Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/1a98f5-7596-46d0-8db9-24319c59d936/1/lSUAwTWD8Iv1F6QNDF7tBe8Lo30.roa
File: lSUAwTWD8Iv1F6QNDF7tBe8Lo30.roa (raw, json)
Hash identifier: sHQRgu0g2eUIoFhfpXHOKVWKOhPcMdR2RBjM820szZQ=
Subject key identifier: 95:25:00:C1:35:83:F0:8B:F5:17:A4:0D:0C:5E:ED:05:EF:0B:A3:7D
Certificate issuer: /CN=6409d8aa8a1484d7638f0bb69ca248bbf49142d2
Certificate serial: 02E6ED0B
Authority key identifier: 64:09:D8:AA:8A:14:84:D7:63:8F:0B:B6:9C:A2:48:BB:F4:91:42:D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZAnYqooUhNdjjwu2nKJIu_SRQtI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/1a98f5-7596-46d0-8db9-24319c59d936/1/lSUAwTWD8Iv1F6QNDF7tBe8Lo30.roa
Signing time: Fri 21 Jan 2022 14:07:00 +0000
ROA not before: Fri 21 Jan 2022 14:07:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49166
IP address blocks: 193.135.12.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 48688395 (0x2e6ed0b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6409d8aa8a1484d7638f0bb69ca248bbf49142d2
Validity
Not Before: Jan 21 14:07:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=952500c13583f08bf517a40d0c5eed05ef0ba37d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:cc:bc:2b:e3:f9:9a:85:bc:be:00:08:4e:07:
ec:d5:25:27:ad:57:19:ad:0c:e6:55:f0:ff:2c:19:
5a:08:5f:c1:af:e1:15:02:da:c9:aa:e0:50:ff:b6:
f6:5f:c7:80:8a:e5:c0:dd:ae:25:6e:01:7e:bd:a1:
c4:5f:3c:41:6f:22:6b:81:51:55:dd:0a:a7:6f:18:
f1:ae:35:7a:ab:ba:ba:d7:30:5d:22:20:c5:5c:b2:
e9:af:5c:45:33:9d:37:5f:9b:31:c3:81:8e:67:2b:
97:4b:68:de:e6:51:3c:ab:d2:fb:90:1e:fa:7d:c5:
87:1c:da:c0:a4:60:04:a4:d1:7b:27:24:40:65:18:
66:1a:d1:1c:51:dc:de:6b:42:0a:9c:23:f1:ec:22:
d0:c2:f0:11:39:1f:0b:5c:5a:4e:67:e9:0c:fe:52:
5e:9d:39:d8:0f:98:e8:29:56:6b:49:0d:97:1a:33:
cf:63:b0:6a:97:16:4a:9d:6e:68:f4:9c:50:99:52:
39:83:a9:a2:a7:c2:a2:85:e0:c8:19:da:5b:74:81:
f9:5b:0d:9c:2a:1b:91:c7:eb:e2:e8:ef:aa:a0:0b:
91:4f:2f:d2:0f:c4:3b:06:bb:ca:57:a2:b3:5d:e8:
fe:ab:63:25:bb:01:76:7f:bc:e5:28:cf:ed:6f:84:
0b:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:25:00:C1:35:83:F0:8B:F5:17:A4:0D:0C:5E:ED:05:EF:0B:A3:7D
X509v3 Authority Key Identifier:
keyid:64:09:D8:AA:8A:14:84:D7:63:8F:0B:B6:9C:A2:48:BB:F4:91:42:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZAnYqooUhNdjjwu2nKJIu_SRQtI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/1a98f5-7596-46d0-8db9-24319c59d936/1/lSUAwTWD8Iv1F6QNDF7tBe8Lo30.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/1a98f5-7596-46d0-8db9-24319c59d936/1/ZAnYqooUhNdjjwu2nKJIu_SRQtI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.135.12.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:aa:83:13:1d:5f:8f:60:a5:7a:4a:3e:d0:94:3d:56:d8:ec:
e7:34:c5:58:58:64:80:64:21:af:95:9f:35:cb:41:e9:42:34:
d6:0e:03:93:31:af:b5:b5:d6:b6:fe:46:87:aa:33:63:2e:da:
29:e4:34:39:aa:92:13:bc:5d:e2:87:38:79:9d:3c:f6:ce:25:
26:99:ea:6f:3b:05:34:37:c6:da:9c:cb:19:e8:61:7f:64:16:
9e:9e:22:41:8a:42:0b:b4:a0:e3:a8:48:39:66:0a:96:35:b4:
64:4a:2a:e9:71:c4:11:d0:b0:8a:d1:a4:c1:58:c4:5d:fe:49:
51:91:0f:bb:7a:9a:f2:aa:50:2e:03:6a:10:d1:be:d5:07:58:
b6:15:1e:25:b5:9f:b3:c6:bd:d1:9e:f2:e8:5b:ba:78:ce:03:
9a:0e:22:25:c8:94:fe:15:69:d7:91:82:b3:d4:c3:b8:6c:5e:
cb:13:4c:77:60:2e:54:64:b1:2a:8c:b3:ca:c9:de:c9:e9:15:
a9:11:d0:0f:58:8f:dc:db:82:e0:fc:10:05:46:a1:ca:af:a0:
93:9c:77:c0:9a:f4:84:f7:4b:73:00:cb:4d:d9:4c:89:2a:ea:
a8:1d:d3:8f:53:05:a1:3c:62:80:c9:9f:92:94:64:38:06:07:
16:72:37:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 15:03:52 2025 by rpki-client