Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/bb0e7b-2a81-4970-b3bd-686f0a0616cc/1/0XZCFEvcysMCeGFmunKR5xkK6CU.roa
File: 0XZCFEvcysMCeGFmunKR5xkK6CU.roa (raw, json)
Hash identifier: NKZG3kFKeuoFe0BX6+E0JvjidIlOarlXOPnFw++pfv4=
Subject key identifier: D1:76:42:14:4B:DC:CA:C3:02:78:61:66:BA:72:91:E7:19:0A:E8:25
Certificate issuer: /CN=38e7f47bb9b91657e5726bfcb2def8aad973e268
Certificate serial: 019421B1BB3D34E8B01253BDE1392B99B036
Authority key identifier: 38:E7:F4:7B:B9:B9:16:57:E5:72:6B:FC:B2:DE:F8:AA:D9:73:E2:68
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OOf0e7m5Flflcmv8st74qtlz4mg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/bb0e7b-2a81-4970-b3bd-686f0a0616cc/1/0XZCFEvcysMCeGFmunKR5xkK6CU.roa
Signing time: Wed 01 Jan 2025 11:48:03 +0000
ROA not before: Wed 01 Jan 2025 11:48:03 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 43298
IP address blocks: 193.84.78.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:b1:bb:3d:34:e8:b0:12:53:bd:e1:39:2b:99:b0:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38e7f47bb9b91657e5726bfcb2def8aad973e268
Validity
Not Before: Jan 1 11:48:03 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=d17642144bdccac302786166ba7291e7190ae825
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:68:7d:b8:8a:1f:8b:c6:4c:ec:9b:bb:5d:82:
fe:65:a7:6e:2e:92:dc:70:be:5d:78:4a:c8:b1:16:
66:d6:05:da:5a:d8:f1:2f:b7:c9:65:22:4e:6c:d5:
60:ae:36:8f:0f:6a:0d:28:4a:ce:24:75:ae:6a:81:
c4:2e:b1:79:2f:61:eb:a7:6f:f8:ff:4a:3c:38:58:
a5:c2:bc:d6:e1:64:22:76:06:51:ef:3a:34:39:f5:
47:da:22:0d:cb:37:4f:b4:01:6a:f5:01:23:f3:7c:
0b:a1:64:3c:ea:84:9d:67:aa:de:44:5c:6a:dd:f4:
c5:2f:45:cb:c6:6f:90:53:99:b8:f2:00:1c:59:ea:
c6:51:5d:19:4e:77:25:13:05:49:70:9f:64:67:ea:
b4:f2:10:6f:1c:1f:92:0e:f2:21:4b:c4:4b:1c:47:
8b:8c:c1:35:26:de:4f:12:93:d7:37:4b:28:5b:e8:
8c:4b:c8:1c:1d:13:d7:06:c9:88:bd:a5:29:93:62:
02:f3:2f:1a:7b:4d:05:26:2b:80:e7:d6:17:c9:06:
99:85:16:7a:50:17:af:3f:4e:7e:fb:0e:29:18:08:
b7:eb:ca:9a:36:8b:8a:e7:96:56:18:2c:e0:28:55:
8e:3b:71:e8:7b:93:b8:4d:99:a9:58:f3:72:d6:dd:
9d:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:76:42:14:4B:DC:CA:C3:02:78:61:66:BA:72:91:E7:19:0A:E8:25
X509v3 Authority Key Identifier:
keyid:38:E7:F4:7B:B9:B9:16:57:E5:72:6B:FC:B2:DE:F8:AA:D9:73:E2:68
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OOf0e7m5Flflcmv8st74qtlz4mg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/bb0e7b-2a81-4970-b3bd-686f0a0616cc/1/0XZCFEvcysMCeGFmunKR5xkK6CU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/bb0e7b-2a81-4970-b3bd-686f0a0616cc/1/OOf0e7m5Flflcmv8st74qtlz4mg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.84.78.0/24
Signature Algorithm: sha256WithRSAEncryption
63:c8:78:05:14:4e:6b:e1:b4:b8:95:41:de:d9:53:f8:2e:78:
49:76:91:2f:54:fa:f3:7c:cb:8e:3a:a4:05:53:f2:d1:0c:a0:
dc:34:d5:bb:5a:50:f0:f8:65:ed:b3:f5:2a:e6:cb:15:43:c2:
85:f6:79:44:17:85:4a:7d:c7:00:df:af:21:a6:d7:e6:5c:87:
32:22:5b:9f:f0:a2:9f:56:b4:c5:4d:c4:6e:df:24:69:28:75:
62:c4:84:52:3d:85:19:0a:ed:ee:cb:e0:a1:8a:57:21:88:69:
8d:29:e4:f7:88:6d:cd:a9:b4:7e:ab:f8:da:7e:61:49:dc:b0:
18:ff:90:37:5a:36:4c:63:ec:f7:a1:16:6c:62:5d:37:d4:39:
b7:77:2d:20:0d:3b:a7:ce:38:06:5d:47:c6:82:93:53:54:df:
5c:a0:0a:25:17:1d:cb:b3:9b:2f:58:37:82:26:16:95:74:9b:
7b:32:e0:dd:46:78:03:34:e9:01:02:5a:dc:90:a9:74:3e:5b:
5d:f5:88:3f:a1:97:5c:ea:21:3a:f4:b1:d0:1d:3a:cc:e1:dc:
c6:8d:07:17:60:96:95:8b:9b:6e:42:95:98:18:4b:a8:fd:cb:
d2:49:25:81:7b:1f:e6:23:dc:80:db:96:ea:4c:c2:84:cf:2d:
f1:e2:61:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jan 23 19:16:49 2025 by rpki-client on console.sobornost.net