Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/1de213-f352-43a4-b88b-53eacd8963a1/1/3oLf6nYLu-Xr7qpLQICeS2w7Tus.roa
File: 3oLf6nYLu-Xr7qpLQICeS2w7Tus.roa (raw, json)
Hash identifier: XtsupCW4EVcqvMqJHKb5yPLyEGcRcTQPpgXjTIHJ3Z4=
Subject key identifier: DE:82:DF:EA:76:0B:BB:E5:EB:EE:AA:4B:40:80:9E:4B:6C:3B:4E:EB
Certificate issuer: /CN=c0b8e25797a9dc43c2e46394b0c8b1b108ab43b9
Certificate serial: 019421B1C2F0C137E6CE8A1D1997D53BAB5A
Authority key identifier: C0:B8:E2:57:97:A9:DC:43:C2:E4:63:94:B0:C8:B1:B1:08:AB:43:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wLjiV5ep3EPC5GOUsMixsQirQ7k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/1de213-f352-43a4-b88b-53eacd8963a1/1/3oLf6nYLu-Xr7qpLQICeS2w7Tus.roa
Signing time: Wed 01 Jan 2025 11:48:05 +0000
ROA not before: Wed 01 Jan 2025 11:48:05 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 201709
IP address blocks: 193.28.55.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:b1:c2:f0:c1:37:e6:ce:8a:1d:19:97:d5:3b:ab:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c0b8e25797a9dc43c2e46394b0c8b1b108ab43b9
Validity
Not Before: Jan 1 11:48:05 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=de82dfea760bbbe5ebeeaa4b40809e4b6c3b4eeb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:68:7b:8b:a7:5c:6d:a8:76:17:58:79:3f:f2:
4b:98:bf:10:d1:86:87:d8:dc:4f:9c:10:c1:da:bd:
9e:09:c4:e8:82:47:6b:78:ad:df:c2:92:46:8d:3b:
d0:ab:13:17:28:1f:4e:b7:7a:90:f3:bd:1c:6a:df:
0d:8b:6d:60:4d:a5:6d:86:45:9d:d7:2b:fe:bb:b8:
f3:92:db:0d:26:0d:dc:2e:91:8b:34:71:0c:08:09:
3f:91:48:6c:8b:9f:67:b9:75:a3:5a:c6:08:7f:b4:
e9:25:3a:f1:d0:95:91:40:ab:76:4a:5f:d8:ef:25:
bb:e0:5a:04:c5:5a:9a:14:ab:44:4d:63:54:ca:39:
a7:f8:4c:d5:c6:17:f2:5d:f6:6b:59:76:2f:ee:fd:
ad:a0:7e:fb:1f:53:5c:06:2a:cf:88:d8:ca:a4:f4:
01:7d:0f:65:9d:58:2d:3b:b2:8d:ca:0d:4c:6a:af:
0d:bd:2a:67:04:c9:d3:0f:7d:9f:42:e7:4e:52:80:
5b:55:6b:64:c2:d3:f1:e6:71:5f:b9:e4:52:cf:46:
06:4a:27:de:46:f6:cf:e7:09:87:22:02:7e:c6:07:
a4:66:6e:7d:53:9b:22:d4:e7:72:6b:8d:f8:25:34:
d8:9a:91:d6:ff:fa:8e:a6:df:dd:29:fd:b5:49:a7:
dc:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:82:DF:EA:76:0B:BB:E5:EB:EE:AA:4B:40:80:9E:4B:6C:3B:4E:EB
X509v3 Authority Key Identifier:
keyid:C0:B8:E2:57:97:A9:DC:43:C2:E4:63:94:B0:C8:B1:B1:08:AB:43:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wLjiV5ep3EPC5GOUsMixsQirQ7k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/1de213-f352-43a4-b88b-53eacd8963a1/1/3oLf6nYLu-Xr7qpLQICeS2w7Tus.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/1de213-f352-43a4-b88b-53eacd8963a1/1/wLjiV5ep3EPC5GOUsMixsQirQ7k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.28.55.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:0f:67:b8:9f:5d:a8:7b:3e:12:86:1d:4e:11:76:4d:7b:e4:
ab:08:ac:42:21:5d:42:37:9c:25:3c:f1:7a:79:d6:5e:0e:92:
88:b3:23:2f:3e:2c:c0:10:5e:af:38:36:99:1a:43:71:2c:fb:
ee:a3:89:b2:c7:88:41:61:92:f2:53:13:01:af:14:b1:b6:66:
76:0c:0d:4d:0a:9b:00:62:22:70:c8:87:77:1d:15:d7:5d:69:
3e:d7:4e:a9:03:12:ac:9a:b1:61:b8:0e:44:45:9d:40:5a:2d:
23:df:21:b4:3a:64:3d:a6:89:c6:e1:28:43:28:e1:6b:75:53:
2f:34:a6:9e:2d:b9:d0:69:1b:14:b5:4f:4e:bf:cb:da:e6:d6:
a1:da:0a:42:23:64:16:d4:e9:a9:99:ae:de:ae:1d:0d:53:18:
79:93:ef:d9:eb:ac:58:81:ea:9a:3c:30:30:f9:b1:30:6f:4c:
46:ea:d2:e7:a7:74:5e:fc:bb:f0:bc:70:4a:77:df:bf:7c:fe:
23:fe:90:c7:7c:2d:43:0e:5a:fc:dd:fc:90:40:3d:1f:5a:bd:
ae:0b:65:ac:ab:fb:7d:c1:ce:61:06:4a:b6:8f:1c:6c:59:05:
23:8b:a8:04:7e:be:8e:3c:69:c9:c5:da:c5:e8:ec:88:2a:a3:
f4:ba:a3:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:26 2025 by rpki-client on console.sobornost.net