Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/2306f6-6cc0-4982-a523-16842bdad925/1/r0qME3D6vnHPgW7FfIJR7qyiR6U.roa
File: r0qME3D6vnHPgW7FfIJR7qyiR6U.roa (raw, json)
Hash identifier: +N7ZuBvhriEjaq14DPYwTSmD1pr2ezeFoDJODymMVSw=
Subject key identifier: AF:4A:8C:13:70:FA:BE:71:CF:81:6E:C5:7C:82:51:EE:AC:A2:47:A5
Certificate issuer: /CN=d466d170c810ba34c42e920e84d4262845977f85
Certificate serial: 019421445B9E6A13DB64A6C23198619C309C
Authority key identifier: D4:66:D1:70:C8:10:BA:34:C4:2E:92:0E:84:D4:26:28:45:97:7F:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1GbRcMgQujTELpIOhNQmKEWXf4U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/2306f6-6cc0-4982-a523-16842bdad925/1/r0qME3D6vnHPgW7FfIJR7qyiR6U.roa
Signing time: Wed 01 Jan 2025 09:48:35 +0000
ROA not before: Wed 01 Jan 2025 09:48:35 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 212665
IP address blocks: 193.105.172.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:44:5b:9e:6a:13:db:64:a6:c2:31:98:61:9c:30:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d466d170c810ba34c42e920e84d4262845977f85
Validity
Not Before: Jan 1 09:48:35 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=af4a8c1370fabe71cf816ec57c8251eeaca247a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:6f:19:71:67:ef:80:5b:e6:b6:f2:0d:42:1b:
81:b7:26:ff:e9:90:f1:bd:df:ef:6c:16:fe:3c:80:
81:fa:37:b1:55:fd:11:4a:d4:6e:f5:7d:18:29:ad:
14:51:53:d5:84:13:cf:b0:14:48:98:e2:7c:89:05:
9f:b3:5e:aa:ee:ff:f2:12:96:f0:c8:59:29:1b:1a:
f0:fc:13:c0:17:08:9e:9d:29:ae:17:53:41:90:76:
8d:6d:eb:eb:63:0f:1e:22:94:97:01:a0:bd:dd:df:
81:e7:fb:a5:86:a2:87:71:c3:b9:2e:13:4d:2d:16:
80:66:44:ef:d1:ec:e0:4a:42:55:2f:49:0c:70:5b:
b1:5e:3e:d6:d1:64:3b:4e:9c:79:7a:15:f8:fe:0f:
9f:1f:f9:4f:9b:05:b9:bd:ee:8a:3d:4c:75:b6:51:
10:6b:5e:80:8f:84:c9:30:75:3b:41:dd:c4:02:db:
91:04:82:bb:0c:c2:83:90:00:a8:c1:70:0f:60:5f:
97:88:73:2e:5b:24:21:5c:e3:92:f3:c6:29:c9:13:
82:3f:24:ad:2b:ea:66:57:d2:fe:fb:a8:44:7c:2b:
c7:3a:75:8a:e5:c5:4c:2c:6d:d8:14:a2:5b:a0:a9:
38:db:43:3f:8c:d7:60:2a:7c:44:1c:13:78:f8:72:
d6:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:4A:8C:13:70:FA:BE:71:CF:81:6E:C5:7C:82:51:EE:AC:A2:47:A5
X509v3 Authority Key Identifier:
keyid:D4:66:D1:70:C8:10:BA:34:C4:2E:92:0E:84:D4:26:28:45:97:7F:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1GbRcMgQujTELpIOhNQmKEWXf4U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/2306f6-6cc0-4982-a523-16842bdad925/1/r0qME3D6vnHPgW7FfIJR7qyiR6U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/2306f6-6cc0-4982-a523-16842bdad925/1/1GbRcMgQujTELpIOhNQmKEWXf4U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.105.172.0/24
Signature Algorithm: sha256WithRSAEncryption
55:3f:cb:11:09:87:fc:3d:6d:22:db:2b:bd:3a:f7:96:17:94:
eb:78:7f:40:4d:99:a5:54:0f:5e:e6:c5:01:8d:7b:a3:e1:dd:
ee:4c:14:36:38:7b:63:14:23:e3:e0:eb:f0:90:25:81:bc:25:
40:76:e7:e6:86:6d:f6:49:02:80:29:40:e1:db:35:66:25:a9:
6b:a9:c2:7b:04:cd:07:fa:54:b2:bf:b1:c9:b7:50:9f:89:9a:
be:d2:e3:27:75:87:dd:f9:b0:da:c1:09:e7:82:25:af:d5:35:
33:71:59:5c:ab:d5:cd:7a:9c:04:86:00:09:57:52:82:e7:dc:
e7:d1:4d:5f:9a:02:44:c7:39:6e:86:c4:99:ba:60:f4:b7:81:
37:7b:87:89:f1:4d:da:e7:eb:71:79:11:e3:71:52:29:2a:ba:
c9:53:d3:e2:d1:3d:28:32:f3:0c:1f:33:73:fb:06:ea:3c:de:
36:8d:89:1a:82:9e:fc:0b:df:ed:96:b9:27:2f:a1:4b:2f:b7:
ba:87:a8:61:4e:a4:ec:7b:e8:b9:95:11:2e:2a:d0:8d:a6:61:
af:38:78:95:1a:82:4d:b2:10:8f:45:8b:c2:68:27:dc:ac:10:
76:d2:b7:09:9b:42:da:8a:5b:e9:66:0a:db:89:dc:c3:e0:1c:
1f:b8:60:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 18:15:18 2025 by rpki-client