Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/174f32-1ad1-44f8-8a7f-5fdb9563113c/1/kUe56rRopp_KQsUYDln6H32rpVA.roa
File: kUe56rRopp_KQsUYDln6H32rpVA.roa (raw, json)
Hash identifier: Nqm32SYb89EX8JBzdHqkHyeFXZStjUKylm9CZ3PRcrY=
Subject key identifier: 91:47:B9:EA:B4:68:A6:9F:CA:42:C5:18:0E:59:FA:1F:7D:AB:A5:50
Certificate issuer: /CN=e48345aa0cd7026d621c50084f9d9dbb5b9cc2f0
Certificate serial: 019420680B7E6E164B692FF304F70C5C002A
Authority key identifier: E4:83:45:AA:0C:D7:02:6D:62:1C:50:08:4F:9D:9D:BB:5B:9C:C2:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5INFqgzXAm1iHFAIT52du1ucwvA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/174f32-1ad1-44f8-8a7f-5fdb9563113c/1/kUe56rRopp_KQsUYDln6H32rpVA.roa
Signing time: Wed 01 Jan 2025 05:47:57 +0000
ROA not before: Wed 01 Jan 2025 05:47:57 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 212608
IP address blocks: 193.163.53.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:68:0b:7e:6e:16:4b:69:2f:f3:04:f7:0c:5c:00:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e48345aa0cd7026d621c50084f9d9dbb5b9cc2f0
Validity
Not Before: Jan 1 05:47:57 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=9147b9eab468a69fca42c5180e59fa1f7daba550
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:f8:24:66:e9:c2:70:ca:38:cf:99:c3:32:d8:
09:b0:4d:0a:63:f7:fd:47:c5:ea:96:e9:23:42:a2:
5a:6f:8a:71:ba:ff:0d:7c:ec:8f:3f:ea:ab:35:8c:
c8:1a:6b:4e:ea:17:82:36:f2:ee:ce:73:4f:ef:05:
4a:eb:36:28:0f:ba:31:bf:a6:c9:50:c0:85:4b:f9:
a1:93:95:56:85:8f:ac:c6:73:15:40:d5:04:f9:8d:
c0:21:e1:87:be:62:16:99:e4:92:99:c9:ba:fd:86:
1b:a2:2d:f8:9a:1b:e1:1b:12:bb:43:0a:03:60:2f:
76:96:62:94:e9:d8:82:02:ce:82:54:66:0d:2a:93:
3d:15:d5:a6:11:04:d8:da:30:f9:6b:df:d9:a3:b4:
2e:5e:ac:55:0b:ab:69:93:e7:2c:9e:26:fb:7a:01:
6e:31:29:82:0e:25:81:76:1a:b4:2c:33:ca:6f:bd:
a1:28:db:2e:30:88:8a:6f:85:c1:2c:c9:2a:bf:a4:
39:9c:2e:1b:44:1f:b1:17:36:af:1c:cc:eb:3e:7d:
e6:f8:21:5c:2a:88:dc:59:d6:8c:6d:d3:3d:2b:25:
e1:0b:98:d2:ae:a3:9b:a4:87:e4:33:47:d3:fc:a2:
a0:93:fe:86:64:dd:4c:6a:1e:68:18:e5:21:a5:d9:
6c:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:47:B9:EA:B4:68:A6:9F:CA:42:C5:18:0E:59:FA:1F:7D:AB:A5:50
X509v3 Authority Key Identifier:
keyid:E4:83:45:AA:0C:D7:02:6D:62:1C:50:08:4F:9D:9D:BB:5B:9C:C2:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5INFqgzXAm1iHFAIT52du1ucwvA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/174f32-1ad1-44f8-8a7f-5fdb9563113c/1/kUe56rRopp_KQsUYDln6H32rpVA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/174f32-1ad1-44f8-8a7f-5fdb9563113c/1/5INFqgzXAm1iHFAIT52du1ucwvA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.163.53.0/24
Signature Algorithm: sha256WithRSAEncryption
77:e2:f2:57:4d:11:0e:d8:81:a9:16:5a:c8:0d:e4:12:94:53:
11:a5:a2:4a:b1:71:f0:b5:bc:a7:1c:d9:dd:1c:2c:45:b7:60:
49:62:9d:f1:f8:b9:38:31:cd:fb:71:7c:da:97:75:9d:28:bf:
1c:42:f1:18:46:b3:d3:8b:75:02:7d:23:7d:ad:17:95:09:3d:
a8:d3:a4:f8:6e:c9:5c:11:5e:c2:26:d6:1f:fe:a4:03:d2:6a:
aa:92:73:e1:4b:f2:8d:64:ee:93:d2:6b:90:43:26:6e:3e:c3:
e2:e6:e3:69:5b:3e:28:dd:82:c8:d8:42:cd:ef:65:72:33:c4:
9e:1e:56:ab:1f:64:e4:71:94:77:73:90:3a:72:c8:2d:cc:8c:
40:10:da:63:5c:b9:a8:71:8b:4c:c1:c5:12:39:83:7e:d4:a7:
ee:a9:d2:09:0f:e0:da:af:4b:8e:54:15:79:a1:f4:3e:45:e9:
dc:2c:34:83:73:6d:a0:2b:3f:93:28:bf:8e:bb:8c:a7:31:f4:
f0:2a:44:5e:ea:72:1b:55:35:da:63:f1:88:c7:c1:32:c0:0c:
de:8f:77:a4:71:22:47:38:ff:30:d7:77:2f:f7:33:52:3a:89:
ef:a8:86:d5:50:06:88:00:2c:aa:2c:27:ad:ff:14:fa:6b:4c:
87:b8:62:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 24 22:32:57 2025 by rpki-client