Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/d21778-193c-4f4c-8119-dd142a1335f0/1/o1Ho1AoDVivcPIuSoHTiqdRiLsw.roa
File: o1Ho1AoDVivcPIuSoHTiqdRiLsw.roa (raw, json)
Hash identifier: 2VRi6zWzRrWILpFGgvS4R1+SnUUqoGeAipP4Ra7rcD4=
Subject key identifier: A3:51:E8:D4:0A:03:56:2B:DC:3C:8B:92:A0:74:E2:A9:D4:62:2E:CC
Certificate issuer: /CN=3937b5a5156b5c72ffc0f9c0b7104bb188dbcbbc
Certificate serial: 01942067F9E8F7BC031171E583627B12C234
Authority key identifier: 39:37:B5:A5:15:6B:5C:72:FF:C0:F9:C0:B7:10:4B:B1:88:DB:CB:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OTe1pRVrXHL_wPnAtxBLsYjby7w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/d21778-193c-4f4c-8119-dd142a1335f0/1/o1Ho1AoDVivcPIuSoHTiqdRiLsw.roa
Signing time: Wed 01 Jan 2025 05:47:52 +0000
ROA not before: Wed 01 Jan 2025 05:47:52 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 5408
IP address blocks: 193.218.36.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:67:f9:e8:f7:bc:03:11:71:e5:83:62:7b:12:c2:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3937b5a5156b5c72ffc0f9c0b7104bb188dbcbbc
Validity
Not Before: Jan 1 05:47:52 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=a351e8d40a03562bdc3c8b92a074e2a9d4622ecc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:78:df:62:bd:e4:a1:7e:ad:f4:1d:0d:63:ae:
98:3f:18:27:87:e5:97:db:e6:bf:5e:c8:d5:87:6d:
96:50:ac:96:2b:d4:97:c9:03:e9:43:bf:73:1d:9e:
5a:80:12:95:9a:1b:04:e2:a3:28:65:14:70:27:3f:
6e:9f:de:66:8d:4b:c2:ba:4f:41:70:fc:d4:5b:e2:
fb:e7:86:8d:d8:20:1c:af:eb:86:19:cf:e0:77:28:
bb:16:4e:77:79:89:46:d1:bb:4a:62:07:65:40:72:
5e:52:e0:b0:ae:42:4c:33:91:3f:9b:40:cc:fc:be:
02:ac:d5:17:9e:23:28:28:b0:14:52:78:f7:e5:2b:
e6:95:8d:de:0b:3b:04:e9:7c:e9:2c:27:4a:b6:0c:
36:43:93:e3:8f:2e:b3:1e:50:44:f6:68:42:7e:a4:
73:3c:71:d4:e6:51:f8:bf:d2:81:7c:f2:30:b7:91:
57:5a:f6:11:ad:c9:d7:9d:4b:c7:bc:c6:ce:bc:43:
7e:b3:9f:5b:6e:88:0a:dc:5c:1f:72:92:c0:80:49:
5f:0f:61:11:29:1d:44:74:c0:b3:ca:00:60:8d:3d:
e3:1f:2a:0e:a7:d0:7b:8a:43:d3:0b:a1:b4:90:14:
58:d3:27:71:5b:4f:c8:dd:a7:ad:fd:4b:db:ea:98:
9e:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:51:E8:D4:0A:03:56:2B:DC:3C:8B:92:A0:74:E2:A9:D4:62:2E:CC
X509v3 Authority Key Identifier:
keyid:39:37:B5:A5:15:6B:5C:72:FF:C0:F9:C0:B7:10:4B:B1:88:DB:CB:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OTe1pRVrXHL_wPnAtxBLsYjby7w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/d21778-193c-4f4c-8119-dd142a1335f0/1/o1Ho1AoDVivcPIuSoHTiqdRiLsw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/d21778-193c-4f4c-8119-dd142a1335f0/1/OTe1pRVrXHL_wPnAtxBLsYjby7w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.218.36.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:f8:80:0c:7e:2b:75:9f:b9:30:7d:38:93:a8:1d:6c:3e:53:
59:0a:5c:4b:35:09:ca:c5:5f:57:ae:02:80:6f:ec:8c:8d:a5:
54:4d:41:e2:9b:87:a0:80:72:54:fa:39:5b:a6:fa:61:24:83:
c4:84:4b:b5:e6:41:c0:d1:22:8a:23:b1:8d:35:54:90:f9:d1:
8c:72:52:57:e6:76:21:d5:88:70:41:4a:e3:4e:98:0d:b3:ec:
ee:6a:1f:3c:66:2e:31:a6:81:3f:42:84:01:ff:5e:10:d1:23:
54:d1:48:36:f7:c9:0c:b8:13:d7:a3:d6:7f:58:54:97:d2:24:
29:55:60:4a:14:a7:23:ed:b7:f0:27:10:8d:21:36:6a:ad:1c:
0a:35:26:78:6c:3e:47:ad:1d:2f:64:a7:1c:0a:0a:7a:b1:3f:
81:fd:cb:e6:58:2a:33:2b:9d:95:7e:70:63:c4:20:cb:be:3a:
d4:2b:6e:74:d1:a9:19:ca:19:15:b9:9d:0c:94:b3:99:bd:a1:
73:b9:88:83:70:5d:6b:06:dd:1d:f3:cd:73:47:01:39:c1:16:
c9:8a:b7:36:a0:4d:ee:ff:f1:42:98:4d:6c:32:75:d3:10:5c:
36:29:3e:02:59:de:99:7a:00:82:7a:9e:2a:df:53:4d:ab:fd:
23:31:31:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:10 2025 by rpki-client on console.sobornost.net