Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/ae2929-674d-4946-8053-a4368a1b5f63/1/jfKlhf7Z2FYXHGCxpIFV4H7KtVw.roa
File: jfKlhf7Z2FYXHGCxpIFV4H7KtVw.roa (raw, json)
Hash identifier: M0IA4ol4QEDMaHvnBk/xSvh7Vb38bMiYrIeleD4pqMI=
Subject key identifier: 8D:F2:A5:85:FE:D9:D8:56:17:1C:60:B1:A4:81:55:E0:7E:CA:B5:5C
Certificate issuer: /CN=11e07556c191867add90101580ecf5d5b7429671
Certificate serial: 019421B1713E6D3181EF82B83F346BEA6DFB
Authority key identifier: 11:E0:75:56:C1:91:86:7A:DD:90:10:15:80:EC:F5:D5:B7:42:96:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EeB1VsGRhnrdkBAVgOz11bdClnE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/ae2929-674d-4946-8053-a4368a1b5f63/1/jfKlhf7Z2FYXHGCxpIFV4H7KtVw.roa
Signing time: Wed 01 Jan 2025 11:47:44 +0000
ROA not before: Wed 01 Jan 2025 11:47:44 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 211384
IP address blocks: 193.3.32.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:b1:71:3e:6d:31:81:ef:82:b8:3f:34:6b:ea:6d:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=11e07556c191867add90101580ecf5d5b7429671
Validity
Not Before: Jan 1 11:47:44 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=8df2a585fed9d856171c60b1a48155e07ecab55c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:24:1b:b6:99:9c:c1:0d:38:4b:5f:d8:dc:45:
da:a5:f5:c2:90:39:7f:e6:7d:f3:72:58:bd:95:3f:
22:62:28:11:70:ef:69:23:9b:c7:2d:fa:25:b3:70:
58:a6:65:be:70:a0:1d:cf:4f:d1:21:90:eb:95:16:
7c:0a:9c:b4:a3:74:32:34:58:44:9d:02:93:b3:6f:
09:50:ca:0d:9e:90:cf:9c:9c:82:21:cf:43:89:43:
85:27:f9:ae:aa:19:09:5c:0c:d6:b4:d7:20:ea:48:
89:47:76:11:a4:a5:1a:b2:3b:86:aa:2d:f9:54:6e:
50:52:b1:8a:1b:66:7a:b6:b5:5e:b7:18:df:df:f0:
1f:51:29:1d:a7:3f:b7:f0:b7:52:74:8f:98:df:98:
6a:48:4a:69:8d:22:2a:65:a3:8a:c4:84:f7:70:6a:
75:12:a1:9c:fd:f3:e8:85:02:19:0f:a6:3d:7f:f7:
fa:79:9b:df:7d:eb:24:65:f5:b8:94:d4:0e:96:28:
c7:1f:ab:1a:76:a5:17:e8:08:dd:66:5e:b3:2c:09:
fe:04:d9:11:ae:d5:30:7d:d6:ed:38:33:33:19:e5:
6b:28:e5:dc:d1:8b:39:ec:4f:7d:86:4b:58:19:0d:
c9:79:8e:66:4a:06:9f:b8:33:dc:24:ce:34:0d:01:
6e:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:F2:A5:85:FE:D9:D8:56:17:1C:60:B1:A4:81:55:E0:7E:CA:B5:5C
X509v3 Authority Key Identifier:
keyid:11:E0:75:56:C1:91:86:7A:DD:90:10:15:80:EC:F5:D5:B7:42:96:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EeB1VsGRhnrdkBAVgOz11bdClnE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/ae2929-674d-4946-8053-a4368a1b5f63/1/jfKlhf7Z2FYXHGCxpIFV4H7KtVw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/ae2929-674d-4946-8053-a4368a1b5f63/1/EeB1VsGRhnrdkBAVgOz11bdClnE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.3.32.0/24
Signature Algorithm: sha256WithRSAEncryption
a9:bb:85:56:4a:a6:d8:55:db:c9:25:be:19:f6:31:10:44:0d:
92:84:02:10:ce:9c:95:4e:d3:ea:1b:75:0e:9e:fd:6a:13:6d:
1a:f8:40:47:aa:9d:a7:f5:11:01:38:7e:12:3f:fc:e2:a5:9b:
9d:6a:1b:f1:92:21:57:fe:f5:82:b4:da:8d:41:3a:41:65:b9:
a9:88:cf:a8:d7:13:85:ad:dd:2a:65:39:ca:f7:bd:4d:9f:d4:
92:a7:1b:16:25:9b:8a:6d:5f:af:b7:84:bd:05:d8:a8:77:e2:
80:fa:a9:3e:2f:50:bd:a8:49:d3:76:b4:e7:78:40:40:16:b0:
a3:89:6f:a2:8e:9a:05:f0:4a:b7:83:18:22:e8:3f:a3:01:5f:
c0:3f:fa:02:0c:97:f2:46:b6:09:0c:1e:73:92:c2:29:5e:92:
02:55:18:39:a3:48:49:65:c1:45:20:6a:6f:52:75:01:a8:2b:
a2:f3:95:23:b9:fa:2a:ed:e9:e3:d7:a1:a0:17:b3:49:28:d1:
61:7f:26:2e:0b:43:ee:71:34:e1:d5:1b:71:6d:1d:35:3a:9a:
f6:7d:0f:b5:df:24:e8:cd:9c:1d:63:19:e1:58:9f:16:ed:3f:
fc:f5:63:96:e4:f4:87:71:36:31:ff:d9:46:5d:fa:ac:c5:7f:
53:01:29:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:04 2025 by rpki-client on console.sobornost.net