Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/bbfe48-f14d-40d1-9f1a-cb9e45bb0c63/1/sf0sGyYsdo6jCF2Onf3P164cdrU.roa
File: sf0sGyYsdo6jCF2Onf3P164cdrU.roa (raw, json)
Hash identifier: GoOEVs4mVq7L9vye2gyb1R3/Fn8szYG5AVhTHRjEmnI=
Subject key identifier: B1:FD:2C:1B:26:2C:76:8E:A3:08:5D:8E:9D:FD:CF:D7:AE:1C:76:B5
Certificate issuer: /CN=17a6fa80b2d1c43ec9ea824e7e8395f79294e38a
Certificate serial: 01941FFA19BC035C252D40EFC22C7FBA5185
Authority key identifier: 17:A6:FA:80:B2:D1:C4:3E:C9:EA:82:4E:7E:83:95:F7:92:94:E3:8A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F6b6gLLRxD7J6oJOfoOV95KU44o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/bbfe48-f14d-40d1-9f1a-cb9e45bb0c63/1/sf0sGyYsdo6jCF2Onf3P164cdrU.roa
Signing time: Wed 01 Jan 2025 03:47:51 +0000
ROA not before: Wed 01 Jan 2025 03:47:51 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 24882
IP address blocks: 193.111.173.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:fa:19:bc:03:5c:25:2d:40:ef:c2:2c:7f:ba:51:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17a6fa80b2d1c43ec9ea824e7e8395f79294e38a
Validity
Not Before: Jan 1 03:47:51 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b1fd2c1b262c768ea3085d8e9dfdcfd7ae1c76b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:33:c8:48:49:42:e4:b3:0a:0f:08:aa:5e:fb:
26:fe:2c:84:28:8c:72:f0:fd:ee:e5:1c:e1:da:1f:
ca:15:fb:e2:61:7f:6b:47:ef:27:74:d9:6a:70:27:
61:21:4d:a8:ea:8f:d2:a5:4b:bf:7c:eb:de:ca:77:
df:29:71:da:14:26:ae:5c:40:9a:67:bf:df:ef:6c:
c4:de:6a:ba:a8:b0:3f:c3:0a:76:5a:83:18:79:c3:
f4:f2:65:8a:c9:ec:8e:84:8b:e9:c9:13:fa:83:d9:
a1:b6:52:0b:d5:a7:b9:3f:27:4f:c7:ca:3b:77:46:
56:5d:86:66:d7:8a:97:f7:3d:1d:fd:4e:d4:0d:74:
fa:b9:25:f6:01:ec:09:94:d5:01:68:cb:7c:f3:72:
55:f5:cc:8b:45:a0:78:bc:ab:08:8f:d7:48:63:0c:
0a:80:39:87:a6:92:da:56:ff:51:50:0a:b6:98:48:
d2:34:df:dc:15:3c:6e:5e:3a:bf:e2:7f:4c:2b:5b:
94:41:e5:47:50:f8:0a:94:56:87:e3:25:d7:43:c9:
ae:43:40:43:be:43:74:cd:71:b7:6b:2e:e2:24:3d:
fe:9a:6f:d2:d0:2a:cf:08:2f:f7:a8:b4:dd:a5:e9:
1c:df:e6:84:97:21:6d:9c:50:35:cf:ec:59:a4:4f:
3c:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:FD:2C:1B:26:2C:76:8E:A3:08:5D:8E:9D:FD:CF:D7:AE:1C:76:B5
X509v3 Authority Key Identifier:
keyid:17:A6:FA:80:B2:D1:C4:3E:C9:EA:82:4E:7E:83:95:F7:92:94:E3:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F6b6gLLRxD7J6oJOfoOV95KU44o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/bbfe48-f14d-40d1-9f1a-cb9e45bb0c63/1/sf0sGyYsdo6jCF2Onf3P164cdrU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/bbfe48-f14d-40d1-9f1a-cb9e45bb0c63/1/F6b6gLLRxD7J6oJOfoOV95KU44o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.111.173.0/24
Signature Algorithm: sha256WithRSAEncryption
10:6e:91:9f:65:5b:ca:f2:f7:ce:e7:c4:69:88:06:cd:11:c5:
56:de:97:d1:07:d7:c1:fb:12:a7:88:fb:02:d9:69:64:0a:5c:
53:37:c6:db:e3:83:37:dd:0b:10:7e:9f:2c:2c:d3:72:a6:60:
7a:10:2d:2f:52:0e:31:79:64:45:66:a4:53:20:70:88:66:3b:
bc:94:53:0a:a2:50:41:e9:b4:85:29:2b:45:66:ea:ad:a0:f0:
61:cf:cb:4d:14:c6:4e:4a:36:b6:59:41:ee:e9:cb:70:cf:6b:
93:63:9a:33:ab:1b:44:db:1c:1b:6c:dd:09:89:a9:45:3b:61:
cc:48:12:55:93:70:c4:b2:b8:5c:94:9d:e2:ef:e1:24:2a:93:
29:d3:95:14:52:af:c5:41:a8:31:10:df:78:4e:92:4d:e9:8f:
b1:ef:bd:52:10:1b:72:10:ab:b1:3d:47:63:d2:7b:be:d5:be:
6a:4c:80:91:83:cc:e0:1f:cb:eb:e2:fe:df:59:b8:f2:bf:3d:
8e:79:3e:87:f2:ad:06:fd:a4:6f:87:98:07:bd:87:b9:e6:22:
ef:5a:6f:c9:04:4c:62:1a:7c:e7:44:c2:7e:a2:a3:22:a2:6e:
4f:5d:3d:d8:81:ea:51:88:00:2a:fb:b1:e4:b4:cd:34:81:b3:
65:20:de:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:39 2025 by rpki-client on console.sobornost.net