Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/df2777-77a1-4b84-921f-a88270f5d1a9/1/H1wKiz5SsZHWgQJv7hF0PlabyfY.roa
File: H1wKiz5SsZHWgQJv7hF0PlabyfY.roa (raw, json)
Hash identifier: 6wfj+F7k71jPfzNN92P8c52KydQsMzI1OT40ddg5oJs=
Subject key identifier: 1F:5C:0A:8B:3E:52:B1:91:D6:81:02:6F:EE:11:74:3E:56:9B:C9:F6
Certificate issuer: /CN=5f16b294b1a647bf6d67683b51614497e751f21f
Certificate serial: 019427B5E342FD8F9CB433C5060BB5253C55
Authority key identifier: 5F:16:B2:94:B1:A6:47:BF:6D:67:68:3B:51:61:44:97:E7:51:F2:1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XxaylLGmR79tZ2g7UWFEl-dR8h8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/df2777-77a1-4b84-921f-a88270f5d1a9/1/H1wKiz5SsZHWgQJv7hF0PlabyfY.roa
Signing time: Thu 02 Jan 2025 15:50:19 +0000
ROA not before: Thu 02 Jan 2025 15:50:19 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 34182
IP address blocks: 193.28.185.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:b5:e3:42:fd:8f:9c:b4:33:c5:06:0b:b5:25:3c:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5f16b294b1a647bf6d67683b51614497e751f21f
Validity
Not Before: Jan 2 15:50:19 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=1f5c0a8b3e52b191d681026fee11743e569bc9f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:b2:4f:41:52:38:c9:60:e6:b2:5b:87:77:42:
9a:0e:b5:d8:57:6c:fb:87:6e:28:03:d5:4f:43:50:
bc:8b:f1:30:fb:00:b6:84:e2:4a:c4:05:9d:e0:09:
86:46:b8:22:ee:a6:c4:3f:9d:31:bf:26:e4:f6:36:
6b:e2:4d:c8:e2:5b:40:a6:59:4d:88:0b:d8:d1:5b:
50:84:ad:0f:10:82:f0:dc:bd:3d:ee:1a:2f:fb:e4:
0d:23:19:38:00:e7:ff:01:af:5d:04:68:b3:64:05:
a7:54:f8:de:8c:34:c1:25:92:2f:49:52:bf:3a:ce:
56:8e:98:42:04:07:de:63:42:0c:85:ea:df:46:b1:
24:95:a5:15:bc:09:b3:54:ae:be:dd:d9:fd:fd:74:
9e:8e:15:b5:c6:9d:2e:c2:14:25:37:fd:3d:85:3b:
e4:43:39:13:b5:5e:fc:1b:f5:0a:e3:15:7c:0e:94:
ac:87:f4:7f:f8:5e:a7:6a:95:b9:f5:bc:05:42:45:
95:68:81:41:ba:d6:92:8e:35:14:38:ff:8a:37:07:
77:98:c6:8a:df:63:ee:f5:49:7a:f0:68:c8:ad:a9:
47:64:f7:c3:80:2e:53:a0:ce:b1:03:ec:74:ac:38:
1c:bd:ef:4b:fa:95:37:8d:ab:50:31:99:0b:fe:24:
04:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:5C:0A:8B:3E:52:B1:91:D6:81:02:6F:EE:11:74:3E:56:9B:C9:F6
X509v3 Authority Key Identifier:
keyid:5F:16:B2:94:B1:A6:47:BF:6D:67:68:3B:51:61:44:97:E7:51:F2:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XxaylLGmR79tZ2g7UWFEl-dR8h8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/df2777-77a1-4b84-921f-a88270f5d1a9/1/H1wKiz5SsZHWgQJv7hF0PlabyfY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/df2777-77a1-4b84-921f-a88270f5d1a9/1/XxaylLGmR79tZ2g7UWFEl-dR8h8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.28.185.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:dc:9a:08:3e:f9:c9:d0:a3:91:99:74:88:84:65:e8:76:38:
b5:70:88:85:6e:ac:10:ba:ca:dd:7a:1e:d4:6b:2b:be:6b:6d:
de:65:77:25:a1:64:28:0d:dd:dc:88:cf:53:cf:0a:a8:ea:df:
6a:1e:69:2d:85:db:cd:ab:5e:1e:db:55:97:0f:dc:85:8f:ad:
dc:1b:e4:11:57:c9:0b:7d:9d:24:6a:d5:46:0c:9c:7f:4b:30:
31:ab:d0:a6:8e:35:d0:eb:d6:ea:bc:8d:dd:d3:c3:0e:49:f0:
d1:ae:a4:d5:59:c0:5b:bb:f1:7a:aa:bb:b9:31:59:49:6a:21:
a6:e7:db:48:72:75:57:6d:9d:1b:8d:69:a1:0d:c8:b6:e9:96:
01:7e:8e:fa:48:b3:22:e5:a8:b9:cb:f5:1c:c3:24:37:85:a4:
89:33:93:e4:1c:d2:37:f2:89:13:15:42:db:82:cc:cf:fd:1b:
2f:16:68:06:5a:ac:7a:a6:46:6c:91:17:9d:93:9b:2c:01:03:
e3:c2:57:09:98:80:04:58:2a:c6:db:5b:d1:bf:3a:2f:ec:79:
71:2b:7d:25:a8:d2:97:d1:1e:34:b7:2b:22:fb:aa:ff:7b:f8:
3f:94:d4:2d:3a:7c:93:9a:ac:ed:2e:64:30:d3:f1:1b:fd:50:
1a:f7:dc:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 13:46:41 2025 by rpki-client