Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/9ZN3xp7ouJCT0JmCo6DP47Gn57I.roa
File: 9ZN3xp7ouJCT0JmCo6DP47Gn57I.roa (raw, json)
Hash identifier: EQ9VB/kUlq8//APpOQDblzsHQVaKFWID/mcR/Nn1wWY=
Subject key identifier: F5:93:77:C6:9E:E8:B8:90:93:D0:99:82:A3:A0:CF:E3:B1:A7:E7:B2
Certificate issuer: /CN=86d648bdba965461b1e8c11b9dd436c61382873c
Certificate serial: 0195F0673342A48EE23F908A7BDBC66AEAAD
Authority key identifier: 86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/9ZN3xp7ouJCT0JmCo6DP47Gn57I.roa
Signing time: Tue 01 Apr 2025 08:10:49 +0000
ROA not before: Tue 01 Apr 2025 08:10:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 63023
IP address blocks: 193.233.19.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:f0:67:33:42:a4:8e:e2:3f:90:8a:7b:db:c6:6a:ea:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86d648bdba965461b1e8c11b9dd436c61382873c
Validity
Not Before: Apr 1 08:10:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=f59377c69ee8b89093d09982a3a0cfe3b1a7e7b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:90:0c:93:1d:6b:dd:ac:75:0f:e9:61:9c:fd:
8d:f6:0b:af:ce:55:68:76:ee:bf:62:b7:f4:18:f9:
6e:54:e3:34:9f:44:24:7e:96:6d:2a:a3:28:23:ba:
7f:60:03:bb:74:7d:1e:58:93:82:8d:31:71:33:3d:
d2:d1:05:39:77:88:4a:ae:47:d6:03:4c:7d:64:af:
33:1c:3a:e9:29:85:4c:6f:db:73:0e:0a:ff:f3:d2:
80:06:c5:cc:3f:64:8b:dc:c8:0f:42:8d:1e:16:c0:
9f:b8:86:b3:92:bb:92:b4:78:59:36:88:ff:71:93:
9a:8d:0f:96:7b:03:dd:21:22:21:a0:c7:68:f9:24:
85:07:ba:b3:08:a4:96:b6:8b:91:a4:93:55:c8:b1:
89:b9:a6:cd:4f:db:63:e3:ba:59:7d:b9:1e:aa:c7:
ce:f8:a6:8e:0b:b9:00:ad:6a:fb:0d:4d:f4:81:27:
9a:76:5f:16:77:bc:57:fa:6e:0c:55:e1:69:5b:dd:
33:a0:e9:61:d5:54:dd:94:82:53:98:f4:1f:ff:eb:
53:16:04:f0:58:5b:84:1d:36:44:6a:69:2a:cb:00:
34:90:90:11:30:98:ee:cd:38:0a:12:32:74:57:94:
27:b7:35:53:d9:f4:66:f8:57:b4:78:06:00:9d:c0:
b1:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:93:77:C6:9E:E8:B8:90:93:D0:99:82:A3:A0:CF:E3:B1:A7:E7:B2
X509v3 Authority Key Identifier:
keyid:86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/9ZN3xp7ouJCT0JmCo6DP47Gn57I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.233.19.0/24
Signature Algorithm: sha256WithRSAEncryption
74:fa:0b:df:04:77:e1:ec:87:39:8f:b1:f1:5e:bb:60:9e:9b:
20:8c:cb:d0:7f:89:e5:f9:ff:90:2a:96:69:a6:23:bf:ab:27:
6b:95:82:19:b5:7e:4d:ad:54:8c:c2:0e:08:04:46:5c:d6:44:
e1:12:22:15:20:dc:ca:79:9c:22:e0:b4:c3:37:23:42:ed:64:
8f:93:89:1b:15:7b:18:85:ae:d8:58:e2:1e:57:73:b0:3a:f9:
a3:ae:e7:67:8b:f5:82:51:e5:fc:05:dd:97:9f:61:0c:29:88:
f5:42:fe:35:ac:c0:7e:4c:2c:85:46:6c:1f:0f:c6:a2:20:86:
56:83:b2:0c:b6:ef:67:72:23:56:8a:b8:41:a2:88:e4:3d:f7:
37:2f:75:df:84:39:6d:b4:dd:78:6f:fc:83:de:0c:b4:74:fa:
73:5d:60:40:82:54:62:65:e6:06:28:8b:3a:dc:24:e2:70:0b:
e1:7d:af:a7:06:af:50:bf:23:38:79:9f:a8:8d:73:a7:64:d9:
6f:ea:0d:ef:7c:a9:ed:b3:3e:5f:d9:e3:3b:cf:cf:f7:d1:f6:
96:66:8a:39:10:97:cf:fd:5e:53:b6:15:2a:13:66:5d:31:0c:
da:8e:3f:1f:cf:b3:7a:34:70:82:5a:fc:ea:28:67:6c:cb:88:
a7:f6:86:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:26:50 2025 by rpki-client on console.sobornost.net