Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/a9c6ac-f9a2-4462-8aaa-8b64f7c3a76e/1/i8p3sKDUMyTMnXunF78cOCp8z50.roa
File: i8p3sKDUMyTMnXunF78cOCp8z50.roa (raw, json)
Hash identifier: B+LPh5Y0LpN6D/zkvt6qpLxNFEw2L77BjweCvws2PRU=
Subject key identifier: 8B:CA:77:B0:A0:D4:33:24:CC:9D:7B:A7:17:BF:1C:38:2A:7C:CF:9D
Certificate issuer: /CN=74c7f8e91b81fe6487307c5226eb044f92396cea
Certificate serial: 0194228D4AC86A108F462E283F420B35D089
Authority key identifier: 74:C7:F8:E9:1B:81:FE:64:87:30:7C:52:26:EB:04:4F:92:39:6C:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dMf46RuB_mSHMHxSJusET5I5bOo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/a9c6ac-f9a2-4462-8aaa-8b64f7c3a76e/1/i8p3sKDUMyTMnXunF78cOCp8z50.roa
Signing time: Wed 01 Jan 2025 15:47:52 +0000
ROA not before: Wed 01 Jan 2025 15:47:52 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 33915
IP address blocks: 193.176.136.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:8d:4a:c8:6a:10:8f:46:2e:28:3f:42:0b:35:d0:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=74c7f8e91b81fe6487307c5226eb044f92396cea
Validity
Not Before: Jan 1 15:47:52 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=8bca77b0a0d43324cc9d7ba717bf1c382a7ccf9d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:cb:4f:b8:d0:b4:89:11:fc:22:ae:3b:5e:cb:
f7:8a:0d:9c:d1:e1:3a:35:9d:a3:6e:e3:b1:8d:ee:
5e:e9:02:7d:96:15:c0:25:1a:e1:df:f1:2d:1d:97:
c1:ed:06:a4:75:52:15:0b:4b:8c:d7:b9:2c:60:f9:
f0:70:19:26:01:d4:87:70:b0:40:6b:81:ee:59:69:
bd:85:3e:04:0d:c3:f3:c0:1e:d6:0c:c0:63:3e:1d:
d7:28:50:ae:23:f5:cb:22:66:56:05:c8:d2:99:73:
b0:6a:f4:3b:fa:66:7a:ea:52:a8:e0:38:d3:90:44:
dd:9e:fe:8f:c9:a1:47:2e:42:a9:70:52:a9:b7:49:
f0:af:9e:1b:53:12:f7:33:5e:e2:0e:94:ea:62:a1:
63:63:e0:b9:f8:3c:26:69:3e:c2:04:fa:ca:48:0d:
f7:61:db:85:e9:c2:c1:6e:a6:1c:c1:5e:86:bf:52:
1a:10:45:40:31:2d:9d:77:41:3c:e8:fe:3f:1c:3d:
05:2a:fb:5d:d1:e2:bb:08:db:42:b3:35:4c:78:48:
69:f7:f1:9c:27:e8:79:b7:f7:cf:f8:00:a4:2b:fd:
c7:93:2e:e0:ff:e8:8c:06:55:57:d2:3a:db:10:c7:
e5:2f:ef:49:1d:42:fe:01:b3:fb:d9:15:6a:d2:a9:
f2:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:CA:77:B0:A0:D4:33:24:CC:9D:7B:A7:17:BF:1C:38:2A:7C:CF:9D
X509v3 Authority Key Identifier:
keyid:74:C7:F8:E9:1B:81:FE:64:87:30:7C:52:26:EB:04:4F:92:39:6C:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dMf46RuB_mSHMHxSJusET5I5bOo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/a9c6ac-f9a2-4462-8aaa-8b64f7c3a76e/1/i8p3sKDUMyTMnXunF78cOCp8z50.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/a9c6ac-f9a2-4462-8aaa-8b64f7c3a76e/1/dMf46RuB_mSHMHxSJusET5I5bOo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.176.136.0/21
Signature Algorithm: sha256WithRSAEncryption
6d:bc:0e:b2:77:47:4d:01:db:57:b4:e7:6b:ea:7a:b8:f7:36:
88:39:45:4f:7c:6b:fe:dd:50:ec:59:94:7f:f7:a5:74:5a:6d:
d3:e8:56:c8:71:13:a3:c7:75:19:a6:6f:eb:5a:f2:f6:f5:ee:
bc:1f:d2:dc:69:b9:aa:6d:60:b4:02:f4:95:34:83:9a:af:24:
5d:48:93:c1:e6:7e:fa:1d:6a:ba:da:3c:6a:5b:34:08:0c:34:
25:a0:e5:d1:d1:3b:96:c5:f8:88:f5:2e:38:f2:09:82:2e:10:
66:10:44:98:7c:b7:51:d0:b8:3e:bc:3c:1b:db:4f:94:6c:8d:
91:64:7f:58:84:c6:61:eb:99:35:fa:1b:ec:33:07:7e:1b:11:
7e:39:2a:b0:17:91:6a:9d:12:5b:c0:59:96:4e:2a:24:07:99:
1e:fe:bd:29:2d:08:e0:72:3e:fb:88:1f:34:b7:f7:a7:05:a7:
02:3a:18:79:d5:ab:27:95:e9:72:cd:65:86:0d:25:6a:d7:7b:
a0:f0:d8:69:e9:fd:7d:ff:75:ca:b6:5c:87:e0:e9:22:90:b8:
f3:83:e0:0c:cd:31:32:95:c5:59:4e:8f:ce:fc:f4:3d:af:31:
d8:e9:bd:ce:39:3b:ed:15:f5:a0:b0:2a:8d:8b:55:fc:b4:e2:
ef:15:f3:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 05:25:55 2025 by rpki-client