Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/18103b-b279-4de7-bc3c-ec05d0195036/1/8d7VpoBO27aN3dak4lAaxGgmHlY.roa
File: 8d7VpoBO27aN3dak4lAaxGgmHlY.roa (raw, json)
Hash identifier: nh1zP1FVrxhSUv/TNCc0ZubqPf+syGRj5kTxf6jPWNk=
Subject key identifier: F1:DE:D5:A6:80:4E:DB:B6:8D:DD:D6:A4:E2:50:1A:C4:68:26:1E:56
Certificate issuer: /CN=8b613794927050b22525ab70091835408eee4c79
Certificate serial: 019420D6134E8D8FB5BCEF2C6B1DE3B7A311
Authority key identifier: 8B:61:37:94:92:70:50:B2:25:25:AB:70:09:18:35:40:8E:EE:4C:79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2E3lJJwULIlJatwCRg1QI7uTHk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/18103b-b279-4de7-bc3c-ec05d0195036/1/8d7VpoBO27aN3dak4lAaxGgmHlY.roa
Signing time: Wed 01 Jan 2025 07:48:08 +0000
ROA not before: Wed 01 Jan 2025 07:48:08 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 60015
IP address blocks: 193.57.16.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:d6:13:4e:8d:8f:b5:bc:ef:2c:6b:1d:e3:b7:a3:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b613794927050b22525ab70091835408eee4c79
Validity
Not Before: Jan 1 07:48:08 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=f1ded5a6804edbb68dddd6a4e2501ac468261e56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:18:67:29:6d:82:a7:5f:47:ac:0a:be:77:bc:
d4:03:04:5e:f7:2c:be:f5:bd:f1:a5:f7:b6:e5:9b:
ba:e5:9d:c9:83:b8:47:ad:e3:cd:88:4e:fa:76:24:
0e:0f:48:9d:15:09:ca:a2:ee:fa:a9:18:87:0a:b3:
3c:65:c0:71:25:e6:9b:1e:1e:1f:41:be:f1:11:c1:
eb:ce:7e:5a:4f:bf:68:4f:ac:4f:74:70:3d:3b:76:
dc:36:1e:96:d4:de:af:6f:83:94:98:c5:5c:f7:9c:
c8:5b:c5:84:55:43:4c:f2:52:e5:3e:45:cd:8b:20:
cc:09:20:bb:a8:2c:b9:05:94:9a:e0:0a:8b:60:0f:
a4:6d:ff:9b:5d:5d:d9:0c:b8:6a:d1:33:74:8c:5a:
41:4d:1b:86:ed:68:33:6a:0c:3e:9e:4f:77:9c:ef:
5c:21:3a:d4:f3:41:fa:0a:c8:ce:96:d6:a5:e4:26:
71:43:de:d4:1f:66:79:a4:37:9b:9e:7d:52:1b:7b:
d5:86:dc:79:e9:40:69:7d:19:9c:ed:c5:3d:3e:77:
44:71:23:72:c8:a2:7a:7d:57:f6:ff:c1:db:1d:00:
b5:52:22:4b:ed:4c:05:43:25:fd:d7:ed:ce:f3:11:
98:ee:1c:6d:6c:99:14:6d:cf:fa:5e:e5:90:28:bd:
d3:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:DE:D5:A6:80:4E:DB:B6:8D:DD:D6:A4:E2:50:1A:C4:68:26:1E:56
X509v3 Authority Key Identifier:
keyid:8B:61:37:94:92:70:50:B2:25:25:AB:70:09:18:35:40:8E:EE:4C:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2E3lJJwULIlJatwCRg1QI7uTHk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/18103b-b279-4de7-bc3c-ec05d0195036/1/8d7VpoBO27aN3dak4lAaxGgmHlY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/18103b-b279-4de7-bc3c-ec05d0195036/1/i2E3lJJwULIlJatwCRg1QI7uTHk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.57.16.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:1a:1f:84:49:1b:64:e2:e9:03:44:78:ba:3c:5f:44:50:2c:
7e:2d:53:21:8d:ee:50:b2:2a:69:4e:c4:89:2e:0c:db:1f:84:
cb:03:63:b7:aa:15:78:ba:f3:08:28:6a:4b:26:56:7d:14:12:
13:ed:67:e1:96:1b:3b:e8:56:4f:2e:59:c1:39:3c:2c:98:67:
cd:af:5c:69:74:72:20:29:c7:2f:14:60:6c:1c:2a:72:0c:9f:
85:fe:dd:92:52:9b:a8:ce:42:9d:02:cd:62:a2:f7:1e:78:c6:
21:2b:a3:63:a8:1b:54:a0:30:fd:59:8e:c9:40:b1:f3:76:3a:
f1:68:7a:cb:d1:51:c5:a1:89:64:17:bf:be:fe:b0:2e:2b:e2:
8b:f1:cb:58:a5:0f:0c:e9:fd:7b:7b:3b:f1:fc:55:81:4b:ef:
0d:5d:f1:3c:b4:4b:72:4b:70:e6:b7:53:b5:02:20:54:6c:ca:
3c:44:a8:0f:99:dc:fa:95:17:42:4e:d3:37:30:c3:51:34:4e:
f7:d5:88:1a:e3:29:22:98:f1:10:19:69:e3:df:77:a4:1a:b7:
1f:b2:1f:f5:ac:12:25:29:3f:9f:db:9b:fc:91:c7:84:6b:90:
fd:38:d2:d5:61:49:8b:9b:19:eb:ca:d7:ae:c3:ca:11:cd:84:
dc:91:b9:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:42 2025 by rpki-client on console.sobornost.net