Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/8e43fa-e91f-4818-b83f-17a1f86c6804/1/15o9XcK98PCQe9Aw651YSY6KZxs.roa
File: 15o9XcK98PCQe9Aw651YSY6KZxs.roa (raw, json)
Hash identifier: pNZyoE96eglB8CATVtXzqRTGbuEChhNcvG9WnCasQiY=
Subject key identifier: D7:9A:3D:5D:C2:BD:F0:F0:90:7B:D0:30:EB:9D:58:49:8E:8A:67:1B
Certificate issuer: /CN=edaf0ed1e3091e7b5c99ce43cac1031055b0f385
Certificate serial: 019424459D171E3F68F3E713722AAF4F97DB
Authority key identifier: ED:AF:0E:D1:E3:09:1E:7B:5C:99:CE:43:CA:C1:03:10:55:B0:F3:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7a8O0eMJHntcmc5DysEDEFWw84U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/8e43fa-e91f-4818-b83f-17a1f86c6804/1/15o9XcK98PCQe9Aw651YSY6KZxs.roa
Signing time: Wed 01 Jan 2025 23:48:49 +0000
ROA not before: Wed 01 Jan 2025 23:48:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 3212
IP address blocks: 193.9.19.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:45:9d:17:1e:3f:68:f3:e7:13:72:2a:af:4f:97:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=edaf0ed1e3091e7b5c99ce43cac1031055b0f385
Validity
Not Before: Jan 1 23:48:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=d79a3d5dc2bdf0f0907bd030eb9d58498e8a671b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:c5:99:a4:41:8e:aa:e5:34:bf:54:55:78:d7:
b5:7c:eb:14:fa:2e:b2:cc:77:39:e7:86:64:eb:3b:
a2:dd:2e:d7:6f:96:e8:4e:86:26:8d:1b:6d:c5:7e:
3e:68:30:34:43:96:90:57:a9:a9:b0:31:d3:49:4a:
f9:2b:49:7e:16:d0:63:d5:be:b1:c2:e2:94:c8:66:
83:8b:e2:0a:83:3d:12:e0:c0:8f:6f:f1:f3:a5:1a:
f8:63:46:17:a2:a6:fc:2a:9d:85:f9:5e:f2:88:12:
fb:ca:d9:da:bd:3a:9f:e2:fb:c9:50:c0:77:71:66:
fe:43:4e:54:91:5f:d8:14:6a:b5:8f:b6:72:66:5c:
6f:b2:1d:df:31:36:2b:2a:c4:77:ca:17:cd:d8:96:
12:9d:29:37:81:33:c7:7e:2d:6d:a2:29:f5:3b:42:
d8:88:75:dc:fb:dc:39:97:5a:e7:af:69:28:d8:1a:
c9:8b:1a:e2:6a:5d:37:37:9c:48:85:0e:46:97:ff:
a6:18:14:e1:bd:25:5c:ac:dd:be:4a:73:e1:fc:ac:
b6:ab:9c:24:4e:64:34:6f:a5:be:32:b5:bb:ee:47:
2b:1d:84:fd:8d:88:07:e9:37:0d:0c:96:64:4c:28:
48:f6:3e:e4:2a:32:0b:9a:fc:fd:70:62:33:b6:fa:
ef:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:9A:3D:5D:C2:BD:F0:F0:90:7B:D0:30:EB:9D:58:49:8E:8A:67:1B
X509v3 Authority Key Identifier:
keyid:ED:AF:0E:D1:E3:09:1E:7B:5C:99:CE:43:CA:C1:03:10:55:B0:F3:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a8O0eMJHntcmc5DysEDEFWw84U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/8e43fa-e91f-4818-b83f-17a1f86c6804/1/15o9XcK98PCQe9Aw651YSY6KZxs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/8e43fa-e91f-4818-b83f-17a1f86c6804/1/7a8O0eMJHntcmc5DysEDEFWw84U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.9.19.0/24
Signature Algorithm: sha256WithRSAEncryption
95:ba:b1:d5:9b:59:01:e5:c7:80:1a:47:ff:01:ed:58:8f:13:
30:07:36:88:95:cb:8a:28:7b:a8:75:9c:48:49:d4:a0:f8:03:
7e:01:05:01:15:46:46:ce:04:18:4d:12:9d:be:14:1d:58:6c:
7e:6e:c0:d4:11:4e:47:d6:3e:6f:73:0b:80:97:38:a0:81:20:
fc:a8:2d:35:65:98:f6:57:f5:3e:61:75:7b:82:af:82:fc:ed:
59:ba:4b:05:4a:06:4f:54:fa:36:71:f4:50:88:9e:4d:01:2e:
29:3b:3c:65:07:9e:d4:63:de:2d:c5:1b:09:c5:2a:40:99:48:
7b:59:a7:06:c5:1b:2d:5b:0f:f3:b1:8e:9d:49:dd:35:12:63:
1f:f9:23:1a:c8:56:ff:3b:c8:c2:87:09:b2:ed:1d:0a:d7:90:
57:f1:c2:a4:5d:e6:b9:a2:15:72:41:51:1e:64:c0:33:ed:32:
2d:51:18:ce:d8:f7:c2:23:2b:11:03:ed:f8:91:a5:13:61:be:
a6:a9:0f:31:42:d2:86:01:f3:aa:7d:28:a2:83:8b:18:11:2d:
97:36:45:0e:95:07:00:1c:79:47:41:ba:39:09:a2:74:e2:9b:
71:c5:d1:fc:0c:79:32:32:a2:04:e7:b7:4e:89:d2:84:12:d5:
fd:7c:2f:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 09:50:01 2025 by rpki-client