Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/KUUP1nwRnmngZFUK0Dmd9G4FFlM.roa
File: KUUP1nwRnmngZFUK0Dmd9G4FFlM.roa (raw, json)
Hash identifier: zaVkbw/JRCCj7bgxjOvTPAw439pZjsAYHelqlndBpHA=
Subject key identifier: 29:45:0F:D6:7C:11:9E:69:E0:64:55:0A:D0:39:9D:F4:6E:05:16:53
Certificate issuer: /CN=e3be07cb1fd4f1e3c922303b670a881b82e61491
Certificate serial: 019423D78B25333DAD2A347B588823094BEC
Authority key identifier: E3:BE:07:CB:1F:D4:F1:E3:C9:22:30:3B:67:0A:88:1B:82:E6:14:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/474Hyx_U8ePJIjA7ZwqIG4LmFJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/KUUP1nwRnmngZFUK0Dmd9G4FFlM.roa
Signing time: Wed 01 Jan 2025 21:48:35 +0000
ROA not before: Wed 01 Jan 2025 21:48:35 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 211838
IP address blocks: 213.175.119.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:d7:8b:25:33:3d:ad:2a:34:7b:58:88:23:09:4b:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e3be07cb1fd4f1e3c922303b670a881b82e61491
Validity
Not Before: Jan 1 21:48:35 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=29450fd67c119e69e064550ad0399df46e051653
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:ca:7b:c9:28:91:a3:22:de:36:d1:37:5e:8e:
ae:40:3f:82:9b:10:48:4c:a5:ac:ce:f8:f4:5a:29:
1c:b0:17:b7:9b:54:49:63:6e:da:19:05:a8:5f:e0:
73:6f:85:74:58:59:99:74:97:af:2e:95:57:2e:1c:
47:a3:9e:ff:8d:66:b2:63:b1:56:7b:10:84:cc:75:
66:12:53:91:7c:e8:5a:50:8f:7e:dc:e4:b6:48:e3:
11:ee:2b:19:77:98:d4:a9:aa:9e:4d:d2:4e:8d:a0:
3f:8d:5c:1e:f5:3e:19:6f:14:bb:02:a7:ea:1c:dd:
57:20:76:99:96:6a:9a:2a:61:ea:db:26:93:78:8b:
7f:51:3e:70:76:3e:5f:75:30:60:1f:9c:16:3b:b0:
7f:3a:39:5b:58:95:86:f2:b0:db:76:7c:46:62:39:
5d:68:12:95:06:96:cf:5c:e7:1c:ac:bd:9c:5d:d7:
2f:ad:03:3a:95:04:55:e4:9f:66:b5:e7:9d:78:62:
53:01:a5:85:f9:d7:48:95:66:8e:e2:74:ed:be:6c:
9e:65:82:d7:c2:51:d5:d0:ed:2f:60:01:f6:74:45:
d8:0d:f5:08:fa:b9:94:c0:33:4b:50:81:8b:f4:23:
82:d3:e3:0e:e9:f8:d7:6f:6a:b3:61:99:01:3b:02:
09:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:45:0F:D6:7C:11:9E:69:E0:64:55:0A:D0:39:9D:F4:6E:05:16:53
X509v3 Authority Key Identifier:
keyid:E3:BE:07:CB:1F:D4:F1:E3:C9:22:30:3B:67:0A:88:1B:82:E6:14:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/474Hyx_U8ePJIjA7ZwqIG4LmFJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/KUUP1nwRnmngZFUK0Dmd9G4FFlM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/474Hyx_U8ePJIjA7ZwqIG4LmFJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.175.119.0/24
Signature Algorithm: sha256WithRSAEncryption
17:49:68:cb:77:4b:59:58:b1:da:d9:5b:cf:df:f6:af:08:84:
92:f9:89:4e:45:60:c0:f5:ce:08:cc:f4:30:ae:a1:4d:d8:c3:
b7:84:ed:7e:4d:48:6d:16:cd:af:67:d1:9d:0c:7d:12:f1:6d:
33:7a:f8:b5:5e:ef:c8:48:1d:5f:84:bc:75:b0:13:ac:72:89:
e0:f5:53:7a:31:89:03:cd:2f:d7:df:58:14:e9:38:e0:ba:a7:
30:33:19:2e:92:f6:1e:13:ff:24:49:e6:5b:5d:52:de:9b:95:
0e:99:1b:9a:a9:22:f1:a6:13:ca:dd:6a:67:2b:dc:cc:0d:0a:
f3:64:2a:8b:ee:3d:53:60:c4:4f:0f:a0:fe:ff:37:5e:41:ab:
5e:30:77:99:b6:9a:75:ab:9a:df:64:6d:01:70:8a:e8:24:64:
00:04:6d:ff:6f:f3:09:93:07:da:4a:71:42:28:d6:77:40:59:
08:f2:7e:44:2a:86:bb:bc:57:cd:9e:c2:a8:33:ee:fb:9b:b9:
76:15:0d:14:11:c4:3f:0f:5b:52:f1:6b:83:e7:76:db:ba:9c:
29:fc:ed:fd:fb:03:ef:fe:26:c8:4f:88:5f:00:89:c8:da:88:
46:b3:5a:7d:fd:1d:8f:2d:72:d3:ad:d5:41:d7:03:3f:5f:7d:
40:80:83:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 24 22:33:14 2025 by rpki-client