Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/8c5dc7-bf41-4008-9cff-2c69985359c0/1/5yM7l9glO5Y_kZZbeV1PY4oF4AI.roa
File: 5yM7l9glO5Y_kZZbeV1PY4oF4AI.roa (raw, json)
Hash identifier: Zrq7WRCOd9AEwWRm5k4u/56c3wqE+RlRfF9EKNORqJM=
Subject key identifier: E7:23:3B:97:D8:25:3B:96:3F:91:96:5B:79:5D:4F:63:8A:05:E0:02
Certificate issuer: /CN=45aed3d1a1a1e2830d416afa047b95220e814084
Certificate serial: 019421B2094BF243128C4ED337BFC34EC5B1
Authority key identifier: 45:AE:D3:D1:A1:A1:E2:83:0D:41:6A:FA:04:7B:95:22:0E:81:40:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ra7T0aGh4oMNQWr6BHuVIg6BQIQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/8c5dc7-bf41-4008-9cff-2c69985359c0/1/5yM7l9glO5Y_kZZbeV1PY4oF4AI.roa
Signing time: Wed 01 Jan 2025 11:48:23 +0000
ROA not before: Wed 01 Jan 2025 11:48:23 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 199699
IP address blocks: 193.24.106.0/24 maxlen: 24
2a13:8f80::/29 maxlen: 31
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:b2:09:4b:f2:43:12:8c:4e:d3:37:bf:c3:4e:c5:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=45aed3d1a1a1e2830d416afa047b95220e814084
Validity
Not Before: Jan 1 11:48:23 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=e7233b97d8253b963f91965b795d4f638a05e002
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:02:14:e6:e4:f8:29:43:49:3b:77:46:4b:cf:
67:df:5a:9b:c7:8a:f0:a4:96:ce:64:b1:40:00:98:
d9:4f:67:70:0b:a4:d3:5c:ea:df:8e:a7:90:4c:bd:
04:ac:0e:68:05:1c:be:7c:b0:f2:03:66:c1:88:85:
70:02:58:0f:b1:b3:28:e5:c3:07:45:81:14:58:1d:
42:5c:ec:91:26:c9:cf:5d:1f:27:69:45:48:a5:59:
f0:17:1c:e8:ca:01:0f:4c:a1:e4:5f:90:01:44:19:
a2:7b:6d:97:68:b0:f4:f1:01:bf:b6:80:3d:92:c9:
1a:3b:3a:68:a1:96:16:54:af:1b:2c:b5:26:2d:df:
dd:a7:9b:84:55:fd:51:80:53:49:1f:83:a1:22:82:
e9:89:5b:dd:9d:10:b2:3b:56:d4:bf:7c:11:50:04:
fd:fa:60:12:08:7e:d7:88:22:70:88:cd:22:98:e3:
ec:01:5a:33:1f:03:c0:6e:2e:43:80:21:bc:db:d4:
e8:b9:c5:29:c0:52:a2:a6:cf:57:01:48:e6:03:0b:
b2:67:32:cc:4d:bf:88:c3:13:18:74:0d:a1:7e:d7:
1f:3f:b8:e0:e8:7a:cc:64:cf:34:04:02:25:af:f1:
7e:07:b0:e3:de:7c:58:b0:91:93:b7:b7:fc:8d:ed:
0b:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:23:3B:97:D8:25:3B:96:3F:91:96:5B:79:5D:4F:63:8A:05:E0:02
X509v3 Authority Key Identifier:
keyid:45:AE:D3:D1:A1:A1:E2:83:0D:41:6A:FA:04:7B:95:22:0E:81:40:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ra7T0aGh4oMNQWr6BHuVIg6BQIQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/8c5dc7-bf41-4008-9cff-2c69985359c0/1/5yM7l9glO5Y_kZZbeV1PY4oF4AI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/8c5dc7-bf41-4008-9cff-2c69985359c0/1/Ra7T0aGh4oMNQWr6BHuVIg6BQIQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.24.106.0/24
IPv6:
2a13:8f80::/29
Signature Algorithm: sha256WithRSAEncryption
30:b7:67:2c:cb:b5:53:50:f4:6d:ce:2a:96:5e:17:ca:55:8d:
fe:6a:40:0b:6f:73:c5:1c:36:3f:06:03:f3:e4:67:f1:89:2f:
c7:a1:d7:8e:dc:77:72:f3:27:a0:a1:9c:7a:95:92:88:f1:55:
49:18:6a:8b:af:48:c1:b5:b1:26:e8:cd:3c:77:f1:c6:4d:6e:
01:03:e9:c7:7d:c0:ae:f3:fe:03:b7:43:17:cd:9f:25:37:90:
cb:f4:91:83:bb:67:98:2f:08:b3:37:82:3f:f7:25:e9:a2:fa:
b1:2f:fd:2c:fc:e0:1b:98:25:b2:36:88:d0:09:d3:d7:62:86:
68:74:bf:f9:23:be:0a:ba:ba:c4:95:ed:de:71:e3:41:7a:08:
ef:0d:26:09:5e:fa:47:11:f5:2b:dc:5b:47:5d:ca:5c:cf:43:
22:ba:fd:06:54:5e:89:ed:ef:14:3e:48:52:be:31:ae:13:b6:
7e:3e:2a:9b:fb:a4:e4:71:ae:f9:7b:ec:36:74:b2:5e:b0:f0:
e6:a1:a3:55:8f:ec:8a:b2:f9:61:3f:f6:8c:99:f6:33:46:4f:
ae:c7:c9:60:46:cd:5f:62:56:c6:7f:40:fa:49:1b:3f:dd:5b:
be:c0:e8:a8:3e:7a:3d:52:34:d9:10:1a:39:ba:cd:f4:90:19:
4a:a6:82:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:25 2025 by rpki-client on console.sobornost.net