Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/6f9604-480c-4837-aff2-d5c1aa5ae398/1/IPJ2H-DbyJS39-MqiGd6rorhNdk.roa
File: IPJ2H-DbyJS39-MqiGd6rorhNdk.roa (raw, json)
Hash identifier: s/YiZX5EGRobWwsqigpJwSULaBic38Nv8k8vwPxeO3c=
Subject key identifier: 20:F2:76:1F:E0:DB:C8:94:B7:F7:E3:2A:88:67:7A:AE:8A:E1:35:D9
Certificate issuer: /CN=f8753e2f7230ddb7bc0e64e358af97c318d88b6a
Certificate serial: 019424B3AAA4D58EACFD24623D3F2682B9CD
Authority key identifier: F8:75:3E:2F:72:30:DD:B7:BC:0E:64:E3:58:AF:97:C3:18:D8:8B:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-HU-L3Iw3be8DmTjWK-XwxjYi2o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/6f9604-480c-4837-aff2-d5c1aa5ae398/1/IPJ2H-DbyJS39-MqiGd6rorhNdk.roa
Signing time: Thu 02 Jan 2025 01:49:01 +0000
ROA not before: Thu 02 Jan 2025 01:49:01 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 42491
IP address blocks: 193.72.166.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:b3:aa:a4:d5:8e:ac:fd:24:62:3d:3f:26:82:b9:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8753e2f7230ddb7bc0e64e358af97c318d88b6a
Validity
Not Before: Jan 2 01:49:01 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=20f2761fe0dbc894b7f7e32a88677aae8ae135d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:f5:71:dd:5c:a9:46:4e:b3:ea:fd:b1:b1:07:
41:35:93:cc:8b:67:ee:0e:35:64:94:62:4e:2f:1a:
9c:f8:d1:a1:b0:07:82:26:21:d9:f7:dc:ce:35:1d:
79:a5:97:aa:4b:d6:9c:ee:67:83:81:d7:1c:d9:41:
e8:73:7e:e0:47:5a:9e:de:8f:6c:a8:0c:8d:a1:f1:
60:48:ed:8f:ff:9e:b2:59:4f:2e:92:72:0f:98:54:
31:92:58:ed:bd:94:65:b3:ea:ca:1f:89:0a:b5:4d:
09:07:5d:cb:6d:cf:5a:6c:71:6a:8c:ff:2b:07:5b:
84:7d:c1:7f:b0:97:07:81:a6:b7:b0:f1:f1:ba:cd:
0c:87:82:05:f9:cc:da:7f:2f:4a:59:02:61:fd:e7:
76:4f:85:0c:76:b0:2b:bd:45:e4:10:1f:5e:cf:ad:
c5:74:3f:54:51:dd:e4:53:6c:5d:27:27:b3:a0:48:
32:e3:08:be:42:2c:c2:54:48:49:c7:43:4a:23:69:
64:ab:a3:f8:d6:db:e5:7e:47:39:f5:85:a4:1e:84:
ad:6a:15:a3:06:89:1c:3d:5c:fd:9f:6f:c4:51:56:
27:e6:cf:8b:e8:16:f5:64:37:d5:e7:f6:9f:9a:d7:
1d:b5:44:1a:8b:ea:85:92:2b:bb:72:64:6f:ad:7d:
fa:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:F2:76:1F:E0:DB:C8:94:B7:F7:E3:2A:88:67:7A:AE:8A:E1:35:D9
X509v3 Authority Key Identifier:
keyid:F8:75:3E:2F:72:30:DD:B7:BC:0E:64:E3:58:AF:97:C3:18:D8:8B:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-HU-L3Iw3be8DmTjWK-XwxjYi2o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/6f9604-480c-4837-aff2-d5c1aa5ae398/1/IPJ2H-DbyJS39-MqiGd6rorhNdk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/6f9604-480c-4837-aff2-d5c1aa5ae398/1/1-HU-L3Iw3be8DmTjWK-XwxjYi2o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.72.166.0/24
Signature Algorithm: sha256WithRSAEncryption
51:3b:0a:9b:08:98:85:a6:d4:e2:cb:b5:4b:1e:3b:ba:48:03:
f1:cc:8e:f1:2c:f8:cc:76:2c:8c:42:7a:14:31:12:1a:c9:d9:
63:4c:d4:8e:eb:dc:48:9f:7e:63:3a:57:7f:79:8e:05:dc:38:
ba:e7:3f:d1:d9:0c:72:e3:07:4f:23:7b:84:8a:67:91:71:66:
75:5d:8f:0c:c9:ea:0a:0c:fd:dd:9a:af:31:a2:47:2b:b8:f6:
c5:8a:bb:7f:27:54:b2:73:c2:3c:57:81:46:e1:5b:38:fb:a9:
6f:f7:ad:55:7e:7c:3c:d6:14:ff:71:e8:b6:63:4f:37:23:8c:
12:c8:da:aa:9a:93:d1:de:05:cd:77:a1:ca:ce:db:8e:ec:8f:
c7:54:64:a4:23:5a:fb:c9:9f:d4:53:0b:ee:4b:35:6b:91:33:
73:52:cb:0a:49:ba:21:65:57:84:c6:3a:d3:ff:32:61:79:d9:
1c:e1:48:84:84:e4:fd:fd:2e:1e:a6:9e:a2:49:cc:30:02:a2:
5e:99:ad:18:87:ff:8c:1f:3f:90:35:4f:23:fc:6b:a9:67:aa:
88:b8:73:93:c1:1f:04:21:b4:21:04:36:55:a3:00:db:0a:ed:
f5:e2:e9:0c:03:11:d1:e2:71:d5:e9:4d:ec:18:56:f0:f9:14:
ef:f5:ff:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 08:25:30 2025 by rpki-client