Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/64ed62-a8ef-4802-a1b4-9f97b0fc4832/1/9wiAjxQ8cKdQoI4k97phXcqjm0U.roa
File: 9wiAjxQ8cKdQoI4k97phXcqjm0U.roa (raw, json)
Hash identifier: aw34neSnWmkzi+er/oSuocGYd5WKHEhdmA5jFSEL7u8=
Subject key identifier: F7:08:80:8F:14:3C:70:A7:50:A0:8E:24:F7:BA:61:5D:CA:A3:9B:45
Certificate issuer: /CN=e2454c456ce68ba8fecad542aab9610b1ecc12e2
Certificate serial: 01941FFAAEED0CC243714D99BED4D2778441
Authority key identifier: E2:45:4C:45:6C:E6:8B:A8:FE:CA:D5:42:AA:B9:61:0B:1E:CC:12:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4kVMRWzmi6j-ytVCqrlhCx7MEuI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/64ed62-a8ef-4802-a1b4-9f97b0fc4832/1/9wiAjxQ8cKdQoI4k97phXcqjm0U.roa
Signing time: Wed 01 Jan 2025 03:48:30 +0000
ROA not before: Wed 01 Jan 2025 03:48:30 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 29695
IP address blocks: 193.161.208.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:fa:ae:ed:0c:c2:43:71:4d:99:be:d4:d2:77:84:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2454c456ce68ba8fecad542aab9610b1ecc12e2
Validity
Not Before: Jan 1 03:48:30 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=f708808f143c70a750a08e24f7ba615dcaa39b45
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:ae:bf:d1:f6:90:7c:7e:69:77:72:a5:59:49:
4f:d5:e7:c0:38:ac:d9:63:01:b1:1b:45:1e:0d:f6:
d1:79:1e:8b:b4:c5:4a:68:15:9d:66:dc:72:62:a3:
76:98:4f:65:bf:fb:e1:db:6a:53:88:73:c5:fa:78:
29:ff:44:1a:66:ed:0e:0a:2e:a6:8f:a7:eb:6e:1c:
fc:11:41:7f:b0:3f:45:e3:40:f9:14:91:4f:af:96:
c7:6c:7b:a6:af:9c:9a:4b:fd:1b:fd:27:5f:70:23:
44:82:99:86:fb:e6:cd:1c:23:d3:ee:3c:e0:a6:65:
ae:6b:39:e6:50:c8:b6:5e:2f:f7:c6:00:08:44:82:
fe:52:d8:f7:80:87:90:14:9f:58:f7:f2:64:ef:43:
7d:51:9d:75:c6:d7:d2:df:ce:e4:4f:e2:30:99:1d:
29:a4:89:96:5e:c9:fd:3e:87:3f:d0:e9:00:2f:35:
92:df:7c:f7:56:fe:8a:a9:d1:d5:c9:36:e7:db:5b:
83:ba:ce:11:43:dc:11:2b:d4:e9:26:d7:28:08:ed:
49:dc:80:4f:4a:9d:92:19:c6:3a:62:95:3e:be:1b:
6f:88:c0:67:c3:3d:3a:b4:04:70:83:58:08:77:74:
a3:b9:13:f4:da:db:5d:47:e2:f6:f0:e7:c3:a2:05:
1e:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:08:80:8F:14:3C:70:A7:50:A0:8E:24:F7:BA:61:5D:CA:A3:9B:45
X509v3 Authority Key Identifier:
keyid:E2:45:4C:45:6C:E6:8B:A8:FE:CA:D5:42:AA:B9:61:0B:1E:CC:12:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4kVMRWzmi6j-ytVCqrlhCx7MEuI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/64ed62-a8ef-4802-a1b4-9f97b0fc4832/1/9wiAjxQ8cKdQoI4k97phXcqjm0U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/64ed62-a8ef-4802-a1b4-9f97b0fc4832/1/4kVMRWzmi6j-ytVCqrlhCx7MEuI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.161.208.0/22
Signature Algorithm: sha256WithRSAEncryption
50:2f:9a:2f:95:6e:72:b9:04:82:7d:d9:25:7d:1b:ce:f0:71:
67:e5:bb:df:cf:13:af:04:73:39:09:bf:77:6d:ec:3d:75:39:
7f:07:15:8d:fd:94:50:2b:80:64:91:16:f8:8b:54:21:d6:6a:
b4:e6:77:fe:97:8a:3d:11:8d:ba:60:56:d1:87:f8:07:40:90:
72:e0:b9:1e:22:4a:eb:5b:89:c0:36:3d:ac:c7:57:52:f6:79:
e1:9e:38:4c:48:a2:a6:04:89:48:10:08:64:72:5a:a9:fa:cc:
f6:67:06:75:75:8b:8a:2c:3d:4e:58:d9:7d:8d:e1:bd:bb:f2:
45:9b:43:2a:9d:30:5c:09:b3:c6:07:17:19:06:6c:d5:9e:6f:
ab:ce:e4:30:49:4c:a7:ef:b1:40:6d:85:99:ab:88:23:bc:36:
09:8a:5c:23:ff:33:b2:88:fc:49:6e:fd:ed:2e:28:b7:dc:05:
40:a1:9f:b6:da:9e:ac:8d:f5:e0:ea:65:71:9e:24:e9:38:63:
2e:d6:14:91:ce:30:9e:94:c1:4a:23:35:c4:b2:06:53:c6:5a:
97:54:c7:92:62:15:82:4f:39:8d:8a:b3:6d:0e:fd:ec:62:cb:
1d:ad:13:be:c2:9f:f8:da:7b:14:b6:60:ef:08:52:10:1a:4e:
0f:98:64:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 21:48:25 2025 by rpki-client