Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/Kw-Q3Veai5J_xACtmHGijZmDdL4.roa
File: Kw-Q3Veai5J_xACtmHGijZmDdL4.roa (raw, json)
Hash identifier: rSmfphP8vOMmaDf5guwFaomsiMYDIM9UlR3p8pl4A5A=
Subject key identifier: 2B:0F:90:DD:57:9A:8B:92:7F:C4:00:AD:98:71:A2:8D:99:83:74:BE
Certificate issuer: /CN=3183785916cd98d7c770d685145499a8a0a15722
Certificate serial: 01941F8C3DAEAD05A520E535F93AD6B88A7E
Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/Kw-Q3Veai5J_xACtmHGijZmDdL4.roa
Signing time: Wed 01 Jan 2025 01:47:51 +0000
ROA not before: Wed 01 Jan 2025 01:47:51 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 205859
IP address blocks: 193.231.161.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:8c:3d:ae:ad:05:a5:20:e5:35:f9:3a:d6:b8:8a:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722
Validity
Not Before: Jan 1 01:47:51 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=2b0f90dd579a8b927fc400ad9871a28d998374be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:0c:f3:41:51:2c:c9:69:ea:01:b5:2d:b1:c3:
50:f9:26:97:8a:d5:38:77:00:fd:40:37:97:10:4c:
43:6e:c1:75:1b:04:cc:d7:41:c2:c4:8e:b8:40:d1:
25:56:1e:89:d5:4c:e7:a4:23:17:ff:b5:05:ca:d2:
54:84:00:4a:52:39:8c:85:75:9f:10:f2:d7:e4:f7:
85:d3:3c:19:09:f5:20:a5:3b:e9:83:25:aa:8a:63:
e0:f5:fc:bd:30:dc:fd:f0:38:7e:1c:34:df:94:ea:
99:16:7a:8e:e1:7b:b2:3f:ef:a8:34:f4:ef:d9:5b:
b7:10:92:5a:16:bf:a6:f7:88:7a:78:f6:ea:f4:cd:
7f:79:25:09:8c:73:10:00:88:39:c6:8a:5f:19:21:
ca:42:52:5f:a3:57:29:81:b3:db:01:7a:f6:cb:97:
17:ec:5d:3a:b9:e8:e2:25:4e:ec:b8:ae:23:1e:1f:
c5:e9:c9:9b:3f:af:56:69:0f:15:35:c7:9c:0c:3b:
da:2d:da:5c:71:f0:d1:6b:33:cd:09:e6:55:25:c3:
0e:e3:7b:32:69:4a:28:bc:65:61:16:d5:0c:69:f8:
e4:19:fd:86:f2:82:4e:af:4a:04:3d:b7:3d:e5:11:
8b:e3:5e:67:de:34:f6:a5:b3:7d:2d:23:cb:69:fb:
97:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:0F:90:DD:57:9A:8B:92:7F:C4:00:AD:98:71:A2:8D:99:83:74:BE
X509v3 Authority Key Identifier:
keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/Kw-Q3Veai5J_xACtmHGijZmDdL4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.231.161.0/24
Signature Algorithm: sha256WithRSAEncryption
8c:83:64:59:e0:34:69:65:6f:bf:4a:c1:92:70:ec:9a:6d:f7:
55:c8:47:f1:81:af:14:70:d7:37:67:0a:fa:43:08:2c:81:69:
4b:6b:8d:bd:97:d0:a4:94:94:d7:e9:ac:1e:9d:08:25:96:22:
1e:a6:35:b7:bf:fb:79:28:ba:fe:35:04:34:3b:d2:5a:92:8c:
36:47:1f:8d:cd:0e:2a:a4:28:5c:db:1d:2c:3e:6f:c4:b3:3d:
0b:f9:0a:06:f6:14:a4:21:d6:61:a3:5d:75:1c:a8:f1:79:6f:
92:27:bf:53:26:34:c5:5d:a3:43:d5:cf:f8:31:22:16:ff:bb:
11:09:ba:d3:7a:28:bd:80:cf:38:e3:51:fa:d7:6f:e6:dd:b8:
69:e6:06:97:82:41:38:b6:84:08:0b:99:c1:ed:7e:49:4a:28:
78:d3:76:95:c0:1f:c1:90:2d:bf:35:08:9e:a3:bc:fc:67:21:
c8:1b:2c:9e:73:53:12:df:02:68:a5:65:6e:34:32:5b:cb:db:
f3:f4:ca:d7:c9:4c:10:d9:5c:51:fa:e1:c3:ec:d1:08:02:6a:
7e:f2:a7:21:a3:57:71:87:6f:f8:01:ad:ba:7d:bd:a4:d5:3c:
d9:e6:73:c3:af:df:26:82:21:b5:4d:ee:79:e2:fe:48:ab:35:
5d:ed:58:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 23:22:21 2025 by rpki-client