Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/34fe2e-26d6-455d-8778-f905a83bd389/1/ook9uIQAuCcVv2Fg0PJ5r3IwiNU.roa
File: ook9uIQAuCcVv2Fg0PJ5r3IwiNU.roa (raw, json)
Hash identifier: Y/wn2KIY7krXyisLSYMbczx5AjYDM8sXL4TRFNZpN6U=
Subject key identifier: A2:89:3D:B8:84:00:B8:27:15:BF:61:60:D0:F2:79:AF:72:30:88:D5
Certificate issuer: /CN=e4871d8f2c26ea71ae5c13c8454a7bd318719184
Certificate serial: 019422202A327DC7D7EE15E4D65AFBF35156
Authority key identifier: E4:87:1D:8F:2C:26:EA:71:AE:5C:13:C8:45:4A:7B:D3:18:71:91:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5Icdjywm6nGuXBPIRUp70xhxkYQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/34fe2e-26d6-455d-8778-f905a83bd389/1/ook9uIQAuCcVv2Fg0PJ5r3IwiNU.roa
Signing time: Wed 01 Jan 2025 13:48:40 +0000
ROA not before: Wed 01 Jan 2025 13:48:40 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 211247
IP address blocks: 193.17.213.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:20:2a:32:7d:c7:d7:ee:15:e4:d6:5a:fb:f3:51:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e4871d8f2c26ea71ae5c13c8454a7bd318719184
Validity
Not Before: Jan 1 13:48:40 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=a2893db88400b82715bf6160d0f279af723088d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:76:31:07:1c:58:82:ac:43:ed:77:0e:a7:81:
d7:c6:cc:32:6b:3b:52:32:47:f1:67:59:a5:bf:fd:
99:41:ea:99:3a:da:cd:63:c0:36:8c:58:49:ac:cd:
33:a2:24:ae:d7:3d:8e:60:67:10:94:6a:91:93:6a:
e6:40:21:25:04:12:46:e9:f6:58:cf:7e:cf:7a:5b:
66:28:9f:cb:7d:fc:fd:01:7c:d8:b3:78:ed:31:0b:
68:c6:92:49:3f:9b:ab:87:9f:2e:91:a5:0a:2a:be:
8e:84:20:f2:68:a9:31:a1:f0:e5:46:d9:05:37:b5:
79:cd:af:98:2c:59:b3:19:16:61:80:ca:67:15:e7:
ea:0c:d0:5b:33:1a:af:dc:57:06:50:c7:78:a5:d3:
52:af:ae:22:50:3e:98:5e:62:3f:ba:48:a5:75:48:
5b:1a:42:ef:1c:6c:88:f8:bc:23:e0:a6:6b:09:b2:
00:88:45:75:69:e8:0c:85:28:8c:5a:16:69:2c:f9:
e1:a5:f8:e8:7b:45:47:0a:04:23:3f:a6:63:5b:86:
5f:e2:d0:e7:c1:58:d0:49:43:00:0d:f9:30:cf:e9:
2f:c3:a1:7e:ef:c5:99:28:8c:58:8c:a5:1d:3f:52:
7f:53:10:4b:a1:e9:2e:cf:8d:84:7e:78:2c:f4:04:
43:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:89:3D:B8:84:00:B8:27:15:BF:61:60:D0:F2:79:AF:72:30:88:D5
X509v3 Authority Key Identifier:
keyid:E4:87:1D:8F:2C:26:EA:71:AE:5C:13:C8:45:4A:7B:D3:18:71:91:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5Icdjywm6nGuXBPIRUp70xhxkYQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/34fe2e-26d6-455d-8778-f905a83bd389/1/ook9uIQAuCcVv2Fg0PJ5r3IwiNU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/34fe2e-26d6-455d-8778-f905a83bd389/1/5Icdjywm6nGuXBPIRUp70xhxkYQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.17.213.0/24
Signature Algorithm: sha256WithRSAEncryption
53:fb:51:a3:8b:ca:85:d4:e5:9f:d1:25:2f:b2:4d:6b:9e:df:
f5:a1:01:80:8a:23:0a:1c:3c:7b:ec:c3:ce:04:79:36:42:8a:
93:a3:65:3c:bd:01:b2:6b:25:b7:21:3c:c5:2e:32:d7:05:fb:
b8:17:b8:29:1f:d4:43:66:af:b3:f6:52:a8:6e:3a:82:2a:cc:
0d:0a:2a:85:df:1a:88:74:3d:3f:bb:03:d5:04:27:8b:f0:d4:
73:44:f7:0b:6c:5d:70:17:8f:39:dd:84:47:ee:14:02:90:4f:
5c:e1:16:0d:28:51:3a:2e:28:3c:1e:5d:2e:d0:15:dd:b4:ec:
e5:78:f4:b5:2d:e2:35:6f:62:2d:d3:94:a7:dc:98:e6:71:aa:
43:b1:70:07:80:d5:29:44:a8:ef:89:99:d2:b2:7d:30:c6:39:
b6:51:3f:30:e6:31:75:46:7d:d1:4f:bd:6a:22:67:9d:c6:47:
b8:bc:a8:3a:87:7c:d7:65:b2:10:53:5d:ce:bf:ae:e3:13:68:
11:d5:12:11:82:c7:d0:9e:4b:e2:29:ce:a3:d6:09:c7:34:87:
e1:45:7c:ce:11:6d:60:6b:b6:83:09:c2:8d:10:49:2c:1c:40:
32:7b:97:7c:eb:99:f0:ca:86:35:86:de:3a:41:d9:9d:d2:96:
a0:00:42:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:02 2025 by rpki-client on console.sobornost.net