Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/d7d50f-9eb0-48d5-a5b9-3ab3b67c6217/1/CIjGqy5enh-pgX59KmgX_o4g1lc.roa
File: CIjGqy5enh-pgX59KmgX_o4g1lc.roa (raw, json)
Hash identifier: /DHsQnuXManm+jh4fssTloN5NFoD4s2EoStYn8jrsLA=
Subject key identifier: 08:88:C6:AB:2E:5E:9E:1F:A9:81:7E:7D:2A:68:17:FE:8E:20:D6:57
Certificate issuer: /CN=1c010aa8438a825a5542013f1b90d348ed8a00c6
Certificate serial: 01856FF93C3E1563FFD61B1EC0AFAC8F9979
Authority key identifier: 1C:01:0A:A8:43:8A:82:5A:55:42:01:3F:1B:90:D3:48:ED:8A:00:C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HAEKqEOKglpVQgE_G5DTSO2KAMY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/d7d50f-9eb0-48d5-a5b9-3ab3b67c6217/1/CIjGqy5enh-pgX59KmgX_o4g1lc.roa
Signing time: Mon 02 Jan 2023 00:54:42 +0000
ROA not before: Mon 02 Jan 2023 00:54:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3303
IP address blocks: 193.246.62.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:f9:3c:3e:15:63:ff:d6:1b:1e:c0:af:ac:8f:99:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c010aa8438a825a5542013f1b90d348ed8a00c6
Validity
Not Before: Jan 2 00:54:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0888c6ab2e5e9e1fa9817e7d2a6817fe8e20d657
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:c4:96:3f:c1:95:59:30:80:71:63:7a:63:0d:
96:19:3d:cd:c7:de:78:9c:4c:e8:8f:2a:a7:68:77:
5d:0f:7f:a1:37:46:1c:1b:92:3e:93:3f:af:68:7b:
b8:20:c8:46:e3:f0:94:4d:0a:a5:a5:6c:9d:78:97:
f5:42:ee:41:3d:9b:30:ff:cf:ef:cb:a9:b6:28:57:
04:b7:84:2b:6b:3e:73:d9:14:e5:0e:52:08:0a:4d:
40:07:66:e9:e1:0e:67:ac:d9:74:20:a2:73:fd:83:
35:4c:77:b0:e2:d8:95:ed:be:ae:1c:61:60:87:b8:
8f:62:d4:ab:96:01:e7:8e:e0:3e:c6:67:80:d1:81:
7b:42:62:57:81:48:8c:8f:ae:97:d5:53:93:76:5c:
4e:93:73:2b:87:b0:2d:e6:7d:17:f0:a3:11:f3:29:
43:72:93:e2:0b:9a:df:89:5a:7c:f7:47:3a:a7:db:
c8:4b:99:bb:f2:d3:97:3f:20:0a:67:d0:9d:c8:1a:
8a:13:1f:a4:72:e0:53:83:d7:7c:b3:6b:fd:70:c5:
0a:94:c8:b3:9f:17:1c:e9:7c:16:c9:06:42:11:2d:
da:eb:9b:3b:e6:ae:c7:20:d9:92:7d:69:e2:ba:bb:
72:f5:ba:9a:26:47:99:fd:72:fa:83:8c:4a:72:6d:
1c:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:88:C6:AB:2E:5E:9E:1F:A9:81:7E:7D:2A:68:17:FE:8E:20:D6:57
X509v3 Authority Key Identifier:
keyid:1C:01:0A:A8:43:8A:82:5A:55:42:01:3F:1B:90:D3:48:ED:8A:00:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HAEKqEOKglpVQgE_G5DTSO2KAMY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/d7d50f-9eb0-48d5-a5b9-3ab3b67c6217/1/CIjGqy5enh-pgX59KmgX_o4g1lc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/d7d50f-9eb0-48d5-a5b9-3ab3b67c6217/1/HAEKqEOKglpVQgE_G5DTSO2KAMY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.246.62.0/23
Signature Algorithm: sha256WithRSAEncryption
3f:36:45:09:97:28:aa:1a:1b:3d:59:51:78:ba:04:55:77:ca:
b6:59:df:f0:38:78:20:38:6f:92:86:c7:7d:2b:23:c2:5c:28:
50:10:bb:f5:73:e4:65:32:f7:be:2b:eb:6b:35:f7:78:dd:d4:
9c:86:ad:22:af:a0:52:0e:b6:3d:b5:d6:a1:17:bb:10:0b:bc:
3e:0d:4e:06:f1:2c:45:00:ce:dc:b5:0b:06:eb:aa:36:4f:0e:
6b:cd:aa:48:87:a7:a2:6d:58:19:89:fa:ce:b6:c8:1b:63:70:
0d:51:a5:bc:c2:86:2f:02:06:b6:fd:02:ec:e8:56:23:a2:60:
b1:64:94:90:56:1c:e3:a6:cc:78:3e:4d:61:f0:1e:a9:54:25:
cf:d7:11:b2:50:ff:c3:f2:30:12:ba:3b:ab:66:93:0f:6c:05:
e7:fa:a4:21:c3:58:54:1a:5a:3b:a5:2c:e9:60:2e:44:93:ce:
a1:90:98:ad:05:cc:88:17:70:97:f9:d4:8f:78:d8:1a:3c:fc:
c2:2d:ea:ad:e5:8e:23:4c:ed:92:67:40:ff:b5:58:4a:2c:79:
8e:f8:3b:19:e1:23:b0:ca:1e:d9:73:b5:7f:79:8d:11:83:35:
a2:8f:d5:1c:33:9f:16:a6:d5:37:03:97:9c:25:74:f5:48:c9:
15:43:27:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 22:29:06 2025 by rpki-client