Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/65a4c2-34b3-4205-afd1-c5481db3718d/1/8G7CKA2HbZHRoNb9HaqBloS90vU.roa
File: 8G7CKA2HbZHRoNb9HaqBloS90vU.roa (raw, json)
Hash identifier: lDvm+Nsn5gFxpzefNnpEbQ5VLuNGtuV4rwnVopzkwq0=
Subject key identifier: F0:6E:C2:28:0D:87:6D:91:D1:A0:D6:FD:1D:AA:81:96:84:BD:D2:F5
Certificate issuer: /CN=4d29282d47373f942f0ad8b91ed94093b66ea3af
Certificate serial: 019422202513FE5F5BFF4352E827B4E7C057
Authority key identifier: 4D:29:28:2D:47:37:3F:94:2F:0A:D8:B9:1E:D9:40:93:B6:6E:A3:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TSkoLUc3P5QvCti5HtlAk7Zuo68.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/65a4c2-34b3-4205-afd1-c5481db3718d/1/8G7CKA2HbZHRoNb9HaqBloS90vU.roa
Signing time: Wed 01 Jan 2025 13:48:39 +0000
ROA not before: Wed 01 Jan 2025 13:48:39 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 207488
IP address blocks: 193.29.203.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:20:25:13:fe:5f:5b:ff:43:52:e8:27:b4:e7:c0:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4d29282d47373f942f0ad8b91ed94093b66ea3af
Validity
Not Before: Jan 1 13:48:39 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=f06ec2280d876d91d1a0d6fd1daa819684bdd2f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:17:cc:b1:98:f9:5b:a8:80:c1:b4:de:b9:b3:
07:58:a4:3e:ae:6e:1a:3a:41:98:f2:27:24:c6:43:
4b:b4:45:c2:8a:fb:ae:3b:76:e1:7b:b8:68:78:76:
b3:c8:ff:8b:1a:a7:a3:72:c9:8a:71:f6:1d:8f:12:
7a:c7:34:90:e6:e1:42:9f:dd:76:8e:ea:a6:18:8e:
76:2b:60:5f:aa:f5:e4:ec:d6:55:23:8e:df:c8:f6:
ad:5d:15:16:b4:8c:4d:25:66:69:37:77:90:08:cf:
58:7d:dd:43:e4:83:21:d2:f3:28:2e:0d:f1:b5:6d:
df:73:3a:e8:be:e9:01:67:7f:9d:66:e5:c8:48:85:
f9:fb:66:16:6e:b3:1b:66:d7:41:25:f9:68:11:22:
8a:1f:7d:6a:6b:98:f1:0d:f5:1f:02:ae:38:d9:10:
c7:7c:c8:eb:6e:91:ea:8d:d1:86:14:dc:25:ed:86:
cd:c2:c3:03:9a:92:25:2a:c9:70:f8:8c:11:77:91:
c8:fe:00:40:69:00:84:8e:fd:59:fa:b4:46:25:0e:
a6:56:51:d0:6d:38:84:3d:05:5f:66:78:aa:06:4e:
6f:3a:41:43:10:69:dc:d2:1a:ca:95:49:3d:83:9a:
f9:21:82:a1:42:c6:4e:26:83:5a:74:a2:89:da:f5:
4f:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:6E:C2:28:0D:87:6D:91:D1:A0:D6:FD:1D:AA:81:96:84:BD:D2:F5
X509v3 Authority Key Identifier:
keyid:4D:29:28:2D:47:37:3F:94:2F:0A:D8:B9:1E:D9:40:93:B6:6E:A3:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TSkoLUc3P5QvCti5HtlAk7Zuo68.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/65a4c2-34b3-4205-afd1-c5481db3718d/1/8G7CKA2HbZHRoNb9HaqBloS90vU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/65a4c2-34b3-4205-afd1-c5481db3718d/1/TSkoLUc3P5QvCti5HtlAk7Zuo68.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.29.203.0/24
Signature Algorithm: sha256WithRSAEncryption
79:89:f2:06:20:25:16:af:b6:fe:6a:b0:33:81:08:ea:89:09:
73:5d:48:a5:2c:3e:0a:f4:c0:f0:fc:65:f6:92:7c:59:5e:95:
c7:f5:d5:de:43:ed:7a:ed:0b:bf:57:ce:9d:35:f6:40:d7:2d:
89:29:49:70:2a:8e:38:6a:24:10:61:0d:8a:20:d2:ec:ca:a3:
c4:93:22:f9:13:3d:35:92:e3:3d:1c:8f:90:55:b8:52:2c:1a:
93:9a:9f:49:65:9b:30:16:00:72:76:94:4b:c0:4d:41:69:b2:
f7:6d:3f:ae:96:12:b1:bd:8d:19:23:7d:e3:6f:cd:11:5c:6d:
b0:70:16:af:c8:74:61:ef:bf:26:9c:67:96:c7:0e:f3:87:d6:
52:0b:94:db:5f:92:8d:b4:e1:5d:de:bb:94:8f:5f:4f:02:d6:
e3:69:a1:cc:ff:65:0e:7e:07:bc:8d:e0:03:ab:c3:bb:70:18:
a6:62:80:9d:eb:be:73:e3:5d:f6:a6:05:84:2b:e1:e2:70:ad:
6e:74:d5:c7:da:4b:c9:af:90:c9:00:28:6a:d1:22:8c:33:d5:
e3:03:10:ae:b8:4d:1e:ee:d4:75:c9:cb:80:12:a3:c7:c0:3c:
3f:13:b3:17:02:4a:32:d4:ce:1a:43:25:89:ff:1c:5c:43:af:
bb:4f:a7:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:27 2025 by rpki-client on console.sobornost.net