Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/cc4516-1b94-45ab-b161-f2b0fd3c3137/1/Af23iU2cOAjf5HW9zn9fh70-n50.roa
File: Af23iU2cOAjf5HW9zn9fh70-n50.roa (raw, json)
Hash identifier: KFEfbZsYVTLnLOFsm4vXZoNvNqznJDGo1YKGYJ8NDjc=
Subject key identifier: 01:FD:B7:89:4D:9C:38:08:DF:E4:75:BD:CE:7F:5F:87:BD:3E:9F:9D
Certificate issuer: /CN=8c33ddceab154bdf63e789f4443484ad5548664c
Certificate serial: 019424B275F46A63D4FE869B4ABD09532FCC
Authority key identifier: 8C:33:DD:CE:AB:15:4B:DF:63:E7:89:F4:44:34:84:AD:55:48:66:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jDPdzqsVS99j54n0RDSErVVIZkw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/cc4516-1b94-45ab-b161-f2b0fd3c3137/1/Af23iU2cOAjf5HW9zn9fh70-n50.roa
Signing time: Thu 02 Jan 2025 01:47:42 +0000
ROA not before: Thu 02 Jan 2025 01:47:42 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 25445
IP address blocks: 193.178.184.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:b2:75:f4:6a:63:d4:fe:86:9b:4a:bd:09:53:2f:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8c33ddceab154bdf63e789f4443484ad5548664c
Validity
Not Before: Jan 2 01:47:42 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=01fdb7894d9c3808dfe475bdce7f5f87bd3e9f9d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:bc:42:55:82:c3:e9:a7:a4:ce:30:b7:68:51:
fc:8c:3d:6e:bd:3a:32:ac:e1:7f:dc:51:27:4f:8c:
01:7d:79:28:9b:15:d8:22:77:56:d8:a6:62:94:e0:
39:9a:44:6b:6e:07:79:94:9d:9a:87:c7:8d:e8:25:
3e:fa:7b:a9:aa:99:0f:47:90:9c:5f:89:5c:cd:89:
d3:3d:7f:ee:ba:b8:9a:f6:b2:3d:58:47:5c:26:33:
ed:ee:5f:77:38:cd:92:23:32:41:c7:18:f7:f1:dd:
9e:95:09:db:13:f0:d1:29:6f:17:f2:e4:4d:91:b9:
d8:45:b9:ba:91:e9:8c:ac:c2:42:dd:b9:f3:34:b7:
b8:f4:36:e3:73:a0:6d:5e:74:42:e9:63:01:a4:79:
db:63:3c:a6:b3:37:24:b1:ef:e8:a8:11:5c:4e:65:
df:c1:06:c0:a6:60:b9:d9:41:7f:65:3a:68:70:b7:
d8:84:9c:da:5a:c5:c1:92:b6:ca:db:83:89:75:9b:
08:fc:25:a4:24:35:2f:21:b2:8f:a2:79:41:fa:69:
70:7b:96:84:ac:52:97:9f:94:40:d4:6a:9a:19:02:
f8:cd:35:69:66:56:41:b2:55:f3:d6:56:c2:7b:04:
93:e5:c9:ef:14:98:6b:5e:26:e1:33:e6:5d:b5:45:
49:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:FD:B7:89:4D:9C:38:08:DF:E4:75:BD:CE:7F:5F:87:BD:3E:9F:9D
X509v3 Authority Key Identifier:
keyid:8C:33:DD:CE:AB:15:4B:DF:63:E7:89:F4:44:34:84:AD:55:48:66:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jDPdzqsVS99j54n0RDSErVVIZkw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/cc4516-1b94-45ab-b161-f2b0fd3c3137/1/Af23iU2cOAjf5HW9zn9fh70-n50.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/cc4516-1b94-45ab-b161-f2b0fd3c3137/1/jDPdzqsVS99j54n0RDSErVVIZkw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.178.184.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:1c:4c:8b:d2:ca:cd:e6:ed:6d:10:64:91:b4:5f:ec:37:e3:
44:ae:66:44:91:7a:e1:06:03:0b:f5:ab:a8:da:14:30:81:0b:
9d:60:24:de:c9:f6:09:77:19:2e:70:2a:33:d5:64:d9:98:fa:
3a:89:62:bc:66:dd:8b:2f:d5:fb:13:7a:35:b3:32:ab:aa:5d:
6a:9d:48:bc:87:fd:cc:98:c1:79:59:79:6d:9f:32:d3:37:18:
12:2f:df:6b:7d:31:01:c1:83:4a:cb:2f:da:c6:91:bc:f6:fc:
94:2c:82:bf:db:45:2e:c1:cb:70:5d:46:f7:9f:1b:e7:33:7d:
cf:2b:b5:b6:41:f4:47:c9:15:96:f6:9c:6a:16:db:d5:8b:41:
76:15:d7:39:b5:c8:5c:f7:2c:61:5f:96:cd:55:67:a3:51:0b:
78:bb:4e:93:6d:55:e6:1f:0b:b6:51:43:93:76:bf:d7:8b:01:
9d:09:a8:29:16:47:92:02:9b:68:eb:76:c0:07:e3:c9:15:61:
3a:06:38:53:bd:5b:56:f9:c6:b2:f8:20:70:b1:35:01:e0:f9:
a7:8e:68:98:61:8f:84:11:98:a2:da:87:79:de:9b:b1:56:e1:
27:fa:bc:8d:3f:c1:31:21:85:0c:21:20:33:7a:01:0c:68:82:
64:b9:23:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 13:13:29 2025 by rpki-client