Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/40e5f4-d056-44f2-899e-2286b89e7a7e/1/c0WcDmEa-I3e6oejtEWp5xBEKhk.roa
File: c0WcDmEa-I3e6oejtEWp5xBEKhk.roa (raw, json)
Hash identifier: gv5nn6HuxLobRhPQtfW9QLB/XRSSApZbiTBp/n9p8eo=
Subject key identifier: 73:45:9C:0E:61:1A:F8:8D:DE:EA:87:A3:B4:45:A9:E7:10:44:2A:19
Certificate issuer: /CN=57c76a80ec2912a568935cb57b6a650f03dfd8d2
Certificate serial: 0194258ED6F3571A4D9C029A00E8A62FCBA7
Authority key identifier: 57:C7:6A:80:EC:29:12:A5:68:93:5C:B5:7B:6A:65:0F:03:DF:D8:D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/V8dqgOwpEqVok1y1e2plDwPf2NI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/40e5f4-d056-44f2-899e-2286b89e7a7e/1/c0WcDmEa-I3e6oejtEWp5xBEKhk.roa
Signing time: Thu 02 Jan 2025 05:48:25 +0000
ROA not before: Thu 02 Jan 2025 05:48:25 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 48705
IP address blocks: 193.39.66.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8e:d6:f3:57:1a:4d:9c:02:9a:00:e8:a6:2f:cb:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=57c76a80ec2912a568935cb57b6a650f03dfd8d2
Validity
Not Before: Jan 2 05:48:25 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=73459c0e611af88ddeea87a3b445a9e710442a19
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:7c:e0:07:bf:5e:ce:00:b7:31:0f:db:5c:7c:
99:36:dc:bd:81:df:33:c5:d5:8d:d7:2c:ba:bd:c2:
f2:5d:16:dc:f8:e2:54:f1:b2:c4:b1:5a:7b:66:14:
15:22:cb:1c:0b:1f:85:41:a7:60:a1:cb:69:f8:a3:
23:47:f7:27:41:49:da:ea:12:8d:49:6f:1e:0e:e8:
8f:4a:fe:33:8f:6e:08:3d:5d:f2:ae:3b:f1:dc:58:
35:14:8f:73:82:f0:ec:b4:77:97:b7:b7:76:1e:96:
01:68:d8:3e:10:60:f1:35:41:cd:ee:0e:4a:10:45:
27:5c:50:b9:11:5c:fe:93:6a:6b:89:b7:b7:dd:51:
57:1c:db:1b:25:22:41:5a:41:fc:59:f2:4d:97:d5:
c4:d6:9b:f0:9f:3f:af:10:0c:f8:11:61:0b:b2:d7:
cd:73:02:b7:2a:e3:59:71:31:a5:71:b6:c7:59:c2:
7f:b5:c1:86:e6:a9:da:52:ba:44:f7:c4:18:04:fd:
ef:d0:a4:0c:8b:4d:b0:4b:95:25:98:3b:6e:fb:b0:
2a:31:33:0a:b5:37:f2:b7:21:b0:ff:fa:b3:d9:54:
cf:ce:96:ad:f9:3c:f7:12:9c:af:3f:74:c6:b4:04:
a1:24:21:d2:de:6a:0b:4e:99:c3:a6:e6:2d:4b:6d:
3a:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:45:9C:0E:61:1A:F8:8D:DE:EA:87:A3:B4:45:A9:E7:10:44:2A:19
X509v3 Authority Key Identifier:
keyid:57:C7:6A:80:EC:29:12:A5:68:93:5C:B5:7B:6A:65:0F:03:DF:D8:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/V8dqgOwpEqVok1y1e2plDwPf2NI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/40e5f4-d056-44f2-899e-2286b89e7a7e/1/c0WcDmEa-I3e6oejtEWp5xBEKhk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/40e5f4-d056-44f2-899e-2286b89e7a7e/1/V8dqgOwpEqVok1y1e2plDwPf2NI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.39.66.0/24
