Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/89bb71-3fe9-42d2-a73b-13ae98aa7d33/1/CDrnNbtJLaCL50xwnqrzUWhQ_9k.roa
File: CDrnNbtJLaCL50xwnqrzUWhQ_9k.roa (raw, json)
Hash identifier: xkyChTjHPfmap3pEfIzmPahUIANDsQxEAOedvER2SvU=
Subject key identifier: 08:3A:E7:35:BB:49:2D:A0:8B:E7:4C:70:9E:AA:F3:51:68:50:FF:D9
Certificate issuer: /CN=8b8801543812040477d4744229466c8537d45171
Certificate serial: 019425FDB6FB9A4CD4FD712FC8513592FA72
Authority key identifier: 8B:88:01:54:38:12:04:04:77:D4:74:42:29:46:6C:85:37:D4:51:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i4gBVDgSBAR31HRCKUZshTfUUXE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/89bb71-3fe9-42d2-a73b-13ae98aa7d33/1/CDrnNbtJLaCL50xwnqrzUWhQ_9k.roa
Signing time: Thu 02 Jan 2025 07:49:31 +0000
ROA not before: Thu 02 Jan 2025 07:49:31 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 212885
IP address blocks: 193.163.122.0/23 maxlen: 23
193.163.122.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:fd:b6:fb:9a:4c:d4:fd:71:2f:c8:51:35:92:fa:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b8801543812040477d4744229466c8537d45171
Validity
Not Before: Jan 2 07:49:31 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=083ae735bb492da08be74c709eaaf3516850ffd9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:d6:a2:6b:a8:12:da:59:21:26:95:5d:18:ea:
ae:5c:56:3f:b5:2a:d9:4b:0c:f5:f0:20:bd:03:30:
be:95:80:55:ad:c9:26:f4:24:0f:63:09:df:ee:e7:
ae:17:99:f8:79:b1:28:3e:a7:21:e4:45:91:f9:d1:
95:29:46:d9:ae:12:20:34:16:67:19:af:c4:7f:7a:
4f:51:01:b4:5d:1f:70:74:37:85:0c:ac:a0:5a:6a:
7d:65:69:d0:40:99:96:f2:45:4e:41:d7:eb:78:31:
4b:65:ea:b8:ac:c3:c7:4c:4a:ea:8c:cb:68:33:33:
8d:ac:fe:f6:ff:db:62:0f:ae:96:85:8c:36:43:28:
04:93:5d:17:43:65:28:59:36:eb:3f:41:1a:d2:59:
4a:fa:06:0e:74:14:3f:5d:c3:51:cb:31:d3:b8:15:
79:5c:2a:20:84:d8:33:fd:b8:ef:48:47:b1:2c:62:
4a:19:8d:ab:a3:7c:0a:87:c7:3f:be:f8:26:5b:3a:
4f:b4:00:4d:6d:99:68:05:8b:ed:e7:6f:28:6a:66:
85:51:30:d5:bb:0b:2b:22:dc:c2:6a:61:37:ad:79:
03:8d:50:86:d1:1e:3f:d1:ef:24:8d:6a:a9:84:27:
c8:10:97:71:a1:6b:0e:0c:4d:7c:3c:c6:66:00:44:
75:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:3A:E7:35:BB:49:2D:A0:8B:E7:4C:70:9E:AA:F3:51:68:50:FF:D9
X509v3 Authority Key Identifier:
keyid:8B:88:01:54:38:12:04:04:77:D4:74:42:29:46:6C:85:37:D4:51:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i4gBVDgSBAR31HRCKUZshTfUUXE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/89bb71-3fe9-42d2-a73b-13ae98aa7d33/1/CDrnNbtJLaCL50xwnqrzUWhQ_9k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/89bb71-3fe9-42d2-a73b-13ae98aa7d33/1/i4gBVDgSBAR31HRCKUZshTfUUXE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.163.122.0/23
Signature Algorithm: sha256WithRSAEncryption
23:3c:93:c0:97:43:ec:0e:f5:a8:7c:c7:eb:75:30:05:59:e0:
de:cc:fd:14:70:0c:31:f9:51:07:52:b4:fd:1b:96:48:b0:ba:
ce:8c:77:93:d6:d6:e6:02:82:2a:ff:b4:5d:64:53:fb:b9:58:
e3:c3:2a:74:ee:69:4f:df:f6:9d:79:b9:58:d6:76:95:c0:f2:
80:d1:ad:e7:66:09:15:08:b1:d6:35:61:d7:d6:39:4a:60:b6:
ef:5c:50:67:da:2c:94:fa:52:4d:c9:d7:29:4f:9d:65:a4:13:
0c:d9:4f:9d:69:78:9a:58:3e:23:f1:2e:22:e4:5b:74:06:d8:
aa:ea:53:3c:1c:f6:86:0b:51:95:18:e3:82:d8:15:8a:00:28:
84:43:69:3d:17:8a:8c:18:6c:77:63:3b:ea:84:67:d6:ec:f8:
e9:c5:d0:77:d7:00:05:c4:49:1f:c9:d0:2d:a3:e6:0b:c0:b3:
c8:b4:04:74:02:c7:f9:a7:13:59:0a:96:b7:60:5b:70:63:50:
12:22:13:01:95:d0:1a:43:2a:50:e5:4c:16:01:04:8a:dc:b1:
87:7e:e2:a5:8c:f2:71:e9:93:a5:fb:35:7a:3f:15:fc:1c:20:
db:1f:f4:50:8d:dd:50:7d:c0:97:4e:d7:49:c5:cb:28:cf:21:
96:1d:45:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:43 2025 by rpki-client on console.sobornost.net