Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/8b2040-8d3f-414b-8de8-1464b4f91672/1/XmdSMCmint9DPZ--cCLmS94eFwY.roa
File: XmdSMCmint9DPZ--cCLmS94eFwY.roa (raw, json)
Hash identifier: Ecj0xnHDR2ooGxeY4fWUT554GHurKxl+Q6h8BrSfnec=
Subject key identifier: 5E:67:52:30:29:A2:9E:DF:43:3D:9F:BE:70:22:E6:4B:DE:1E:17:06
Certificate issuer: /CN=c0659e1dd14079b521d92b1f52cbc4fd323e18d3
Certificate serial: 019426D94C2D6696ECEFC3966603B17B0F2E
Authority key identifier: C0:65:9E:1D:D1:40:79:B5:21:D9:2B:1F:52:CB:C4:FD:32:3E:18:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wGWeHdFAebUh2SsfUsvE_TI-GNM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/8b2040-8d3f-414b-8de8-1464b4f91672/1/XmdSMCmint9DPZ--cCLmS94eFwY.roa
Signing time: Thu 02 Jan 2025 11:49:22 +0000
ROA not before: Thu 02 Jan 2025 11:49:22 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 47283
IP address blocks: 194.12.64.0/19 maxlen: 19
194.12.64.0/20 maxlen: 20
194.12.80.0/20 maxlen: 20
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:d9:4c:2d:66:96:ec:ef:c3:96:66:03:b1:7b:0f:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c0659e1dd14079b521d92b1f52cbc4fd323e18d3
Validity
Not Before: Jan 2 11:49:22 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=5e67523029a29edf433d9fbe7022e64bde1e1706
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:20:e6:4d:3e:01:6a:5c:a5:96:16:79:19:79:
10:d9:d4:68:c5:27:67:25:fc:af:88:2d:85:a8:99:
ad:c9:10:a2:16:22:49:58:99:5e:b6:55:ee:97:73:
0b:a0:54:89:71:44:42:e7:95:d8:a2:c5:0b:cd:0e:
3f:aa:75:08:cf:a2:26:7c:95:0b:5c:02:c5:50:2b:
e8:bd:d5:36:a4:c1:d3:bb:c6:b5:1d:d7:dc:1a:00:
21:e5:87:a8:f6:e6:a7:43:22:0b:20:d5:3a:fe:be:
25:fe:b9:40:c7:f9:9d:24:8d:48:b3:02:1c:b7:7f:
86:70:d6:28:ed:c0:d5:be:ff:b4:31:25:2f:35:da:
4c:c9:fc:48:74:79:d1:1b:0c:62:60:e2:c2:db:79:
b5:27:eb:f8:59:c9:f4:85:66:21:8c:76:27:0c:81:
26:2b:16:7f:7c:c4:12:9d:aa:9a:fa:42:93:77:8b:
a6:82:17:72:95:9d:4a:bd:cd:b0:bb:36:d5:38:c6:
70:26:02:9a:e4:e4:57:c2:1f:81:53:4d:3e:68:98:
a4:b9:50:ff:52:c5:d0:2d:67:13:f3:58:08:11:09:
73:22:6b:3f:9a:ca:de:98:d0:bb:c3:cd:ad:20:1d:
cd:e6:68:ac:0a:92:44:0d:1b:04:70:8e:e9:02:db:
b0:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:67:52:30:29:A2:9E:DF:43:3D:9F:BE:70:22:E6:4B:DE:1E:17:06
X509v3 Authority Key Identifier:
keyid:C0:65:9E:1D:D1:40:79:B5:21:D9:2B:1F:52:CB:C4:FD:32:3E:18:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wGWeHdFAebUh2SsfUsvE_TI-GNM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/8b2040-8d3f-414b-8de8-1464b4f91672/1/XmdSMCmint9DPZ--cCLmS94eFwY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/8b2040-8d3f-414b-8de8-1464b4f91672/1/wGWeHdFAebUh2SsfUsvE_TI-GNM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.12.64.0/19
Signature Algorithm: sha256WithRSAEncryption
58:e7:b1:d8:e4:3c:0e:b6:60:b1:1d:a2:8e:95:fd:ea:e3:0c:
25:45:1a:5e:27:f1:b7:ba:73:cf:ae:73:25:d0:31:4e:48:ab:
f5:38:5c:7c:56:42:fb:0c:be:38:42:c9:b8:6a:95:6b:c7:e7:
ca:1a:3a:d9:2d:a9:0a:b3:94:3a:a7:e3:d6:12:3c:75:1f:05:
5a:a2:7b:94:11:21:0d:c9:62:65:40:b3:70:3f:97:90:31:b6:
ef:21:c8:4c:b8:0c:b0:b0:19:2b:33:17:21:72:60:e4:cb:91:
07:4d:8c:46:2f:7a:2b:9a:32:14:d3:d4:a7:54:24:8c:97:81:
61:18:91:c5:e5:af:f5:2e:a8:1d:ec:17:09:f2:c8:0c:da:b7:
77:1f:21:86:fc:08:cf:1b:a6:db:3c:13:00:a8:db:e8:14:cb:
6c:12:36:06:54:81:86:f4:bf:cc:17:e1:6f:e2:9c:5a:13:e5:
8d:54:02:5f:37:09:a3:7a:87:68:f8:ca:db:86:fd:df:1a:08:
e8:81:c0:69:87:a8:76:ab:56:68:48:53:92:c9:2d:38:5d:a4:
71:72:06:50:1c:4d:d8:2b:2f:3b:38:87:4c:1e:06:c1:fb:1f:
06:3b:1e:cb:c5:20:38:3f:62:b1:4d:ee:52:a4:2e:67:a0:03:
27:64:a7:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:40 2025 by rpki-client on console.sobornost.net