Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/my4k0_ivDuUGyBw3mHJZ8SCPZrQ.roa
File: my4k0_ivDuUGyBw3mHJZ8SCPZrQ.roa (raw, json)
Hash identifier: DJVXpvSVC65t6DyhISYYJXNS1LFS4kO5R9YQf3IOo4E=
Subject key identifier: 9B:2E:24:D3:F8:AF:0E:E5:06:C8:1C:37:98:72:59:F1:20:8F:66:B4
Certificate issuer: /CN=30c409613fea0a2b442ce112e9cbdb485e01188f
Certificate serial: 01942143BF86BC7DBB6C208EDF8CE843A1D8
Authority key identifier: 30:C4:09:61:3F:EA:0A:2B:44:2C:E1:12:E9:CB:DB:48:5E:01:18:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MMQJYT_qCitELOES6cvbSF4BGI8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/my4k0_ivDuUGyBw3mHJZ8SCPZrQ.roa
Signing time: Wed 01 Jan 2025 09:47:55 +0000
ROA not before: Wed 01 Jan 2025 09:47:55 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 204569
IP address blocks: 193.59.76.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:43:bf:86:bc:7d:bb:6c:20:8e:df:8c:e8:43:a1:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30c409613fea0a2b442ce112e9cbdb485e01188f
Validity
Not Before: Jan 1 09:47:55 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=9b2e24d3f8af0ee506c81c37987259f1208f66b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:f8:00:23:be:14:b9:fb:05:0d:55:fa:e2:13:
bf:87:0d:b1:c4:33:9c:37:37:ee:e3:af:2b:97:b2:
3a:45:03:82:82:5e:6e:a3:cd:99:da:9f:c5:54:c5:
8e:8f:3f:d1:0b:ad:98:94:f3:73:0d:aa:99:a2:92:
42:6e:1c:37:44:be:ba:8a:42:96:87:0c:32:b6:9d:
7b:bb:f0:fd:79:34:1b:4a:6c:34:af:ed:7d:32:90:
c6:be:b3:9f:84:44:9e:8c:a4:3b:ce:86:44:4e:56:
78:93:b2:ed:19:29:73:66:81:e5:8d:6a:54:9a:74:
b0:ef:e1:04:eb:bf:42:74:ac:b3:39:2f:ff:3f:d5:
f6:94:b8:e3:a2:e9:36:24:3f:33:12:06:73:34:c4:
65:66:d2:d2:5b:f5:96:69:89:0a:e1:1e:68:a3:46:
74:59:8c:b8:6a:ae:84:2c:41:47:1b:8f:53:0b:c6:
5e:98:39:58:15:65:b4:56:4e:d6:c6:99:71:93:13:
d7:f4:ac:ab:36:c9:5a:6a:eb:36:e5:a4:9c:03:93:
f9:fc:2b:94:bf:18:ce:1e:7f:85:6f:5e:e5:02:a7:
80:27:2e:fc:34:a1:ac:1c:1a:ba:e6:f2:80:5d:89:
a9:0f:8a:16:c8:24:39:1d:94:e4:ca:e0:91:9d:49:
e4:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:2E:24:D3:F8:AF:0E:E5:06:C8:1C:37:98:72:59:F1:20:8F:66:B4
X509v3 Authority Key Identifier:
keyid:30:C4:09:61:3F:EA:0A:2B:44:2C:E1:12:E9:CB:DB:48:5E:01:18:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MMQJYT_qCitELOES6cvbSF4BGI8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/my4k0_ivDuUGyBw3mHJZ8SCPZrQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/MMQJYT_qCitELOES6cvbSF4BGI8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.59.76.0/24
Signature Algorithm: sha256WithRSAEncryption
52:6b:27:67:76:6b:b0:7d:23:49:5b:22:08:ad:51:1f:e0:07:
96:09:93:a8:f2:46:03:da:14:0c:e0:48:88:75:a1:e3:6f:32:
72:87:9e:df:0f:70:1c:de:c2:7f:5b:03:25:cb:6b:27:fb:b8:
4f:82:49:10:e6:8f:39:6a:59:b4:6f:d1:98:ad:cd:ef:3d:70:
e3:06:d7:01:a7:40:88:c8:29:3e:dc:16:9e:7c:e9:84:73:7d:
19:ad:49:ce:bd:0e:06:fb:d1:ec:c7:fa:9a:e6:c1:31:7c:eb:
e5:b6:49:11:2f:45:bb:f6:ff:59:73:9b:b6:82:fd:d8:d3:0d:
ba:c5:b0:bd:6e:e4:e7:6d:77:58:55:f0:5b:45:2a:02:60:1e:
b2:ee:54:df:22:89:f5:93:eb:ff:13:77:c1:03:01:4f:a8:e0:
b4:ba:8b:ad:31:9e:d1:23:00:3b:4a:f3:1a:72:cc:c8:1c:14:
e9:a5:54:2b:5f:d3:55:19:a9:d4:c8:ac:15:8d:21:18:7e:8e:
19:4e:9d:4f:79:64:db:d9:09:65:67:a2:8e:45:c5:90:43:49:
87:5c:c4:81:99:42:62:11:67:22:b5:cb:a0:01:76:7d:05:25:
b8:c5:0c:f8:35:db:bb:c7:95:76:ad:61:85:b6:aa:93:86:96:
1d:ff:2c:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:02 2025 by rpki-client on console.sobornost.net