Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/a2b2b8-cf1c-43e3-b0d3-fd31e1e3f5b9/1/wD2g-VtZvqp7IY0550_PgDhJeD0.roa
File: wD2g-VtZvqp7IY0550_PgDhJeD0.roa (raw, json)
Hash identifier: lT0qtpgd/Q3svueonVDRMVNhaFwZxKOMYzAHt0tWC5M=
Subject key identifier: C0:3D:A0:F9:5B:59:BE:AA:7B:21:8D:39:E7:4F:CF:80:38:49:78:3D
Certificate issuer: /CN=0d8611b51799189931e30ae1be95acda81e3e1cc
Certificate serial: 01942143F886CEA24DCB234FF5253A58DA0A
Authority key identifier: 0D:86:11:B5:17:99:18:99:31:E3:0A:E1:BE:95:AC:DA:81:E3:E1:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DYYRtReZGJkx4wrhvpWs2oHj4cw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/a2b2b8-cf1c-43e3-b0d3-fd31e1e3f5b9/1/wD2g-VtZvqp7IY0550_PgDhJeD0.roa
Signing time: Wed 01 Jan 2025 09:48:10 +0000
ROA not before: Wed 01 Jan 2025 09:48:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 43034
IP address blocks: 193.200.207.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:43:f8:86:ce:a2:4d:cb:23:4f:f5:25:3a:58:da:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d8611b51799189931e30ae1be95acda81e3e1cc
Validity
Not Before: Jan 1 09:48:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=c03da0f95b59beaa7b218d39e74fcf803849783d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:85:36:c2:20:5f:37:de:11:45:f3:7e:ad:70:
f8:a8:df:34:2e:43:a3:9d:e7:51:30:ff:64:d5:ba:
82:e7:b1:95:1d:f8:db:c9:56:91:6b:c2:fe:73:75:
30:7f:44:5c:1b:4b:cb:b9:c4:0f:f3:be:91:17:3c:
3f:fe:94:3b:90:09:f7:ef:8e:92:4e:b4:9f:74:a3:
1d:81:4f:b0:18:88:25:62:12:0d:50:fb:8c:95:9b:
15:68:aa:f1:5d:5d:c6:e6:d3:a9:d4:8a:90:c9:04:
a0:0d:0c:d8:ee:c4:a2:56:fe:20:c4:9f:82:41:e0:
12:2d:3f:39:cd:96:f9:2e:72:29:7c:d8:01:66:26:
0a:42:a2:c5:af:81:a9:83:f7:09:e5:fe:38:51:7d:
eb:7d:60:a7:c7:7a:75:2c:94:f4:19:52:2e:8e:ff:
b8:c8:31:c1:4f:72:22:d6:53:81:32:52:f0:92:45:
fc:26:68:1b:cb:aa:2e:10:23:01:0f:0a:ab:65:13:
5c:2c:cc:82:54:77:7c:5a:90:7f:9d:3a:99:52:eb:
a9:16:bd:3d:63:e9:dc:45:f0:c6:27:21:6d:4f:ab:
c5:d9:6b:4f:b8:9b:28:a8:37:d4:70:d2:a8:11:de:
39:00:92:af:ad:93:a7:07:3a:f4:21:a6:76:c6:80:
80:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:3D:A0:F9:5B:59:BE:AA:7B:21:8D:39:E7:4F:CF:80:38:49:78:3D
X509v3 Authority Key Identifier:
keyid:0D:86:11:B5:17:99:18:99:31:E3:0A:E1:BE:95:AC:DA:81:E3:E1:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DYYRtReZGJkx4wrhvpWs2oHj4cw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/a2b2b8-cf1c-43e3-b0d3-fd31e1e3f5b9/1/wD2g-VtZvqp7IY0550_PgDhJeD0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/a2b2b8-cf1c-43e3-b0d3-fd31e1e3f5b9/1/DYYRtReZGJkx4wrhvpWs2oHj4cw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.200.207.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:4d:10:ee:d4:36:7e:98:fd:8a:db:a1:b7:12:cc:52:9b:d5:
7a:2f:a6:ef:57:6c:95:51:21:f0:0f:0b:1e:bf:92:3a:27:38:
cb:d5:72:01:07:90:a6:8f:fe:54:e8:26:10:dc:b5:ed:11:a9:
9c:71:0d:12:5d:c5:80:90:3d:6c:ed:29:fb:95:fe:57:d8:2b:
f4:4f:76:2f:9d:e0:53:be:c9:6b:1a:d9:48:cd:50:31:47:25:
22:87:e0:39:51:65:d5:19:69:3f:62:40:b1:6f:40:af:85:71:
1d:37:20:f1:ee:cc:81:3b:f7:86:2c:3c:21:62:f6:a7:e2:4d:
80:96:53:ed:9d:58:0f:f4:ee:21:b6:26:ef:bd:88:8a:8a:42:
1a:28:73:b5:65:42:21:8b:5b:87:5b:21:7f:96:5b:b7:71:ea:
73:02:4c:51:eb:bc:4d:78:6a:d0:55:e3:bb:b0:10:d5:07:98:
18:2a:2c:0a:90:57:ea:ff:31:d0:b5:68:5f:8f:b9:b0:32:fd:
78:17:ac:4e:a8:7b:15:70:86:10:97:ed:e3:aa:ee:76:53:19:
d8:93:ca:bc:fe:83:d7:67:54:a1:54:34:ed:d6:60:f4:8c:f7:
b5:e3:58:3d:5f:aa:dc:46:a7:4e:3a:17:a3:b2:0b:75:86:a6:
b6:32:c1:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:01 2025 by rpki-client on console.sobornost.net