Signature Algorithm: sha256WithRSAEncryption
71:f5:c7:37:8c:2e:e3:e7:f5:f5:f5:3f:35:8f:12:b6:af:57:
0e:41:bc:f9:5c:e9:4c:42:65:96:d4:14:3a:c0:50:e2:38:e6:
83:75:19:af:e7:9c:c4:43:73:98:b4:9b:53:11:63:5f:66:dd:
12:39:28:0d:ad:ca:e9:44:85:4a:b4:47:15:ed:7b:ee:e1:0e:
8e:6f:91:82:7b:31:6e:c0:84:32:10:5d:d7:f0:cf:71:8e:50:
a1:c7:4a:98:a3:9e:ed:5c:eb:c1:7c:ed:89:da:4b:17:a7:dc:
7e:27:98:05:5b:64:86:55:7d:54:00:41:ab:c3:6d:73:ff:fc:
fa:6a:68:b4:94:cd:05:d3:09:91:5c:f3:64:12:03:6c:bf:e7:
f4:d8:d4:2c:eb:ca:61:f4:45:2d:94:b1:25:53:73:be:92:ce:
ba:65:05:08:d8:b3:81:3a:0e:1e:28:d1:a2:b4:ac:93:cb:06:
c9:72:85:9b:e1:bc:aa:98:3b:74:d9:aa:4b:4e:09:08:e0:09:
f1:64:e1:22:19:8a:0c:d6:fe:8e:98:19:2b:02:15:17:81:74:
e5:e3:d2:0b:65:aa:9e:5a:af:c0:4a:c6:eb:cf:39:c2:1a:ab:
65:91:ed:a2:fb:5b:76:0b:5c:2c:3f:be:af:ad:8d:10:93:9a:
a0:89:af:f6
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQljtbzVxpNnAKaAOimL8unMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU3Yzc2YTgwZWMyOTEyYTU2ODkzNWNiNTdiNmE2NTBmMDNk
ZmQ4ZDIwHhcNMjUwMTAyMDU0ODI1WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3MzQ1OWMwZTYxMWFmODhkZGVlYTg3YTNiNDQ1YTllNzEwNDQyYTE5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo3zgB79ezgC3MQ/bXHyZNty9gd8z
xdWN1yy6vcLyXRbc+OJU8bLEsVp7ZhQVIsscCx+FQadgoctp+KMjR/cnQUna6hKN
SW8eDuiPSv4zj24IPV3yrjvx3Fg1FI9zgvDstHeXt7d2HpYBaNg+EGDxNUHN7g5K
EEUnXFC5EVz+k2pribe33VFXHNsbJSJBWkH8WfJNl9XE1pvwnz+vEAz4EWELstfN
cwK3KuNZcTGlcbbHWcJ/tcGG5qnaUrpE98QYBP3v0KQMi02wS5UlmDtu+7AqMTMK
tTfytyGw//qz2VTPzpat+Tz3EpyvP3TGtAShJCHS3moLTpnDpuYtS206NwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFHNFnA5hGviN3uqHo7RFqecQRCoZMB8GA1UdIwQY
MBaAFFfHaoDsKRKlaJNctXtqZQ8D39jSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVjhkcWdPd3BFcVZvazF5MWUycGxEd1BmMk5JLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS80MGU1ZjQtZDA1Ni00NGYyLTg5OWUt
MjI4NmI4OWU3YTdlLzEvYzBXY0RtRWEtSTNlNm9lanRFV3A1eEJFS2hrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yOS80MGU1ZjQtZDA1Ni00NGYyLTg5OWUtMjI4NmI4OWU3YTdl
LzEvVjhkcWdPd3BFcVZvazF5MWUycGxEd1BmMk5JLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwSdCMA0G
CSqGSIb3DQEBCwUAA4IBAQBx9cc3jC7j5/X19T81jxK2r1cOQbz5XOlMQmWW1BQ6
wFDiOOaDdRmv55zEQ3OYtJtTEWNfZt0SOSgNrcrpRIVKtEcV7Xvu4Q6Ob5GCezFu
wIQyEF3X8M9xjlChx0qYo57tXOvBfO2J2ksXp9x+J5gFW2SGVX1UAEGrw21z//z6
ami0lM0F0wmRXPNkEgNsv+f02NQs68ph9EUtlLElU3O+ks66ZQUI2LOBOg4eKNGi
tKyTywbJcoWb4byqmDt02apLTgkI4AnxZOEiGYoM1v6OmBkrAhUXgXTl49ILZaqe
Wq/ASsbrzznCGqtlke2i+1t2C1wsP76vrY0Qk5qgia/2
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:23 2025 by rpki-client on console.sobornost.net