Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/813cbc-4fa4-4646-a8db-1d28a60e0e30/1/LbBUCL65r2B63EtnXKf7awdkLYs.roa
File: LbBUCL65r2B63EtnXKf7awdkLYs.roa (raw, json)
Hash identifier: 2aoR9do7AfxOMNUBvut0kk7xNv4cPQ2DW93XsHzKCbI=
Subject key identifier: 2D:B0:54:08:BE:B9:AF:60:7A:DC:4B:67:5C:A7:FB:6B:07:64:2D:8B
Certificate issuer: /CN=07d44a52778aa65f736e72436003f6654f268318
Certificate serial: 0194252198C5AA2E35BF045AA1FF0C623829
Authority key identifier: 07:D4:4A:52:77:8A:A6:5F:73:6E:72:43:60:03:F6:65:4F:26:83:18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B9RKUneKpl9zbnJDYAP2ZU8mgxg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/813cbc-4fa4-4646-a8db-1d28a60e0e30/1/LbBUCL65r2B63EtnXKf7awdkLYs.roa
Signing time: Thu 02 Jan 2025 03:49:06 +0000
ROA not before: Thu 02 Jan 2025 03:49:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 20523
IP address blocks: 193.224.239.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:21:98:c5:aa:2e:35:bf:04:5a:a1:ff:0c:62:38:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07d44a52778aa65f736e72436003f6654f268318
Validity
Not Before: Jan 2 03:49:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=2db05408beb9af607adc4b675ca7fb6b07642d8b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:39:25:75:cc:be:46:2a:d2:99:66:9d:f6:da:
d4:54:34:f6:47:4b:83:9f:75:f9:7e:71:54:58:d1:
cc:1c:3e:75:85:71:ab:40:2f:6f:60:10:61:09:5c:
43:a5:97:86:0f:df:b4:96:69:73:08:ee:6e:a4:c6:
b7:fd:58:5d:20:ee:73:66:b2:1c:9a:91:b6:77:49:
1e:bd:32:22:66:1a:9b:ca:43:fe:f4:74:7d:3f:b5:
95:70:71:0d:a3:ff:a2:64:8a:61:64:46:33:f9:15:
ff:94:77:22:74:f0:0a:fa:0f:2c:60:85:90:7b:ea:
77:92:6d:3b:b5:c0:c0:d1:ea:76:aa:e1:4d:92:fe:
86:a2:97:fe:c8:c3:d4:d5:a9:dd:83:57:b5:fb:cc:
4d:3d:ec:fe:d8:73:73:95:84:2a:ac:bd:dc:f3:85:
88:d9:cf:11:a6:f7:5b:b0:31:99:d3:79:5e:86:93:
8d:f3:32:d8:02:44:a2:c2:52:83:e2:06:96:e4:21:
94:34:fc:ee:07:55:c2:eb:93:ee:41:55:23:f3:53:
f3:b8:3c:48:89:2b:3e:ac:5b:dc:1a:71:41:e5:14:
c3:d4:ea:fa:b2:ec:60:c0:76:53:55:54:af:17:6c:
c8:36:d2:c8:2b:ad:9e:0f:58:c8:a3:42:bd:e4:aa:
2d:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:B0:54:08:BE:B9:AF:60:7A:DC:4B:67:5C:A7:FB:6B:07:64:2D:8B
X509v3 Authority Key Identifier:
keyid:07:D4:4A:52:77:8A:A6:5F:73:6E:72:43:60:03:F6:65:4F:26:83:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B9RKUneKpl9zbnJDYAP2ZU8mgxg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/813cbc-4fa4-4646-a8db-1d28a60e0e30/1/LbBUCL65r2B63EtnXKf7awdkLYs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/813cbc-4fa4-4646-a8db-1d28a60e0e30/1/B9RKUneKpl9zbnJDYAP2ZU8mgxg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.224.239.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:3e:fc:60:81:c1:70:80:3a:e6:f5:ae:e1:cf:81:13:7d:cd:
51:08:20:25:4d:54:f5:fa:10:8c:ab:9e:bc:4a:db:41:59:75:
01:06:53:83:12:4f:e6:5d:93:a9:45:e2:f5:fe:e5:df:20:0d:
35:26:f2:44:43:48:04:78:10:2d:3e:e3:09:43:fc:38:d5:43:
03:1c:47:10:c2:48:2e:2c:7f:3d:59:7e:fa:18:8b:30:77:cb:
01:19:95:d6:33:3c:07:07:71:3c:bf:1b:a5:6c:b7:8e:9a:5b:
eb:32:3e:3e:2a:01:a1:6a:1c:ed:89:06:ea:18:f6:e2:6e:c4:
1b:ea:ce:b6:52:31:68:2b:ba:fc:32:26:ed:57:04:95:f8:a1:
bf:21:a9:13:8b:0c:11:ee:fd:ec:4a:e9:0a:d8:8b:89:a2:87:
e5:d7:69:21:20:3b:b1:39:b6:1a:8f:f2:35:a2:d2:a2:35:04:
ec:85:2c:69:c7:6d:9d:4c:1b:80:a6:a2:aa:61:2f:ec:10:4f:
e6:90:45:ff:6d:e0:49:ce:8a:77:f3:6d:75:ec:a2:b6:8c:8c:
05:d9:bf:45:ba:c7:19:41:c3:51:34:b2:38:1e:e5:bc:db:a5:
af:c3:47:54:78:12:23:0a:39:3c:5b:4a:bb:35:e0:1d:74:98:
79:49:80:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 12:47:31 2025 by rpki-client