Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/f4ca1c-35dd-4cb1-84fa-8115cafd38ce/1/XLNp588BlhjTzq9wL8KooDNiDfQ.roa
File: XLNp588BlhjTzq9wL8KooDNiDfQ.roa (raw, json)
Hash identifier: yqzj3pa+xK6sQ61wkjeNUDLd0sOcE9ePSDM9S9DIM0g=
Subject key identifier: 5C:B3:69:E7:CF:01:96:18:D3:CE:AF:70:2F:C2:A8:A0:33:62:0D:F4
Certificate issuer: /CN=b0bd68e370e7ec25bec8e01497b2138d95dc6ebc
Certificate serial: 0194252170D65B1E6318312A40ABF446DFDC
Authority key identifier: B0:BD:68:E3:70:E7:EC:25:BE:C8:E0:14:97:B2:13:8D:95:DC:6E:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sL1o43Dn7CW-yOAUl7ITjZXcbrw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/f4ca1c-35dd-4cb1-84fa-8115cafd38ce/1/XLNp588BlhjTzq9wL8KooDNiDfQ.roa
Signing time: Thu 02 Jan 2025 03:48:55 +0000
ROA not before: Thu 02 Jan 2025 03:48:55 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 33906
IP address blocks: 193.200.141.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:21:70:d6:5b:1e:63:18:31:2a:40:ab:f4:46:df:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0bd68e370e7ec25bec8e01497b2138d95dc6ebc
Validity
Not Before: Jan 2 03:48:55 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=5cb369e7cf019618d3ceaf702fc2a8a033620df4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:e7:6e:dc:54:82:9c:cc:82:b6:3a:ae:8f:c2:
55:0f:0e:c5:4a:b5:c3:48:23:3a:18:80:25:b9:93:
b2:ee:82:08:1c:4a:e9:67:ae:f4:82:60:3d:b1:2c:
73:a8:fb:1d:d6:be:e8:bf:79:cb:b8:48:e4:09:94:
59:73:0a:d5:53:e1:25:c0:3d:34:0b:04:aa:7f:55:
29:99:b7:00:97:43:98:6c:63:69:68:b2:1d:cc:dc:
8f:6e:22:d9:03:6b:5b:46:50:44:21:3a:31:ad:aa:
6f:b4:16:c4:6b:c1:e9:f3:3a:93:16:1c:f3:62:b1:
cd:e9:ec:e4:82:14:1d:27:2c:b3:4a:96:fd:60:5d:
a5:cd:a2:d8:7f:25:5a:b0:ec:12:21:8d:46:c6:8b:
83:6a:56:ac:89:99:27:e0:75:1c:7e:7f:53:09:bd:
11:bf:32:fd:23:b5:06:60:c3:d8:49:3a:60:af:8a:
ca:fc:53:ce:0d:7a:20:b6:55:41:17:14:35:0e:0f:
71:04:cc:7a:9a:9f:5b:86:b2:e8:95:f1:85:30:3f:
f3:93:de:41:f3:65:d6:9b:a0:86:60:5a:26:b9:9f:
0d:54:9a:cc:f3:21:fa:72:da:44:0d:63:8e:fd:30:
d3:15:d9:4e:05:7e:ac:53:28:18:4d:10:11:e6:c1:
bf:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:B3:69:E7:CF:01:96:18:D3:CE:AF:70:2F:C2:A8:A0:33:62:0D:F4
X509v3 Authority Key Identifier:
keyid:B0:BD:68:E3:70:E7:EC:25:BE:C8:E0:14:97:B2:13:8D:95:DC:6E:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sL1o43Dn7CW-yOAUl7ITjZXcbrw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/f4ca1c-35dd-4cb1-84fa-8115cafd38ce/1/XLNp588BlhjTzq9wL8KooDNiDfQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/f4ca1c-35dd-4cb1-84fa-8115cafd38ce/1/sL1o43Dn7CW-yOAUl7ITjZXcbrw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.200.141.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:8c:77:d1:a6:4b:23:c3:cb:c3:0b:ee:1d:b1:1a:71:b1:12:
f6:e4:0b:eb:bb:3d:e6:9f:d2:bf:cb:db:84:1c:4a:89:2b:53:
12:e4:20:69:03:01:6d:c6:81:50:d2:71:67:f0:c1:eb:a3:b8:
b6:d6:5d:82:3d:bb:ab:9d:03:97:e1:17:18:12:2c:38:24:27:
7d:35:67:e5:93:90:33:c9:39:e6:06:0f:73:f4:80:96:f5:95:
0d:d3:26:2d:06:da:fa:e5:2f:a9:8c:6c:23:34:5c:a4:50:88:
cb:bd:da:ef:7a:a4:42:58:0e:4a:c1:65:91:9e:d7:bd:ca:6c:
b0:e4:22:48:24:71:c5:e2:90:ed:14:a6:a4:db:a5:ad:de:9e:
ab:a7:bb:66:ec:e7:2f:45:ae:b7:f5:79:60:9f:8f:ce:6c:9d:
6f:56:15:80:6a:cb:28:6e:7b:84:fa:7f:7b:21:7e:fa:19:31:
f8:61:1b:c4:63:e5:70:cb:31:05:a6:03:9b:1a:f5:e7:b4:4b:
60:8f:b1:27:78:e3:af:13:a8:67:e3:01:4f:8f:76:ed:14:d5:
d0:d1:0e:39:df:17:85:ea:3e:89:47:8c:20:56:31:0e:c1:84:
4b:80:e0:e5:49:37:f0:d2:ab:a1:71:65:46:6d:55:0e:58:b1:
e7:02:d7:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:45 2025 by rpki-client on console.sobornost.net