:a5:05:f5:07:24:c8:c5:ef:10:39:
68:c7:5a:88:11:86:0c:56:7e:1d:83:4d:36:6d:c1:
7c:3d:6e:2d:0f:6a:12:b6:4d:01:45:13:db:76:93:
71:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:7C:FA:4E:46:9A:93:BC:E5:0B:82:D5:B3:1C:04:A5:04:AC:73:F9
X509v3 Authority Key Identifier:
keyid:B4:38:0B:9B:8C:07:04:57:ED:54:BC:45:D1:2D:DD:D2:44:E0:6D:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tDgLm4wHBFftVLxF0S3d0kTgbVI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/THz6Tkaak7zlC4LVsxwEpQSsc_k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/tDgLm4wHBFftVLxF0S3d0kTgbVI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.19.195.30/31
185.100.0.53/32
Signature Algorithm: sha256WithRSAEncryption
c1:a5:c5:b9:34:7f:ff:2d:ca:4f:a3:24:60:a9:5b:f8:d7:74:
af:ae:89:f4:54:58:5d:44:8f:35:9f:d1:14:af:58:b4:42:db:
41:7c:d4:83:1f:4e:b9:c5:67:41:ba:8e:2e:5d:f3:ec:9e:78:
03:d5:e4:4c:f2:54:52:d9:61:0c:52:58:c0:2c:f3:23:47:a5:
20:2d:12:d9:d4:06:65:99:19:8e:1c:3f:50:09:f0:49:10:7c:
08:d0:a8:e0:9b:f0:0a:25:f0:86:f2:04:12:49:17:f8:14:cc:
ee:1a:14:1d:36:ed:4c:ab:dd:4e:fd:98:eb:f5:fd:84:24:c1:
ac:20:79:9c:3f:54:67:2a:28:3d:0a:53:fb:e7:16:c1:f9:04:
92:e1:78:40:0a:22:70:17:a6:0c:12:70:1f:5e:4c:f8:97:74:
b5:b1:2a:45:35:60:0f:26:ec:7d:09:a7:d4:13:18:78:79:4b:
da:41:59:fc:b3:aa:08:c2:6b:a0:de:a2:42:58:d4:cf:e5:c8:
2d:5a:f6:b7:db:8d:b1:bf:b8:52:e6:0b:86:aa:96:9c:09:a7:
b1:41:ad:03:07:b1:4c:7b:ce:ca:aa:4a:17:04:03:73:8f:47:
7b:bb:1f:12:c4:10:4d:de:56:6b:45:44:8c:ab:6c:54:fa:e2:
4c:f3:b8:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:21:26 2025 by rpki-client