Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/RN_mogYl5PijewFg6qM4ZPxgXCU.roa
File: RN_mogYl5PijewFg6qM4ZPxgXCU.roa (raw, json)
Hash identifier: omavvuqprSCEPilSrRL5RnLidkCW+5jRw/tiNhrN+CI=
Subject key identifier: 44:DF:E6:A2:06:25:E4:F8:A3:7B:01:60:EA:A3:38:64:FC:60:5C:25
Certificate issuer: /CN=86d648bdba965461b1e8c11b9dd436c61382873c
Certificate serial: 019420683C9C7D84640FE204FA09F8E358E5
Authority key identifier: 86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/RN_mogYl5PijewFg6qM4ZPxgXCU.roa
Signing time: Wed 01 Jan 2025 05:48:09 +0000
ROA not before: Wed 01 Jan 2025 05:48:09 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 35783
IP address blocks: 193.233.173.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:68:3c:9c:7d:84:64:0f:e2:04:fa:09:f8:e3:58:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86d648bdba965461b1e8c11b9dd436c61382873c
Validity
Not Before: Jan 1 05:48:09 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=44dfe6a20625e4f8a37b0160eaa33864fc605c25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:5d:14:8e:27:cf:01:98:ac:0a:2b:ef:50:d3:
37:ba:59:e8:37:47:b5:57:91:0c:6d:e7:7f:5a:7c:
65:da:c4:22:d3:98:6b:19:62:ee:ca:51:50:8a:6e:
64:e8:7c:ea:c7:e9:a7:11:01:26:b2:4f:8d:3b:09:
c8:d4:95:b4:fa:e3:2a:9a:2c:7a:53:fe:65:08:14:
3d:14:b7:fa:35:d8:c1:18:a7:a6:a6:8e:c7:96:fb:
98:29:7a:e8:89:e2:7c:f6:4b:39:79:8a:7f:e4:70:
99:93:e3:49:28:47:a2:90:77:99:2b:11:89:98:9d:
5a:f2:6b:86:41:9e:c7:cf:f0:f3:ca:5b:00:5b:7f:
76:16:a6:aa:a8:f3:dd:24:83:15:19:c6:77:69:40:
9b:06:5f:04:49:dc:f2:5b:19:73:c4:b5:8c:fa:4d:
84:be:c7:cd:c4:47:0f:64:25:22:1e:7a:0b:75:d7:
4d:fd:4d:d5:4b:8f:c4:44:bb:6c:73:be:9b:73:c6:
27:7b:98:ae:62:26:dc:27:44:e5:b1:1f:c3:f8:2b:
49:9b:7b:58:35:1e:90:10:32:57:71:3e:3b:27:fb:
ec:ac:6d:16:14:2b:dd:83:eb:94:02:2d:b6:8d:b7:
53:11:91:49:6d:a9:0c:fa:01:fe:ee:96:29:7e:25:
5c:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:DF:E6:A2:06:25:E4:F8:A3:7B:01:60:EA:A3:38:64:FC:60:5C:25
X509v3 Authority Key Identifier:
keyid:86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/RN_mogYl5PijewFg6qM4ZPxgXCU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.233.173.0/24
Signature Algorithm: sha256WithRSAEncryption
15:35:d4:e8:66:3b:de:63:ea:f8:51:f7:c9:ab:4d:12:6a:81:
20:22:6c:3f:79:9b:a8:36:82:5d:da:67:74:3a:48:0c:0c:af:
31:07:8d:6d:fc:b8:13:48:64:24:9b:f1:02:64:e4:28:2f:54:
ac:66:cf:55:92:48:4d:c4:2a:08:df:4c:df:fa:38:02:ec:05:
79:ab:8e:d9:25:a5:de:be:63:cd:83:ef:0e:a6:04:a5:7d:1e:
86:8a:06:b8:b5:49:47:6d:a5:f8:11:fd:be:e3:b4:fa:70:66:
d4:0f:75:7d:b0:0d:c7:38:4a:30:3c:72:09:eb:06:14:ec:df:
c5:31:e5:58:2e:48:ad:d9:86:da:6d:1a:78:9d:74:c3:b6:07:
55:b6:bb:ac:bf:8d:51:08:54:1f:c4:57:2e:c1:3a:8b:f8:23:
6e:6c:15:fe:28:8b:96:d4:59:8f:d0:03:df:2a:62:47:da:1f:
5c:8f:07:9e:ff:1f:0e:62:f7:6a:71:6e:37:1e:4f:bc:3a:c2:
1e:40:ed:ad:1b:2e:8a:a5:58:be:2b:43:bd:fe:8d:e5:3e:f2:
b2:36:43:b8:0f:00:8c:1a:6f:f2:77:b4:a1:e4:98:7f:c5:5b:
51:16:76:b5:6b:aa:3b:46:37:5a:58:f2:50:83:bb:ec:70:23:
b5:8b:50:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 05:13:52 2025 by rpki-client