Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/119130-dbfd-4027-a16e-c35d5d5401da/1/FkEK24gMOi9MxsRr642Srdl8lHQ.roa
File: FkEK24gMOi9MxsRr642Srdl8lHQ.roa (raw, json)
Hash identifier: DtYbP2drcIzf0g2tEEsCLYpdXSaGIQ0MZgdI48xnP+Q=
Subject key identifier: 16:41:0A:DB:88:0C:3A:2F:4C:C6:C4:6B:EB:8D:92:AD:D9:7C:94:74
Certificate issuer: /CN=5511968b797aca57d611801a93a85cb864e43e72
Certificate serial: 019424453B32A1AE5DD8B054F8820D55C58D
Authority key identifier: 55:11:96:8B:79:7A:CA:57:D6:11:80:1A:93:A8:5C:B8:64:E4:3E:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VRGWi3l6ylfWEYAak6hcuGTkPnI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/119130-dbfd-4027-a16e-c35d5d5401da/1/FkEK24gMOi9MxsRr642Srdl8lHQ.roa
Signing time: Wed 01 Jan 2025 23:48:24 +0000
ROA not before: Wed 01 Jan 2025 23:48:24 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 12993
IP address blocks: 193.105.104.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:45:3b:32:a1:ae:5d:d8:b0:54:f8:82:0d:55:c5:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5511968b797aca57d611801a93a85cb864e43e72
Validity
Not Before: Jan 1 23:48:24 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=16410adb880c3a2f4cc6c46beb8d92add97c9474
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:ec:fb:d7:51:fb:c5:eb:08:df:c9:ef:db:84:
87:6c:4d:f7:11:38:d7:bd:a3:13:92:45:ce:fe:03:
93:35:23:b3:83:d2:a7:d2:c1:cf:ac:68:31:58:4f:
8c:6c:59:49:de:78:ec:6a:78:8b:39:a9:8a:32:58:
e7:0f:88:3c:2b:bb:fc:92:fb:ef:ae:04:ec:ad:d1:
54:60:ef:af:47:ec:e7:33:d7:25:26:a2:44:54:c0:
e3:49:49:04:d5:1b:00:9a:0b:c2:e5:cc:63:9d:ec:
cc:bc:8a:9a:f1:60:bb:c5:8f:24:1d:42:3c:2a:cc:
be:62:95:93:05:1c:f6:3b:fd:6c:69:d5:d3:3a:67:
c8:27:e6:1e:25:be:97:a9:86:78:fc:75:94:0f:0a:
e4:5d:aa:1b:10:91:28:e7:0e:50:00:a9:ea:c1:f1:
a5:46:58:4d:18:ed:3e:ab:ae:64:69:0e:9d:da:8b:
78:b8:93:08:c9:fc:ad:92:b4:1d:06:2b:aa:04:e5:
b3:7e:02:32:39:f8:1d:9f:7c:65:e4:ad:44:3d:69:
7e:11:e2:b1:d3:3d:39:e2:b8:ad:c6:aa:88:ca:45:
3a:30:a6:37:45:0a:af:31:0a:96:a8:78:ab:89:54:
77:ed:81:de:06:06:92:dc:6e:b6:4a:d2:ea:b9:64:
ae:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:41:0A:DB:88:0C:3A:2F:4C:C6:C4:6B:EB:8D:92:AD:D9:7C:94:74
X509v3 Authority Key Identifier:
keyid:55:11:96:8B:79:7A:CA:57:D6:11:80:1A:93:A8:5C:B8:64:E4:3E:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VRGWi3l6ylfWEYAak6hcuGTkPnI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/119130-dbfd-4027-a16e-c35d5d5401da/1/FkEK24gMOi9MxsRr642Srdl8lHQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/119130-dbfd-4027-a16e-c35d5d5401da/1/VRGWi3l6ylfWEYAak6hcuGTkPnI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.105.104.0/24
Signature Algorithm: sha256WithRSAEncryption
98:d2:dd:e7:00:9b:47:1a:3f:7b:3c:df:20:1f:c7:c9:bd:87:
37:7d:30:bd:9f:93:ba:fb:44:e0:a6:82:c6:f8:53:0f:20:02:
0d:db:53:1d:7d:ac:ac:9d:fb:05:b2:30:82:a4:86:b6:2b:81:
0c:1c:bb:73:e4:e5:af:3d:0f:24:ff:4c:a5:88:a3:6e:3a:07:
67:e0:d4:8e:b0:f2:9b:55:b0:88:dd:f1:e8:ce:96:a4:d8:3d:
9e:44:92:46:20:5a:ed:0e:7e:8f:8e:15:38:08:70:d2:b2:b1:
2d:fc:bb:46:45:5e:3d:bf:e2:60:08:59:a6:7f:3b:7a:52:66:
66:0e:fe:e7:34:40:d2:22:7f:af:59:5f:5b:41:16:e7:6d:9b:
d8:8f:f4:97:b6:77:3e:b7:96:fa:9f:17:68:94:e2:9e:24:c6:
0a:33:05:4b:04:93:bd:48:b5:38:43:ec:24:ed:15:ad:63:f3:
68:b9:a7:19:1c:9a:ff:66:82:7b:74:4e:90:ef:3c:8d:fb:2e:
26:b4:15:f4:87:2e:1a:39:9a:76:f5:45:44:60:c6:0b:d7:e5:
b0:b0:20:44:e9:1c:84:50:78:e4:fc:cf:b6:60:c2:a8:cd:65:
59:5d:fd:de:df:82:ac:bb:91:85:fb:93:bc:5c:b3:aa:d0:58:
7e:9f:99:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 11:46:57 2025 by rpki-client