Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/03bf28-c55d-4c7a-91bb-91646bf0153d/1/TDMrt1P1gCHwvoGmH1EuT7lA4wU.roa
File: TDMrt1P1gCHwvoGmH1EuT7lA4wU.roa (raw, json)
Hash identifier: XiBPhE3TLU1BuZaHa1qGrBxFPh5DC9L1nSoO49zFSn0=
Subject key identifier: 4C:33:2B:B7:53:F5:80:21:F0:BE:81:A6:1F:51:2E:4F:B9:40:E3:05
Certificate issuer: /CN=95b30111b0b720a209f788c8b90f60380b465c2e
Certificate serial: 019424455DB30DD508A9E47BCB829ADB4F48
Authority key identifier: 95:B3:01:11:B0:B7:20:A2:09:F7:88:C8:B9:0F:60:38:0B:46:5C:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lbMBEbC3IKIJ94jIuQ9gOAtGXC4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/03bf28-c55d-4c7a-91bb-91646bf0153d/1/TDMrt1P1gCHwvoGmH1EuT7lA4wU.roa
Signing time: Wed 01 Jan 2025 23:48:33 +0000
ROA not before: Wed 01 Jan 2025 23:48:33 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 200811
IP address blocks: 185.98.32.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:45:5d:b3:0d:d5:08:a9:e4:7b:cb:82:9a:db:4f:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=95b30111b0b720a209f788c8b90f60380b465c2e
Validity
Not Before: Jan 1 23:48:33 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=4c332bb753f58021f0be81a61f512e4fb940e305
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:52:70:54:87:08:58:b1:46:5e:a0:b9:8e:f1:
83:d0:bb:a7:d9:35:70:71:08:c9:11:8a:81:05:94:
3a:ac:e2:7c:e4:90:86:44:97:91:ed:a3:e9:a9:e1:
a9:28:3b:e6:6e:eb:4d:e5:54:99:75:5b:29:6a:a0:
f9:4e:86:3f:89:c4:f6:69:60:78:67:fa:83:14:7a:
e4:10:1c:11:3d:c4:ab:1a:b3:2e:6c:41:42:45:cf:
25:2e:b3:d6:7f:2a:62:e1:f9:bb:43:ef:9e:d4:a3:
2a:18:41:ef:2d:6e:a1:29:c2:c5:44:6c:5d:34:ab:
37:92:ca:42:97:9a:69:58:c3:c0:44:98:0b:c4:50:
e1:94:8f:51:11:42:52:3d:45:95:d7:03:34:c4:7d:
71:c7:d2:f1:46:f4:3c:99:68:de:33:c1:df:b4:8c:
58:70:6c:2e:85:5b:55:4c:27:82:db:41:15:8f:87:
90:88:15:53:3c:6e:98:b9:ea:48:62:fe:0e:cb:59:
c6:88:28:1b:c1:77:5a:3b:68:73:b1:18:a6:d2:71:
7d:fb:74:63:f9:98:b0:5e:1d:50:77:09:88:37:64:
43:00:ea:f1:68:3f:51:c3:a0:6d:fe:ee:22:fb:e9:
df:15:c0:29:6b:8b:9f:e8:91:0b:40:42:8d:13:ab:
0a:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:33:2B:B7:53:F5:80:21:F0:BE:81:A6:1F:51:2E:4F:B9:40:E3:05
X509v3 Authority Key Identifier:
keyid:95:B3:01:11:B0:B7:20:A2:09:F7:88:C8:B9:0F:60:38:0B:46:5C:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lbMBEbC3IKIJ94jIuQ9gOAtGXC4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/03bf28-c55d-4c7a-91bb-91646bf0153d/1/TDMrt1P1gCHwvoGmH1EuT7lA4wU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/03bf28-c55d-4c7a-91bb-91646bf0153d/1/lbMBEbC3IKIJ94jIuQ9gOAtGXC4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.98.32.0/22
Signature Algorithm: sha256WithRSAEncryption
82:88:dc:33:c9:02:56:b4:2c:4e:1a:7c:3c:c9:66:c1:4d:d6:
bd:a2:46:5d:b7:0a:58:ca:f9:ba:fa:d7:e8:d2:c7:bf:a5:25:
59:f6:b5:30:0f:5f:e8:5d:3f:51:48:80:c6:67:f6:94:e3:98:
59:2f:14:3e:d7:22:c2:a3:0f:7c:0a:87:4b:8f:c9:20:24:6a:
b0:23:4f:c9:cf:2a:f2:28:08:db:df:5d:21:76:4a:c0:5d:b7:
59:fb:af:4d:c8:db:04:a2:7d:38:0f:85:df:df:d4:9a:45:0c:
08:71:21:a7:98:f7:39:5b:ce:3c:3b:45:b1:cb:3b:5d:98:cb:
af:0d:be:3a:dd:a3:22:93:40:62:a0:98:36:58:77:65:23:be:
9a:33:48:bd:57:c4:9a:ed:22:5a:07:11:9e:b9:ba:16:15:3c:
2d:d8:1b:c9:77:83:ba:7c:7e:55:8e:aa:ab:a9:4f:f2:bf:f5:
36:99:d7:e4:2e:c7:af:14:9a:31:86:09:e6:c6:a5:9e:71:b3:
ab:5d:44:51:61:ad:d4:ad:24:7e:dc:b2:c8:2a:30:d6:34:5f:
38:27:b8:3e:0e:67:4d:7b:06:88:81:d6:2d:e0:87:cc:d0:82:
cd:3a:f4:56:53:e8:22:75:11:ed:17:44:4f:de:c0:ca:0b:fe:
32:31:6b:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 05:45:42 2025 by rpki-client