Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/97004b-b671-4f3d-8d50-d1a4a45fafbc/1/PMD1GlDLGk7gMbwF-9_w1YlsV4M.roa
File: PMD1GlDLGk7gMbwF-9_w1YlsV4M.roa (raw, json)
Hash identifier: yxn0bsBf+yoGp2ebzQpXlOvhqAaQoPdbhmTGHyH8IaM=
Subject key identifier: 3C:C0:F5:1A:50:CB:1A:4E:E0:31:BC:05:FB:DF:F0:D5:89:6C:57:83
Certificate issuer: /CN=de2ba29aa0113fafd370d865fb4444987b47308a
Certificate serial: 0194228E1B14F82E384C04023664FE2091D0
Authority key identifier: DE:2B:A2:9A:A0:11:3F:AF:D3:70:D8:65:FB:44:44:98:7B:47:30:8A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3iuimqARP6_TcNhl-0REmHtHMIo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/97004b-b671-4f3d-8d50-d1a4a45fafbc/1/PMD1GlDLGk7gMbwF-9_w1YlsV4M.roa
Signing time: Wed 01 Jan 2025 15:48:45 +0000
ROA not before: Wed 01 Jan 2025 15:48:45 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 50194
IP address blocks: 193.104.165.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:8e:1b:14:f8:2e:38:4c:04:02:36:64:fe:20:91:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de2ba29aa0113fafd370d865fb4444987b47308a
Validity
Not Before: Jan 1 15:48:45 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=3cc0f51a50cb1a4ee031bc05fbdff0d5896c5783
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:5c:36:ed:8e:da:b2:41:07:44:af:5e:b8:cc:
85:e8:54:2a:da:51:d7:18:96:c0:39:0f:aa:4f:39:
68:ce:e6:f5:7f:57:83:a6:b3:c3:1e:c8:30:d6:34:
cf:fe:df:ab:3f:42:7d:b0:47:1c:d0:ea:03:7e:9f:
97:64:e6:30:f5:e0:7a:dc:51:c3:79:46:f9:45:b3:
40:34:ce:ca:03:7a:d6:5a:56:da:53:13:49:99:87:
fd:4b:0e:af:44:e2:43:79:ed:48:95:ab:b8:83:82:
e4:51:30:8c:77:21:d3:e8:2e:3a:97:d9:ee:99:57:
41:53:e5:d0:5b:89:20:40:dd:bd:f5:08:78:25:00:
5c:6f:76:aa:67:eb:94:1c:15:41:1f:57:0f:e2:ed:
28:e9:07:e8:1d:be:d6:25:97:b5:30:4a:a6:be:1e:
71:b4:ed:be:9e:17:f8:48:41:b4:0f:25:02:f8:1c:
ea:14:17:98:25:fa:13:95:4d:82:93:c8:59:70:97:
cd:7e:20:63:be:f9:90:e3:6c:c3:17:92:c8:dc:db:
6b:be:7b:0f:5d:53:66:d0:e6:af:9e:46:d4:84:39:
ff:d9:55:ae:7b:90:36:0d:a9:67:a2:f7:10:d4:03:
b0:53:4b:30:d9:39:cc:fe:a3:98:6b:b1:b1:6f:85:
54:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:C0:F5:1A:50:CB:1A:4E:E0:31:BC:05:FB:DF:F0:D5:89:6C:57:83
X509v3 Authority Key Identifier:
keyid:DE:2B:A2:9A:A0:11:3F:AF:D3:70:D8:65:FB:44:44:98:7B:47:30:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3iuimqARP6_TcNhl-0REmHtHMIo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/97004b-b671-4f3d-8d50-d1a4a45fafbc/1/PMD1GlDLGk7gMbwF-9_w1YlsV4M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/97004b-b671-4f3d-8d50-d1a4a45fafbc/1/3iuimqARP6_TcNhl-0REmHtHMIo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.104.165.0/24
Signature Algorithm: sha256WithRSAEncryption
20:b4:b3:3d:15:b8:13:3d:67:8b:0f:aa:a1:d1:6d:76:78:1d:
16:bc:a8:0d:98:7f:64:8b:fa:b5:80:ad:e9:b8:ba:30:f3:dc:
3f:4d:44:13:5d:95:59:7f:e1:26:6f:c6:c1:00:04:f8:98:19:
4c:45:6f:b4:1f:01:0c:aa:42:46:d1:9d:72:37:4a:5d:54:ac:
a5:1a:73:f7:b2:b4:22:24:d7:87:84:87:fb:eb:73:c4:10:3a:
7a:38:5b:67:8d:68:8f:2c:26:56:79:4d:f3:25:d0:98:6b:fa:
22:18:f1:6c:5d:28:4e:0c:e9:16:e0:38:5c:11:f3:e3:bb:33:
d2:71:f2:b0:d7:64:75:0b:11:6f:a7:b7:57:72:86:dd:e5:55:
ff:0d:3d:ca:4d:9a:60:a3:2c:9c:2c:32:5c:99:5f:f4:ff:c6:
9d:02:6a:db:e3:2b:24:7f:62:93:a8:38:4b:c2:c8:d8:29:ba:
ff:60:94:ff:fc:8f:2d:7b:0f:83:88:68:ac:8d:62:2e:4c:25:
db:28:36:9b:ef:c8:7e:12:33:6e:ad:9e:87:58:4c:20:4b:08:
d3:3f:fe:2f:38:ef:d3:a5:da:ef:62:69:b1:ed:fb:a5:a5:7f:
77:11:f8:02:53:7c:f1:08:f2:1c:a1:47:a1:a6:40:8b:83:21:
d9:84:a8:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 03:56:39 2025 by rpki-client