Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/a43766-91dd-4266-af60-920b320d2e21/1/v1PRoA5ebsh_hlHI-WdJ9oH7RYY.roa
File: v1PRoA5ebsh_hlHI-WdJ9oH7RYY.roa (raw, json)
Hash identifier: g731f8Kk7ZRmBzHdANv/XJyJm7Gc4rKXDwNwW3MJnpw=
Subject key identifier: BF:53:D1:A0:0E:5E:6E:C8:7F:86:51:C8:F9:67:49:F6:81:FB:45:86
Certificate issuer: /CN=09876f7dcf0ccae7742160463b38e1c35f356d12
Certificate serial: 019423D749BED54CAB2AEFF0AFE25179BE30
Authority key identifier: 09:87:6F:7D:CF:0C:CA:E7:74:21:60:46:3B:38:E1:C3:5F:35:6D:12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CYdvfc8Myud0IWBGOzjhw181bRI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/a43766-91dd-4266-af60-920b320d2e21/1/v1PRoA5ebsh_hlHI-WdJ9oH7RYY.roa
Signing time: Wed 01 Jan 2025 21:48:19 +0000
ROA not before: Wed 01 Jan 2025 21:48:19 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 209386
IP address blocks: 193.29.44.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:d7:49:be:d5:4c:ab:2a:ef:f0:af:e2:51:79:be:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09876f7dcf0ccae7742160463b38e1c35f356d12
Validity
Not Before: Jan 1 21:48:19 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=bf53d1a00e5e6ec87f8651c8f96749f681fb4586
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:56:91:f2:a5:78:75:3e:14:1a:29:ad:ec:7e:
de:c0:d8:97:7c:3e:d0:d0:60:7d:5f:cc:75:9b:37:
22:4c:74:65:0c:88:e1:7e:65:5a:ae:03:40:7e:16:
e2:06:a2:b8:14:c9:d9:fa:bb:ec:73:bf:2c:80:30:
99:34:12:67:1b:29:63:d9:17:c8:65:c9:d9:db:14:
34:bc:2e:84:3c:68:87:4e:ca:4b:1c:ae:9d:16:0a:
85:df:d3:4a:d6:a0:94:ea:28:45:f7:c8:99:9b:7f:
e2:ae:96:26:10:ab:f9:73:78:a7:4f:dd:69:d5:09:
89:ce:42:79:63:54:5f:35:95:28:68:be:e8:2f:c2:
ff:b8:7a:79:28:31:ec:ea:6f:5b:d6:04:ef:ef:01:
e4:54:27:c1:c6:14:9c:b8:d1:bd:52:32:b9:18:7a:
ac:26:12:21:14:27:8e:cb:a4:31:34:e8:6c:dc:bd:
1c:a3:6f:c3:1f:65:b2:e1:f2:d4:35:36:6f:84:eb:
47:df:d2:53:fb:56:fe:80:41:26:8b:00:74:3c:01:
10:a7:aa:c3:59:05:75:e4:0f:4b:5e:ac:21:15:4d:
00:48:40:83:ae:67:33:42:00:bb:26:2b:62:07:0f:
2c:77:6d:7d:b7:d9:74:03:09:02:a5:81:92:89:42:
ab:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:53:D1:A0:0E:5E:6E:C8:7F:86:51:C8:F9:67:49:F6:81:FB:45:86
X509v3 Authority Key Identifier:
keyid:09:87:6F:7D:CF:0C:CA:E7:74:21:60:46:3B:38:E1:C3:5F:35:6D:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CYdvfc8Myud0IWBGOzjhw181bRI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/a43766-91dd-4266-af60-920b320d2e21/1/v1PRoA5ebsh_hlHI-WdJ9oH7RYY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/a43766-91dd-4266-af60-920b320d2e21/1/CYdvfc8Myud0IWBGOzjhw181bRI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.29.44.0/22
Signature Algorithm: sha256WithRSAEncryption
90:d6:6f:ad:57:d4:11:48:0a:87:61:7e:69:77:a3:57:76:8b:
39:7f:4e:6d:6f:04:ae:78:d2:2c:01:f4:14:3c:9e:40:4b:4b:
be:00:27:73:ab:fb:03:ce:00:61:d1:2b:f1:1f:56:77:c5:a4:
a3:96:ea:3d:7e:88:8a:b8:ee:c8:8a:1e:43:67:4e:72:f1:b2:
8f:c3:aa:82:5a:b9:65:95:ea:d3:9c:d7:a1:6b:f8:3e:a5:57:
3c:b4:ce:7c:5a:1a:86:f3:eb:18:2a:18:3b:92:b0:88:c5:e1:
5d:14:31:42:af:e1:da:0c:cd:e5:58:22:4e:40:40:34:be:04:
37:7b:a8:3a:0d:cf:3e:61:89:5f:32:54:00:b8:b3:b1:0f:a6:
22:87:6e:60:4f:0d:de:bf:f1:92:90:08:9b:f4:8e:67:74:5d:
03:e9:dd:89:cd:65:52:23:b8:14:f3:55:e9:25:15:e8:dd:92:
fa:0f:2e:29:0b:f8:22:a3:ee:88:02:44:b5:ef:53:e8:ea:a5:
18:6d:8b:1a:8f:79:16:f6:c9:52:ef:48:aa:44:e3:96:38:d4:
e0:72:db:cb:4e:18:08:78:52:4a:84:17:0a:eb:65:62:c5:d8:
4f:02:28:40:86:2f:c6:15:a1:cb:bf:04:26:47:13:04:a7:14:
f1:b2:a4:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 04:03:47 2025 by rpki-client