Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/df3706-f347-4025-a7b3-1c8cd56c6174/1/tMYXOdnmuKHyDHkYDVLVB3_EAgw.roa
File: tMYXOdnmuKHyDHkYDVLVB3_EAgw.roa (raw, json)
Hash identifier: l/OWxGu+A9pYLrvKC/LSFt5QWYXmuwVXAc7ihnHF4OE=
Subject key identifier: B4:C6:17:39:D9:E6:B8:A1:F2:0C:79:18:0D:52:D5:07:7F:C4:02:0C
Certificate issuer: /CN=72048641d8f7337fcea23ae5332bf6e11a11e22a
Certificate serial: 019427481007AB2D99678F24B7DFBD1B8616
Authority key identifier: 72:04:86:41:D8:F7:33:7F:CE:A2:3A:E5:33:2B:F6:E1:1A:11:E2:2A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgSGQdj3M3_OojrlMyv24RoR4io.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/df3706-f347-4025-a7b3-1c8cd56c6174/1/tMYXOdnmuKHyDHkYDVLVB3_EAgw.roa
Signing time: Thu 02 Jan 2025 13:50:21 +0000
ROA not before: Thu 02 Jan 2025 13:50:21 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 33915
IP address blocks: 193.104.129.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:48:10:07:ab:2d:99:67:8f:24:b7:df:bd:1b:86:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72048641d8f7337fcea23ae5332bf6e11a11e22a
Validity
Not Before: Jan 2 13:50:21 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b4c61739d9e6b8a1f20c79180d52d5077fc4020c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:15:c6:01:c0:09:c5:84:50:99:cd:f3:d9:a0:
72:fc:21:76:29:b8:2e:66:3d:61:f2:0c:fc:ad:17:
04:98:11:17:b4:12:27:53:4f:2e:cf:97:a6:3a:0f:
86:1a:d5:30:3d:16:4f:05:a6:22:78:25:1e:87:dc:
a7:46:84:16:c2:43:61:6f:41:28:ff:3a:2a:93:05:
26:6a:2a:73:00:04:73:db:a8:70:d0:d2:d2:d8:8e:
43:69:2f:3a:5e:46:e2:7f:44:aa:d2:b8:03:fa:cc:
38:14:c4:78:49:e2:0b:5e:66:94:a7:a8:fc:75:ba:
e9:51:56:42:e7:11:36:5b:48:f8:6c:94:24:a6:42:
80:dc:93:9d:13:ff:90:90:59:9e:a5:8e:c2:4a:f7:
b0:1c:ce:12:89:a7:67:a6:cb:d0:f5:2e:98:32:9f:
28:75:4c:67:13:e4:f9:1d:81:92:27:79:38:17:c6:
54:6f:df:82:84:ac:e8:a6:f1:37:4c:08:85:e7:6f:
c1:92:ea:33:3b:f8:9a:3f:7c:8c:48:dc:3f:b2:84:
0a:eb:68:85:06:5d:e0:fa:a1:f8:4c:ad:84:3a:9f:
c4:14:6e:b3:f4:eb:f1:54:a6:3b:7a:23:52:46:95:
79:10:27:0f:dc:54:f2:75:02:d8:01:ea:c5:e1:5e:
75:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:C6:17:39:D9:E6:B8:A1:F2:0C:79:18:0D:52:D5:07:7F:C4:02:0C
X509v3 Authority Key Identifier:
keyid:72:04:86:41:D8:F7:33:7F:CE:A2:3A:E5:33:2B:F6:E1:1A:11:E2:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgSGQdj3M3_OojrlMyv24RoR4io.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/df3706-f347-4025-a7b3-1c8cd56c6174/1/tMYXOdnmuKHyDHkYDVLVB3_EAgw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/df3706-f347-4025-a7b3-1c8cd56c6174/1/cgSGQdj3M3_OojrlMyv24RoR4io.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:f8:2e:59:67:f3:bc:b0:62:d2:10:54:fe:ba:e9:4b:94:b5:
79:f4:c8:51:72:35:af:8f:d1:d3:de:6e:e3:80:82:08:1c:94:
a3:d5:ff:55:cf:7e:d7:95:64:09:54:a3:7b:4d:8e:6f:bb:98:
a1:aa:49:0a:59:a9:0e:ef:e0:1f:7c:70:a1:5e:1b:19:e9:b6:
d8:63:b5:3e:5f:79:a8:e4:32:2f:58:65:71:87:f5:65:f8:2b:
dd:ba:9f:f9:84:4d:b6:0c:6a:5d:f5:55:a1:6b:fb:10:68:75:
b7:00:80:94:08:4c:6a:65:77:a6:5c:97:10:c6:b9:c3:58:cb:
5b:53:c9:9c:d3:34:fb:b0:82:ba:0a:f9:2d:21:ba:b1:fd:09:
4c:bf:31:73:dd:b5:76:b5:af:25:81:ed:34:f2:ae:4b:96:08:
ef:0b:b8:ba:6c:c5:e1:18:f3:d2:6b:57:ed:27:55:e3:a3:41:
da:b4:a1:90:11:07:6e:9f:3c:06:e8:ac:9d:ff:d8:0c:17:ed:
2f:15:20:24:b3:70:29:c3:1c:4f:3c:d8:ec:89:63:7c:e5:3e:
ac:19:20:13:a2:fc:3a:64:e5:9f:a8:bf:ff:28:ec:24:e3:ca:
5b:65:d3:8e:f9:8f:af:8a:2e:9d:00:6c:3f:c8:50:88:1b:d2:
c8:dc:ff:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 09:41:59 2025 by rpki-client