Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/241882-a437-4ab3-b38e-5028c259b267/1/NA5mgzoDK6jbbKh48XeliWtbDYM.roa
File: NA5mgzoDK6jbbKh48XeliWtbDYM.roa (raw, json)
Hash identifier: 9nIV3wU01lTdftDhSQVjEb+D2h3DXok24aEDQGNAM3o=
Subject key identifier: 34:0E:66:83:3A:03:2B:A8:DB:6C:A8:78:F1:77:A5:89:6B:5B:0D:83
Certificate issuer: /CN=ca64dabd9bc46485f6a91636ede753da38c8f364
Certificate serial: 019420D605CCE7D2D9155C5E300C5C29F464
Authority key identifier: CA:64:DA:BD:9B:C4:64:85:F6:A9:16:36:ED:E7:53:DA:38:C8:F3:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ymTavZvEZIX2qRY27edT2jjI82Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/241882-a437-4ab3-b38e-5028c259b267/1/NA5mgzoDK6jbbKh48XeliWtbDYM.roa
Signing time: Wed 01 Jan 2025 07:48:04 +0000
ROA not before: Wed 01 Jan 2025 07:48:04 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 44381
IP address blocks: 193.160.138.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:d6:05:cc:e7:d2:d9:15:5c:5e:30:0c:5c:29:f4:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca64dabd9bc46485f6a91636ede753da38c8f364
Validity
Not Before: Jan 1 07:48:04 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=340e66833a032ba8db6ca878f177a5896b5b0d83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:75:48:15:a3:e5:23:30:d8:f7:35:a6:d4:6f:
68:a4:02:dd:3a:06:8b:ed:29:dc:18:f3:39:c7:be:
b6:82:93:ff:5c:95:9d:79:7b:ed:8a:6d:d4:b1:2f:
d3:24:e6:51:3f:46:c2:73:79:6e:76:51:8f:78:60:
51:17:ed:b4:80:ef:14:15:36:b7:34:7d:b9:e3:a8:
7f:1a:e6:e3:aa:48:e4:0d:5f:89:81:19:9e:6b:02:
6c:ea:d2:52:2e:7b:05:d9:79:e5:40:71:d1:48:0e:
e1:31:e6:a3:1e:1b:1d:c6:1b:12:9d:be:e8:b0:e7:
a9:1e:f2:5f:34:08:37:b5:5f:8f:14:2c:ed:27:e4:
74:67:0f:55:05:57:35:62:cd:3b:d1:de:76:af:5b:
85:12:40:85:5f:69:ad:37:7a:d4:ee:35:6d:2d:2a:
76:b5:49:ef:ef:e5:de:e3:1d:04:0a:f7:2d:f0:5d:
ee:fb:ae:fc:06:d2:44:87:e2:f0:09:7f:6c:21:4a:
e0:f3:ba:d7:fe:e0:a4:d1:f9:e4:ba:93:67:60:0f:
9a:5f:20:a9:dc:1a:3c:29:08:66:ea:ba:2f:0d:06:
9a:8e:0e:d4:df:ad:9d:94:9d:60:34:b4:1d:a2:2d:
47:61:35:53:6c:ee:e1:90:aa:9d:50:46:c9:3b:7a:
4f:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:0E:66:83:3A:03:2B:A8:DB:6C:A8:78:F1:77:A5:89:6B:5B:0D:83
X509v3 Authority Key Identifier:
keyid:CA:64:DA:BD:9B:C4:64:85:F6:A9:16:36:ED:E7:53:DA:38:C8:F3:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ymTavZvEZIX2qRY27edT2jjI82Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/241882-a437-4ab3-b38e-5028c259b267/1/NA5mgzoDK6jbbKh48XeliWtbDYM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/241882-a437-4ab3-b38e-5028c259b267/1/ymTavZvEZIX2qRY27edT2jjI82Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.160.138.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:09:bb:ef:2a:e9:1c:9b:fc:a9:0b:58:71:22:b1:64:70:d0:
