Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/Kwu503K5TQ6mKB9wIlqJIRzuA5U.roa
File: Kwu503K5TQ6mKB9wIlqJIRzuA5U.roa (raw, json)
Hash identifier: D2DY/gDYtav/Dsf8JETmsRPCOwdw9kpocKeFf8s9QAs=
Subject key identifier: 2B:0B:B9:D3:72:B9:4D:0E:A6:28:1F:70:22:5A:89:21:1C:EE:03:95
Certificate issuer: /CN=30c409613fea0a2b442ce112e9cbdb485e01188f
Certificate serial: 01942143BC49A0FB798394D5407C67B4131B
Authority key identifier: 30:C4:09:61:3F:EA:0A:2B:44:2C:E1:12:E9:CB:DB:48:5E:01:18:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MMQJYT_qCitELOES6cvbSF4BGI8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/Kwu503K5TQ6mKB9wIlqJIRzuA5U.roa
Signing time: Wed 01 Jan 2025 09:47:54 +0000
ROA not before: Wed 01 Jan 2025 09:47:54 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 201202
IP address blocks: 195.187.160.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:43:bc:49:a0:fb:79:83:94:d5:40:7c:67:b4:13:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30c409613fea0a2b442ce112e9cbdb485e01188f
Validity
Not Before: Jan 1 09:47:54 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=2b0bb9d372b94d0ea6281f70225a89211cee0395
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:ef:cb:cc:1c:7d:d2:0e:2c:19:fb:70:3e:7a:
fd:8a:9d:79:4b:35:c5:9e:a7:d0:ab:d6:b4:09:5d:
24:df:03:cf:3b:df:62:2e:89:7d:d6:4c:31:3a:45:
06:ea:2d:79:ec:09:14:76:26:0c:a6:70:9d:6f:31:
5b:3a:ab:f0:83:92:52:b1:5e:63:28:fc:1f:35:cb:
03:ce:04:d3:4c:2b:60:69:fb:6e:b1:28:83:ae:89:
6c:84:e8:04:8b:5c:69:82:dd:3f:12:8c:c9:70:ad:
8f:4f:d0:30:ac:b0:58:48:b3:ef:1d:6f:53:29:64:
a4:ba:94:f8:ed:3c:6b:83:e4:6e:86:10:95:70:6a:
eb:37:7d:f6:04:9c:40:35:91:ab:77:44:2b:11:c8:
d4:60:87:d0:af:c0:bc:c9:7d:4d:35:a7:ac:16:ea:
97:2a:dc:b8:ec:1a:c0:f8:a9:2e:8d:4c:52:51:0a:
fe:1c:99:3c:e3:1a:14:d1:49:4e:ec:d5:1e:27:d9:
4d:66:94:4f:7b:28:69:66:c4:53:75:e0:bc:ec:29:
09:b9:79:1f:6d:f0:2e:69:0e:47:09:b2:d2:f3:26:
b8:61:90:d3:45:25:67:b6:23:9a:0a:dd:6a:d4:ce:
8a:de:52:c8:dc:1b:e2:70:59:ca:81:33:12:89:0c:
79:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:0B:B9:D3:72:B9:4D:0E:A6:28:1F:70:22:5A:89:21:1C:EE:03:95
X509v3 Authority Key Identifier:
keyid:30:C4:09:61:3F:EA:0A:2B:44:2C:E1:12:E9:CB:DB:48:5E:01:18:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MMQJYT_qCitELOES6cvbSF4BGI8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/Kwu503K5TQ6mKB9wIlqJIRzuA5U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/MMQJYT_qCitELOES6cvbSF4BGI8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.187.160.0/24
Signature Algorithm: sha256WithRSAEncryption
29:6e:e0:07:b8:16:e0:6a:ca:15:ae:76:17:8b:f7:05:97:56:
18:45:22:5c:94:b6:1d:cd:d7:8c:f9:70:84:29:05:c9:75:52:
ef:c1:3c:67:72:df:96:16:f8:f9:3b:5c:71:40:d2:57:81:b1:
2f:b9:34:90:8a:23:c9:36:28:d0:f5:23:1a:4c:e6:d5:ad:e9:
09:be:28:a6:38:ea:49:2f:36:70:22:52:5e:05:ef:0a:fd:f3:
7c:39:f0:a8:ed:3b:7e:c8:78:b3:fd:d8:cf:e9:1b:76:9f:bd:
bf:96:b5:c8:99:ea:da:41:cd:af:7a:df:cc:31:fb:52:8e:00:
44:a0:c0:dd:d9:17:1b:5c:87:67:0d:99:52:33:c6:60:96:47:
28:8b:6d:61:60:a5:e1:41:ce:99:0c:42:87:11:f8:2c:a3:49:
9c:ab:d1:53:60:3f:e2:a0:23:11:c6:00:26:c8:ab:d3:0e:3d:
a4:60:05:3c:93:3e:ba:17:d6:83:1a:7e:5e:c7:a0:20:93:dd:
6d:9c:e9:0b:ed:85:e8:17:7e:ab:18:b8:86:b9:87:0e:2f:86:
65:79:d4:c3:ec:38:10:fc:17:e0:3b:8f:86:4f:7e:91:2f:9b:
57:b8:d4:ab:3e:36:af:5a:da:b3:50:19:14:1a:c1:e9:1b:ee:
16:89:a4:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 14:19:47 2025 by rpki-client