Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/0600a4-1464-4a7c-af56-18e86f0b1d81/1/hj2m_sFZINPEljtorDxkg-_9irU.roa
File: hj2m_sFZINPEljtorDxkg-_9irU.roa (raw, json)
Hash identifier: NCdlScB/IpLqhOoBjGwQ5DlzADzPRf2mJKDhLepnIrQ=
Subject key identifier: 86:3D:A6:FE:C1:59:20:D3:C4:96:3B:68:AC:3C:64:83:EF:FD:8A:B5
Certificate issuer: /CN=7ee053cb9cb4f41c1e4773e7f16e84bb57522033
Certificate serial: 019590D679E6EB99EA63E1CF9F352EC8C2E3
Authority key identifier: 7E:E0:53:CB:9C:B4:F4:1C:1E:47:73:E7:F1:6E:84:BB:57:52:20:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fuBTy5y09BweR3Pn8W6Eu1dSIDM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/0600a4-1464-4a7c-af56-18e86f0b1d81/1/hj2m_sFZINPEljtorDxkg-_9irU.roa
Signing time: Thu 13 Mar 2025 18:48:49 +0000
ROA not before: Thu 13 Mar 2025 18:48:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 396073
IP address blocks: 193.228.91.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:90:d6:79:e6:eb:99:ea:63:e1:cf:9f:35:2e:c8:c2:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ee053cb9cb4f41c1e4773e7f16e84bb57522033
Validity
Not Before: Mar 13 18:48:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=863da6fec15920d3c4963b68ac3c6483effd8ab5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:9e:c4:37:77:c1:44:b9:6b:60:61:19:ac:85:
5f:ce:c9:a9:cf:96:51:c2:e1:79:54:63:bc:41:0f:
69:8a:84:e9:e1:b1:7a:ed:8a:80:7d:89:fb:bd:f1:
2f:e9:f9:7c:41:91:01:df:d9:53:52:d2:8e:ba:be:
ab:9f:e6:eb:b0:96:b9:ea:50:4e:f8:0b:06:0a:25:
ec:f3:b7:f7:5b:a3:8f:6e:1c:c5:21:2c:c4:26:27:
bb:5e:d6:d3:bf:8b:9d:e8:d9:76:45:08:d7:6e:c9:
75:ab:17:27:04:c0:3d:04:57:64:fc:dd:4d:3f:6f:
fa:b4:65:d9:5f:b3:6e:a8:e5:3e:e4:0b:f9:84:63:
e0:e7:af:7f:61:cb:20:7e:c7:f2:3c:47:67:d5:d9:
e8:c3:ab:2c:de:f6:b2:fd:32:7c:32:8b:7e:f4:6c:
56:32:74:c5:8d:71:ef:f8:3d:fe:72:2a:b0:6d:b6:
0c:f9:e6:7f:33:7f:da:95:b5:3f:5d:36:71:e2:c9:
3d:fb:96:81:3d:26:1a:47:61:71:84:49:72:0e:82:
7f:dd:9f:05:88:f4:a5:bb:20:09:aa:b5:53:5e:02:
a3:4e:87:92:eb:bb:bc:b2:01:29:ac:30:62:99:e8:
10:9c:d6:c6:66:ec:cf:25:57:2f:5a:1d:80:e3:76:
de:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:3D:A6:FE:C1:59:20:D3:C4:96:3B:68:AC:3C:64:83:EF:FD:8A:B5
X509v3 Authority Key Identifier:
keyid:7E:E0:53:CB:9C:B4:F4:1C:1E:47:73:E7:F1:6E:84:BB:57:52:20:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fuBTy5y09BweR3Pn8W6Eu1dSIDM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/0600a4-1464-4a7c-af56-18e86f0b1d81/1/hj2m_sFZINPEljtorDxkg-_9irU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/0600a4-1464-4a7c-af56-18e86f0b1d81/1/fuBTy5y09BweR3Pn8W6Eu1dSIDM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.228.91.0/24
Signature Algorithm: sha256WithRSAEncryption
75:57:85:c7:f5:0e:35:32:55:5a:8e:62:81:a0:c3:95:50:f6:
24:cf:14:0c:26:74:93:02:b4:a6:fb:41:ec:56:b2:c1:74:0b:
68:cb:af:3f:74:8b:17:7e:71:c1:77:d5:71:e5:62:78:b5:64:
d2:cb:49:b5:19:b6:4a:5f:33:0c:f8:0c:3b:52:4c:6d:c8:91:
22:8b:a4:b8:1b:a6:85:ca:9b:2f:0e:10:da:cd:a9:93:58:01:
9a:7e:28:92:82:98:0b:4b:38:e6:c5:ea:43:c9:6e:49:b9:3d:
02:01:ec:77:89:4a:d7:da:0c:c1:1b:d1:f5:0b:87:29:6e:b5:
bc:a8:53:ca:d2:0a:b2:f1:fd:bc:49:a3:71:73:c8:69:4b:86:
3d:ab:2a:8d:1e:34:85:0d:b5:a9:88:33:74:1a:57:f2:c2:3d:
77:64:ec:37:6d:f4:3c:4f:9b:89:c5:de:ee:53:15:a4:22:0b:
bd:e2:93:e7:a8:37:d7:19:41:7e:76:7d:32:0e:f3:1a:05:77:
d8:ca:6a:e5:82:7b:ad:92:20:e2:24:59:86:1d:71:e7:d2:36:
82:8d:30:6f:eb:f0:a6:72:a1:41:73:b2:e1:2c:dd:40:67:8f:
ca:f3:89:28:7d:bb:ec:3f:09:d9:74:fe:a6:49:7c:40:9e:5b:
97:d0:38:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 07:29:03 2025 by rpki-client