2c:9a:47:86:b4:d7:03:bb:57:4f:1d:bf:63:78:0a:c4:14:60:
5d:39:b3:08:9f:d7:6f:1b:ed:0b:76:08:09:89:2f:f1:9b:47:
f5:a5:5e:cb:26:e8:bf:93:40:f9:0c:48:6b:0b:10:b3:9a:86:
08:9f:e0:13:77:3b:9a:0f:7b:32:06:b8:07:e5:c5:4a:8b:d7:
56:77:01:26:c0:5b:eb:5d:0d:31:76:12:cb:d8:12:99:5d:d4:
59:a6:6a:df:c1:20:bd:f7:00:91:ea:fa:57:0b:d2:29:0a:5a:
22:a8:77:e0:47:a7:d8:59:62:13:e6:ed:92:cf:b5:97:47:73:
0d:f2:eb:2f:2b:d3:52:a0:0d:55:70:c3:c5:8a:56:a0:14:55:
7e:f3:d0:81:39:fa:a1:a9:ed:94:d3:75:28:27:ac:8b:7f:8d:
fa:2b:36:f6:35:17:90:5b:2a:fb:f8:dd:ba:19:6d:34:85:fb:
f9:b1:2b:1a:9e:46:71:ff:9c:27:d5:73:c8:2f:74:a2:c1:f3:
71:b2:c5:5e:68:cc:fd:19:58:72:48:c8:18:4b:88:49:23:d2:
95:dc:ba:fe:3a:27:04:46:8d:41:76:c8:84:ea:29:00:0a:13:
fe:d1:f6:0d
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQg1gXM59LZFVxeMAxcKfRkMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNhNjRkYWJkOWJjNDY0ODVmNmE5MTYzNmVkZTc1M2RhMzhj
OGYzNjQwHhcNMjUwMTAxMDc0ODA0WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzNDBlNjY4MzNhMDMyYmE4ZGI2Y2E4NzhmMTc3YTU4OTZiNWIwZDgzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlXVIFaPlIzDY9zWm1G9opALdOgaL
7SncGPM5x762gpP/XJWdeXvtim3UsS/TJOZRP0bCc3ludlGPeGBRF+20gO8UFTa3
NH2546h/GubjqkjkDV+JgRmeawJs6tJSLnsF2XnlQHHRSA7hMeajHhsdxhsSnb7o
sOepHvJfNAg3tV+PFCztJ+R0Zw9VBVc1Ys070d52r1uFEkCFX2mtN3rU7jVtLSp2
tUnv7+Xe4x0ECvct8F3u+678BtJEh+LwCX9sIUrg87rX/uCk0fnkupNnYA+aXyCp
3Bo8KQhm6rovDQaajg7U362dlJ1gNLQdoi1HYTVTbO7hkKqdUEbJO3pPDwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDQOZoM6Ayuo22yoePF3pYlrWw2DMB8GA1UdIwQY
MBaAFMpk2r2bxGSF9qkWNu3nU9o4yPNkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveW1UYXZadkVaSVgycVJZMjdlZFQyampJODJRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOC8yNDE4ODItYTQzNy00YWIzLWIzOGUt
NTAyOGMyNTliMjY3LzEvTkE1bWd6b0RLNmpiYktoNDhYZWxpV3RiRFlNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wOC8yNDE4ODItYTQzNy00YWIzLWIzOGUtNTAyOGMyNTliMjY3
LzEveW1UYXZadkVaSVgycVJZMjdlZFQyampJODJRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwaCKMA0G
CSqGSIb3DQEBCwUAA4IBAQAsCbvvKukcm/ypC1hxIrFkcNAsmkeGtNcDu1dPHb9j
eArEFGBdObMIn9dvG+0LdggJiS/xm0f1pV7LJui/k0D5DEhrCxCzmoYIn+ATdzua
D3syBrgH5cVKi9dWdwEmwFvrXQ0xdhLL2BKZXdRZpmrfwSC99wCR6vpXC9IpCloi
qHfgR6fYWWIT5u2Sz7WXR3MN8usvK9NSoA1VcMPFilagFFV+89CBOfqhqe2U03Uo
J6yLf436Kzb2NReQWyr7+N26GW00hfv5sSsankZx/5wn1XPIL3SiwfNxssVeaMz9
GVhySMgYS4hJI9KV3Lr+OicERo1BdsiE6ikAChP+0fYN
-----END CERTIFICATE-----
Generated at Fri Apr 25 07:57:50 2025 by rpki-client