Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/34b48f-70c0-4004-ba0f-de3c8d953ec5/1/nvK0Y6aCpBHTnG-eTxaORhnj04I.roa
File: nvK0Y6aCpBHTnG-eTxaORhnj04I.roa (raw, json)
Hash identifier: 0/FiuXMiyVB9H9Eco+cRmeHUiWjeW3pmXaxNUHw7cYE=
Subject key identifier: 9E:F2:B4:63:A6:82:A4:11:D3:9C:6F:9E:4F:16:8E:46:19:E3:D3:82
Certificate issuer: /CN=c00a88d7e5a565ea719cfc40d8bb63ee1671856a
Certificate serial: 0194258F40A96E6FAFCD64EE5F9C29953870
Authority key identifier: C0:0A:88:D7:E5:A5:65:EA:71:9C:FC:40:D8:BB:63:EE:16:71:85:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wAqI1-WlZepxnPxA2Ltj7hZxhWo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/34b48f-70c0-4004-ba0f-de3c8d953ec5/1/nvK0Y6aCpBHTnG-eTxaORhnj04I.roa
Signing time: Thu 02 Jan 2025 05:48:52 +0000
ROA not before: Thu 02 Jan 2025 05:48:52 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 202515
IP address blocks: 193.57.28.0/24 maxlen: 24
193.57.29.0/24 maxlen: 24
193.57.30.0/24 maxlen: 24
193.57.31.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8f:40:a9:6e:6f:af:cd:64:ee:5f:9c:29:95:38:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c00a88d7e5a565ea719cfc40d8bb63ee1671856a
Validity
Not Before: Jan 2 05:48:52 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=9ef2b463a682a411d39c6f9e4f168e4619e3d382
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:9d:bb:8c:b6:6b:41:2c:e8:4c:03:14:30:d6:
8d:e6:59:62:73:52:38:0e:bb:d3:69:45:f1:6e:9e:
da:df:41:00:fa:73:c0:cf:da:6b:5b:ae:8c:da:ff:
4c:8c:e8:13:be:da:2b:da:c9:be:f5:0f:7a:13:97:
aa:35:d5:0a:4b:3f:14:f8:ff:46:86:99:a2:21:eb:
28:07:31:55:21:60:b0:81:80:9c:de:ca:c5:b9:a8:
d2:32:ea:76:15:25:d4:06:7a:6d:07:a4:00:0b:0d:
2c:0b:8a:16:74:0f:14:bc:20:5c:aa:76:0b:f9:53:
11:c8:3c:b9:6a:26:3c:93:57:5a:a8:e5:6a:eb:84:
84:20:d3:94:7b:04:c7:4d:b4:c4:38:47:d3:bc:62:
70:c6:29:d9:b7:b0:a2:08:4c:d0:33:37:15:1b:43:
f8:7a:fc:ce:32:6d:1d:92:3c:1d:75:67:71:e6:ac:
bb:a8:17:3c:48:8f:8f:75:1c:8f:0a:d1:17:83:0e:
96:d8:ad:30:d8:01:7c:5d:a0:2c:0c:9c:9a:49:7d:
ba:d0:a9:7f:30:3d:5e:fd:04:3b:1c:f7:8c:02:84:
bd:b4:5d:0b:32:2e:ee:31:76:c7:98:a1:8a:68:8a:
cf:0d:4d:67:98:2e:42:af:30:62:85:ee:1a:46:d4:
16:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:F2:B4:63:A6:82:A4:11:D3:9C:6F:9E:4F:16:8E:46:19:E3:D3:82
X509v3 Authority Key Identifier:
keyid:C0:0A:88:D7:E5:A5:65:EA:71:9C:FC:40:D8:BB:63:EE:16:71:85:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wAqI1-WlZepxnPxA2Ltj7hZxhWo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/34b48f-70c0-4004-ba0f-de3c8d953ec5/1/nvK0Y6aCpBHTnG-eTxaORhnj04I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/34b48f-70c0-4004-ba0f-de3c8d953ec5/1/wAqI1-WlZepxnPxA2Ltj7hZxhWo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.57.28.0/22
Signature Algorithm: sha256WithRSAEncryption
92:73:66:66:32:db:50:7a:f3:17:29:9c:fc:eb:83:f9:4b:83:
7e:20:73:f6:5e:27:43:e1:2d:9c:b8:69:61:2c:3a:34:2a:08:
53:2f:b1:53:da:ba:ee:d4:ab:79:b9:5b:54:9c:4c:1b:93:84:
c0:df:58:78:13:be:f3:6d:54:bf:b8:43:f3:f2:93:d2:91:38:
28:98:e9:74:6a:d0:4d:9a:02:65:c8:d0:de:b4:5a:97:bd:be:
96:e7:95:f8:4c:8b:ea:5f:a2:6a:5a:38:83:a9:71:3e:d4:a2:
93:86:4e:0b:67:fe:34:ec:b6:d6:ed:31:6b:7f:1e:fb:b9:f9:
12:29:d4:54:b1:07:03:5c:45:21:31:84:66:63:6e:ad:0d:b5:
09:45:76:6e:a4:03:8b:a6:69:2b:51:71:80:71:fc:0a:97:90:
ef:a6:5f:3b:ab:61:5a:d2:25:64:e7:a1:0c:87:3a:30:a2:49:
96:21:56:c3:10:43:ba:4e:06:0d:39:f8:3f:11:99:43:37:aa:
e5:9a:f2:92:df:c6:9f:6d:26:fb:2a:95:83:09:a0:9f:9c:93:
2a:fd:0a:42:74:8e:64:ca:c4:b7:27:63:bc:83:0e:b1:92:dd:
3f:f2:07:3d:b8:0d:9d:ae:e6:dc:fe:97:28:7c:ef:2b:13:78:
57:8e:d7:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jan 23 19:16:06 2025 by rpki-client on console.sobornost.net