Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/ed3edb-d275-47c9-be7f-c4367592ae8a/1/20epV1j0HCMZ-uCYpk_kUZek4Go.roa
File: 20epV1j0HCMZ-uCYpk_kUZek4Go.roa (raw, json)
Hash identifier: 0IJbxaBTBJrWj2eiqCnd7zV+Z0NBZxwRizr0fkaGu8A=
Subject key identifier: DB:47:A9:57:58:F4:1C:23:19:FA:E0:98:A6:4F:E4:51:97:A4:E0:6A
Certificate issuer: /CN=83646ab7062148edb8fa9b60a831c8240dcab804
Certificate serial: 0194228D7875FE9B1FE6CC111DBB7F49BAD7
Authority key identifier: 83:64:6A:B7:06:21:48:ED:B8:FA:9B:60:A8:31:C8:24:0D:CA:B8:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g2RqtwYhSO24-ptgqDHIJA3KuAQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/ed3edb-d275-47c9-be7f-c4367592ae8a/1/20epV1j0HCMZ-uCYpk_kUZek4Go.roa
Signing time: Wed 01 Jan 2025 15:48:04 +0000
ROA not before: Wed 01 Jan 2025 15:48:04 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 58114
IP address blocks: 193.30.28.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:8d:78:75:fe:9b:1f:e6:cc:11:1d:bb:7f:49:ba:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=83646ab7062148edb8fa9b60a831c8240dcab804
Validity
Not Before: Jan 1 15:48:04 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=db47a95758f41c2319fae098a64fe45197a4e06a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:29:83:38:87:a1:2f:c9:73:41:8b:1c:bb:3e:
08:d5:68:01:7f:72:8d:22:35:6c:aa:54:a2:e0:bd:
75:ff:63:ad:de:a8:65:c4:47:1a:87:15:56:89:d6:
5d:af:0a:2c:a1:50:1b:b3:c8:8a:6d:d4:55:55:9b:
95:de:94:f5:0e:9b:96:e9:3a:13:8e:c2:6b:71:a7:
11:6b:c5:e6:51:eb:b7:17:44:37:46:15:97:05:af:
71:05:d2:0a:5e:b5:1b:8a:71:87:69:c7:ed:19:62:
04:51:5d:21:18:07:1f:68:e1:3a:97:bb:69:f5:08:
c2:c5:04:70:d2:83:21:02:d2:1f:59:2e:03:91:88:
43:ed:fc:71:dd:f3:56:eb:9f:a6:26:3f:1a:72:6d:
8b:8a:9a:85:58:46:b5:9d:12:04:96:b3:1d:db:d8:
20:d8:25:79:32:28:10:d0:d8:48:44:4f:9a:81:d3:
79:2c:09:61:fb:d9:47:d3:5f:a5:a0:08:3f:62:c7:
d7:04:a4:5f:40:46:e0:d0:6f:53:80:32:30:0e:49:
d2:c6:2b:ef:63:84:e6:de:55:12:42:10:05:9a:f1:
fb:7d:a6:b6:37:06:8a:35:14:6a:e2:c9:fb:15:02:
a2:a6:51:98:85:f0:4c:d7:02:a8:0f:4c:0c:70:fe:
13:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:47:A9:57:58:F4:1C:23:19:FA:E0:98:A6:4F:E4:51:97:A4:E0:6A
X509v3 Authority Key Identifier:
keyid:83:64:6A:B7:06:21:48:ED:B8:FA:9B:60:A8:31:C8:24:0D:CA:B8:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g2RqtwYhSO24-ptgqDHIJA3KuAQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/ed3edb-d275-47c9-be7f-c4367592ae8a/1/20epV1j0HCMZ-uCYpk_kUZek4Go.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/ed3edb-d275-47c9-be7f-c4367592ae8a/1/g2RqtwYhSO24-ptgqDHIJA3KuAQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.30.28.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:77:7e:57:90:ff:0c:63:d0:c0:ec:5f:b2:79:9a:c7:17:01:
cc:cc:1f:47:1c:5c:d9:be:8a:8d:88:bb:1c:2e:86:57:3d:e3:
b8:e8:15:d5:0e:d1:9d:7e:b3:22:da:fc:a2:67:14:bb:c0:b2:
e0:ad:ea:09:3e:19:b3:6f:8c:7a:7e:ba:82:d1:09:17:38:3b:
76:81:3c:e4:c1:22:66:47:de:3d:f2:2c:c2:d7:52:9f:c6:38:
90:52:c1:ec:ea:0b:a6:b3:ea:9e:59:b1:52:b3:5c:b3:10:ea:
c2:3c:16:ba:2b:f6:2d:b3:59:8d:d6:00:b1:b2:7a:58:d9:2a:
7b:b2:0c:f8:fb:b4:8a:ef:94:d6:26:ab:b1:cd:42:ad:c2:b4:
03:e6:8d:c5:e6:63:9d:03:1c:53:ad:9f:28:d9:bf:5e:bb:80:
71:67:90:95:41:f2:51:00:a3:10:50:8d:44:b2:60:e4:e8:38:
db:ce:8e:1a:39:c6:2e:c8:d7:b6:65:b8:ac:a7:7b:66:82:d1:
3b:30:9f:39:ea:7c:4a:eb:f8:bb:6f:58:2e:da:b1:e5:ee:d4:
9f:db:84:9c:28:c2:e4:60:50:4b:6e:30:5c:2c:5e:a1:cf:e0:
d6:ed:64:82:a7:ff:db:13:44:1e:5c:40:e6:01:f0:31:fd:8a:
6a:8f:56:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 04:04:42 2025 by rpki-client