Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/d0a1fe-0b65-4d50-ae2f-12898697a862/1/Ut4z4tImR83ncGrwpXNPaCBz4dc.roa
File: Ut4z4tImR83ncGrwpXNPaCBz4dc.roa (raw, json)
Hash identifier: x3Tb8uXmHgRhBdCjWUywrl5EoWV8hOlCverEGcV2UXg=
Subject key identifier: 52:DE:33:E2:D2:26:47:CD:E7:70:6A:F0:A5:73:4F:68:20:73:E1:D7
Certificate issuer: /CN=d2a3c8cc63d0e7e069ca523f34efb3953ee21b65
Certificate serial: 0194206818B0135C6E9330B0D46A45C4DFDC
Authority key identifier: D2:A3:C8:CC:63:D0:E7:E0:69:CA:52:3F:34:EF:B3:95:3E:E2:1B:65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0qPIzGPQ5-BpylI_NO-zlT7iG2U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/d0a1fe-0b65-4d50-ae2f-12898697a862/1/Ut4z4tImR83ncGrwpXNPaCBz4dc.roa
Signing time: Wed 01 Jan 2025 05:48:00 +0000
ROA not before: Wed 01 Jan 2025 05:48:00 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 25353
IP address blocks: 193.162.79.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:68:18:b0:13:5c:6e:93:30:b0:d4:6a:45:c4:df:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2a3c8cc63d0e7e069ca523f34efb3953ee21b65
Validity
Not Before: Jan 1 05:48:00 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=52de33e2d22647cde7706af0a5734f682073e1d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:f3:2b:a4:e1:d3:37:07:1f:ec:8b:6c:46:ba:
4f:2f:01:4e:34:62:16:8c:28:52:9e:b0:20:7f:ca:
1e:df:04:1c:e8:52:eb:42:e0:74:e7:03:52:9f:87:
42:b8:dd:e8:88:35:43:7d:c5:86:4d:11:d7:3d:9f:
68:86:c3:20:e2:11:bb:06:db:fa:b5:59:53:99:d2:
d5:18:8e:f2:45:1e:33:68:5c:ab:81:9c:d1:dd:53:
1d:27:7c:b5:60:fe:15:c9:1d:59:5c:bc:63:33:15:
cb:d6:76:a2:29:b5:86:89:c2:0c:a4:9b:57:9d:22:
42:6a:bd:37:96:12:19:c6:04:f9:b1:1a:a4:bf:55:
e9:46:94:60:66:51:3f:47:55:13:bf:1e:53:d5:fc:
40:29:29:99:7f:d4:1f:1e:5b:3c:bd:f2:69:29:c3:
7f:7e:fa:ae:23:18:dc:24:fa:a4:2b:75:41:42:0f:
a7:fa:df:d0:7e:87:a9:d6:aa:7c:f2:00:87:93:a1:
de:61:dd:57:1d:6c:c4:7b:7f:fb:03:ed:41:4c:c6:
fd:9c:b3:f8:0e:72:b6:ee:6e:ac:ac:cf:42:fe:f1:
d4:c2:93:86:64:35:79:9a:23:4d:e4:e6:65:09:48:
19:55:3a:b8:af:72:11:08:c8:15:f3:89:c6:84:ae:
55:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:DE:33:E2:D2:26:47:CD:E7:70:6A:F0:A5:73:4F:68:20:73:E1:D7
X509v3 Authority Key Identifier:
keyid:D2:A3:C8:CC:63:D0:E7:E0:69:CA:52:3F:34:EF:B3:95:3E:E2:1B:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0qPIzGPQ5-BpylI_NO-zlT7iG2U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/d0a1fe-0b65-4d50-ae2f-12898697a862/1/Ut4z4tImR83ncGrwpXNPaCBz4dc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/d0a1fe-0b65-4d50-ae2f-12898697a862/1/0qPIzGPQ5-BpylI_NO-zlT7iG2U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.162.79.0/24
Signature Algorithm: sha256WithRSAEncryption
29:b4:25:12:5b:72:c6:e3:ba:eb:7b:60:18:56:5d:36:7f:26:
e6:26:37:c1:d5:ee:15:74:b2:55:cc:c1:64:88:42:5e:72:1d:
39:5b:d7:7f:7f:a9:bc:5d:01:b6:2e:e9:25:fa:5a:05:89:04:
93:30:3e:2a:f2:ab:72:c2:61:84:4e:df:3e:0f:ab:ef:1e:c7:
47:12:bc:26:31:27:97:68:f5:40:77:36:fa:bc:99:ef:80:e2:
cc:ec:64:86:c8:2e:48:79:3e:4f:ae:79:da:2b:8c:ae:c7:1e:
bb:fb:fc:fc:c9:d2:7e:a3:ac:c2:f9:09:8c:db:1e:4e:54:10:
5b:98:9d:bd:19:55:89:aa:32:01:7d:bc:06:22:98:95:a0:81:
1a:4b:b9:d3:d3:7e:d3:0e:ec:4e:34:e3:d7:bc:da:50:4d:16:
ec:4e:1c:56:0a:1e:17:2a:fb:b8:24:3c:e2:6d:79:dd:bb:c0:
eb:15:1c:38:27:77:b1:c5:12:e4:89:6d:16:d4:4d:92:5e:1f:
64:56:f0:3a:38:79:bb:29:5d:53:7b:7e:9d:9e:58:98:e8:4e:
84:bf:70:06:f5:b9:d1:54:82:fb:a9:ec:54:a2:1b:c4:23:df:
32:54:7c:b1:a5:fb:a8:f8:2e:83:db:52:8a:98:4f:5c:70:1a:
54:7c:23:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 13:00:29 2025 by rpki-client