Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/bf6049-8d1d-4be8-9f57-8bab78de32c9/1/C1SZKKCkY7SbLFevNwXtaHd2whI.roa
File: C1SZKKCkY7SbLFevNwXtaHd2whI.roa (raw, json)
Hash identifier: qLK2DqN3/ycXpzvuQLbdz4SdUDAqvfLR7qE4BXoJD04=
Subject key identifier: 0B:54:99:28:A0:A4:63:B4:9B:2C:57:AF:37:05:ED:68:77:76:C2:12
Certificate issuer: /CN=02807e0863103f0912e7e0247811d167797d8107
Certificate serial: 01942143F6380072DB4BE748885FC66FD508
Authority key identifier: 02:80:7E:08:63:10:3F:09:12:E7:E0:24:78:11:D1:67:79:7D:81:07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AoB-CGMQPwkS5-AkeBHRZ3l9gQc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/bf6049-8d1d-4be8-9f57-8bab78de32c9/1/C1SZKKCkY7SbLFevNwXtaHd2whI.roa
Signing time: Wed 01 Jan 2025 09:48:09 +0000
ROA not before: Wed 01 Jan 2025 09:48:09 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 25447
IP address blocks: 193.169.168.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:43:f6:38:00:72:db:4b:e7:48:88:5f:c6:6f:d5:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=02807e0863103f0912e7e0247811d167797d8107
Validity
Not Before: Jan 1 09:48:09 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=0b549928a0a463b49b2c57af3705ed687776c212
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:0e:b9:39:f1:87:09:0a:ce:92:c7:4f:c8:bb:
2d:c9:f8:1e:c2:fa:0c:bf:82:0c:35:5e:20:1f:41:
82:9f:b3:37:5f:18:6c:66:d6:80:d0:3a:25:29:a6:
08:c9:e7:23:6e:dc:fc:19:dd:7b:87:68:6b:e2:6a:
2e:f0:c1:dc:bf:13:68:9e:29:f8:3a:dc:6a:63:8e:
18:63:9a:4b:8e:37:94:a1:3b:3d:78:10:22:7a:e6:
3d:84:f4:a1:ef:b0:d3:89:16:66:ae:33:c9:51:53:
81:81:67:61:b5:0e:20:c4:37:b2:0d:7d:71:f7:80:
dd:4c:a6:b6:c0:12:ac:c9:28:b7:83:34:e6:8c:c9:
79:d0:7b:84:80:e2:c7:e3:97:f9:66:0e:20:6b:2e:
56:3a:00:0e:e2:69:ec:e1:e6:b3:57:26:6e:53:0c:
17:80:13:27:59:24:e1:66:15:5e:55:c9:77:2c:1f:
cc:4b:d4:f5:df:76:4b:10:39:68:cd:e8:9d:02:3a:
a6:e0:c7:ad:1a:59:10:0d:91:ec:7a:15:dc:cc:62:
1e:0b:59:0a:eb:36:1f:19:b5:d3:a9:2c:e4:ca:d8:
bb:db:56:13:78:b2:0b:69:36:02:74:9d:96:2d:6f:
5c:62:20:8f:f2:a4:d3:02:52:62:b0:ec:2c:f7:19:
77:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:54:99:28:A0:A4:63:B4:9B:2C:57:AF:37:05:ED:68:77:76:C2:12
X509v3 Authority Key Identifier:
keyid:02:80:7E:08:63:10:3F:09:12:E7:E0:24:78:11:D1:67:79:7D:81:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AoB-CGMQPwkS5-AkeBHRZ3l9gQc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/bf6049-8d1d-4be8-9f57-8bab78de32c9/1/C1SZKKCkY7SbLFevNwXtaHd2whI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/bf6049-8d1d-4be8-9f57-8bab78de32c9/1/AoB-CGMQPwkS5-AkeBHRZ3l9gQc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.169.168.0/23
Signature Algorithm: sha256WithRSAEncryption
9e:2f:4a:55:46:22:e0:7f:e0:b9:33:7f:11:b1:c4:78:73:a4:
1a:87:f2:eb:de:d2:e4:a9:cc:8f:4f:a8:8e:b4:55:9d:99:a4:
48:54:18:20:94:c7:a5:ea:1f:19:48:88:02:27:7a:1b:8c:cc:
b7:4f:87:4f:29:f2:38:24:83:41:e9:96:65:fe:c3:16:90:63:
60:b3:71:a5:30:f7:c6:ad:8c:86:b8:bb:bd:b5:57:1d:c1:c4:
ed:69:f1:bf:fc:d2:69:cf:76:b3:84:ed:af:1c:00:00:4f:af:
5d:10:04:7d:5d:38:14:e3:b7:fe:37:3f:c8:d8:ca:2c:c1:29:
a0:20:f2:cb:4e:9b:67:18:3c:3b:4d:44:37:71:77:cf:d4:ca:
03:19:8d:4b:1d:16:51:c0:95:b1:77:f3:5d:cc:9f:f1:b7:9e:
d1:7d:bb:cc:de:c4:f2:cf:43:71:6a:45:ea:15:41:19:b9:a8:
73:cf:34:4f:d3:e1:26:6b:bb:96:83:b2:bc:66:06:60:89:01:
16:b2:06:16:23:2d:d6:08:20:19:ed:b8:05:24:13:94:91:32:
c8:44:d4:1f:ed:0e:b7:46:fa:18:06:5d:cb:a8:e4:df:12:ef:
1b:d4:f6:f7:e9:8a:69:ca:d2:a3:25:59:13:26:65:19:f4:80:
14:a7:46:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 15:46:18 2025 by rpki-client