Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/19118c-ae60-48e3-a032-f8af568563e4/1/1JYuZfX6ZHvR9ceYpu2oRO0XRHY.roa
File: 1JYuZfX6ZHvR9ceYpu2oRO0XRHY.roa (raw, json)
Hash identifier: 5cOerpZrmhvq+IjpRxWjOqCiEpfJIAdr43KaAyTmFEs=
Subject key identifier: D4:96:2E:65:F5:FA:64:7B:D1:F5:C7:98:A6:ED:A8:44:ED:17:44:76
Certificate issuer: /CN=6647892437160dd5777ed3ed78d49bc72b5e1c5e
Certificate serial: 01915563F5FB1A062DB3A35BF6C1479B9C62
Authority key identifier: 66:47:89:24:37:16:0D:D5:77:7E:D3:ED:78:D4:9B:C7:2B:5E:1C:5E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZkeJJDcWDdV3ftPteNSbxyteHF4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/19118c-ae60-48e3-a032-f8af568563e4/1/1JYuZfX6ZHvR9ceYpu2oRO0XRHY.roa
Signing time: Thu 15 Aug 2024 09:34:59 +0000
ROA not before: Thu 15 Aug 2024 09:34:59 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 5623
IP address blocks: 193.41.110.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:55:63:f5:fb:1a:06:2d:b3:a3:5b:f6:c1:47:9b:9c:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6647892437160dd5777ed3ed78d49bc72b5e1c5e
Validity
Not Before: Aug 15 09:34:59 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d4962e65f5fa647bd1f5c798a6eda844ed174476
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:23:90:f1:f5:df:38:4a:23:ba:83:22:38:f8:
47:7e:3f:a7:0e:f8:64:22:c2:37:d3:71:39:a7:b1:
2d:a4:00:84:8d:39:b6:5a:36:6e:14:da:b6:5e:41:
77:e1:a1:c1:a7:a2:fe:0b:26:6d:51:88:77:03:32:
32:cf:f2:1a:cf:e3:68:b0:aa:0a:af:33:c6:54:d3:
7c:54:13:ea:b8:ff:ad:9f:23:a3:0e:3f:02:50:f4:
c3:bf:32:33:2f:78:30:45:28:d6:fd:83:b7:a5:6d:
00:f6:b7:ee:db:36:55:20:66:ba:a5:86:82:52:04:
0d:a5:85:cc:41:67:6f:1e:05:fb:3b:44:a8:cf:07:
5e:2b:14:75:12:4a:f8:a9:07:c4:6d:47:5b:36:fc:
2d:17:77:24:96:4e:74:f9:9b:6a:76:61:ab:5a:88:
34:02:14:d9:94:62:bc:63:3d:12:5b:78:d8:2b:d3:
47:8a:7f:2f:05:c5:f8:4c:94:26:78:53:ba:f9:b8:
e8:4e:68:e5:d7:f2:a4:8f:d4:ab:37:ff:a5:4d:77:
17:f9:d2:5a:69:22:c9:95:d9:37:ab:9b:d7:bd:c8:
1d:50:3c:fa:5c:12:62:0a:75:1f:4a:f3:cd:fe:6e:
88:54:1e:90:f3:eb:bc:d1:2d:6a:e9:9b:73:bc:6c:
a7:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:96:2E:65:F5:FA:64:7B:D1:F5:C7:98:A6:ED:A8:44:ED:17:44:76
X509v3 Authority Key Identifier:
keyid:66:47:89:24:37:16:0D:D5:77:7E:D3:ED:78:D4:9B:C7:2B:5E:1C:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZkeJJDcWDdV3ftPteNSbxyteHF4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/19118c-ae60-48e3-a032-f8af568563e4/1/1JYuZfX6ZHvR9ceYpu2oRO0XRHY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/19118c-ae60-48e3-a032-f8af568563e4/1/ZkeJJDcWDdV3ftPteNSbxyteHF4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.41.110.0/24
Signature Algorithm: sha256WithRSAEncryption
65:73:44:23:45:2d:76:d7:63:65:63:95:a0:92:df:9f:a1:8a:
c8:ba:b0:72:01:b4:c9:6c:d2:ca:f5:83:74:c3:14:73:ba:12:
06:03:56:97:be:a4:ae:14:72:07:65:43:b6:16:5b:13:54:73:
7b:fe:1e:6d:1c:68:1c:11:94:3c:6f:49:03:5d:ab:64:d8:65:
8c:11:63:03:fe:4d:12:06:a3:3a:cb:7d:5f:8a:55:36:4e:94:
15:fa:c9:f3:8b:95:95:7c:b3:23:b6:a5:a5:84:bb:51:00:d7:
ef:25:b9:af:a7:d9:0e:4f:f7:09:7d:b7:da:52:5d:17:6e:13:
cc:a6:08:27:4c:67:db:cd:c9:11:6a:92:2c:dd:68:e1:91:2a:
eb:6c:53:1c:e5:5e:4a:7c:38:23:02:5d:df:3c:61:80:05:56:
8a:4d:99:47:11:9f:a3:90:ec:69:d0:c3:ae:c2:a5:19:05:4c:
3f:21:28:c3:45:f0:59:72:2a:3e:d1:ca:29:81:64:41:08:86:
6d:13:4f:34:05:b1:43:34:eb:95:6c:5b:22:79:6e:27:71:e4:
21:91:0e:68:ee:30:7a:70:23:af:f2:a3:d7:d4:8b:33:f8:7b:
65:78:54:3c:07:9a:c3:c7:1e:a0:9e:b5:f4:84:4e:f9:62:11:
db:d9:d4:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 26 14:53:30 2025 by rpki-client