Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/cee4c2-e8ac-4742-bd06-e49c43f18746/1/4grrgtzcORYn9NWXH9Aisw7I2us.roa
File: 4grrgtzcORYn9NWXH9Aisw7I2us.roa (raw, json)
Hash identifier: DBXxlQ/Wm8XCbLLoZaEGihFDCM8ZknKpustTt7COu2A=
Subject key identifier: E2:0A:EB:82:DC:DC:39:16:27:F4:D5:97:1F:D0:22:B3:0E:C8:DA:EB
Certificate issuer: /CN=be132774bbf8f4aa1f2c2fc317872199861ac904
Certificate serial: 01882086B09E3A8CE38D05FF871C1212F3F8
Authority key identifier: BE:13:27:74:BB:F8:F4:AA:1F:2C:2F:C3:17:87:21:99:86:1A:C9:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vhMndLv49KofLC_DF4chmYYayQQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/cee4c2-e8ac-4742-bd06-e49c43f18746/1/4grrgtzcORYn9NWXH9Aisw7I2us.roa
Signing time: Mon 15 May 2023 17:47:57 +0000
ROA not before: Mon 15 May 2023 17:47:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 7393
IP address blocks: 193.9.25.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:20:86:b0:9e:3a:8c:e3:8d:05:ff:87:1c:12:12:f3:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=be132774bbf8f4aa1f2c2fc317872199861ac904
Validity
Not Before: May 15 17:47:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e20aeb82dcdc391627f4d5971fd022b30ec8daeb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:cf:0a:79:1a:aa:d5:6f:a9:37:32:ef:86:be:
1f:30:17:59:c0:77:fc:14:af:92:2c:83:e1:6e:58:
4e:d4:34:14:d6:02:78:b2:be:8e:de:66:42:93:b8:
b0:57:2e:0d:37:c9:7b:40:51:cd:e8:8e:da:f9:0e:
47:f5:10:8b:ce:ec:f5:e0:28:59:65:b5:b6:d9:c3:
b3:b5:1c:d2:05:81:2f:7c:ee:0a:75:ca:ef:61:4d:
55:2a:22:f3:d0:37:1b:57:33:19:4c:92:21:6a:ae:
02:a5:a3:58:67:96:05:06:01:4e:e7:da:79:3d:a4:
ca:60:5c:13:bf:8f:9d:f7:18:46:42:77:6e:f2:ee:
81:fc:99:e6:26:5a:b5:84:4f:9f:2f:24:94:19:16:
50:4b:db:60:2f:41:7f:1d:47:7b:4d:98:65:92:6e:
df:75:43:81:67:a1:a6:20:09:e7:78:e5:3a:1b:dc:
41:d2:e9:16:36:e4:ff:26:5f:40:85:21:5d:07:c1:
e0:03:8f:56:1b:3e:e2:cb:6b:21:30:3d:2a:e9:18:
60:a6:38:0c:66:8f:7b:8c:10:44:4c:5a:b8:ae:18:
18:e6:de:e9:76:6c:5f:ce:54:46:32:7f:15:18:6c:
10:09:4b:88:67:a9:e7:97:33:10:7d:2a:47:dd:f4:
5a:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:0A:EB:82:DC:DC:39:16:27:F4:D5:97:1F:D0:22:B3:0E:C8:DA:EB
X509v3 Authority Key Identifier:
keyid:BE:13:27:74:BB:F8:F4:AA:1F:2C:2F:C3:17:87:21:99:86:1A:C9:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vhMndLv49KofLC_DF4chmYYayQQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/cee4c2-e8ac-4742-bd06-e49c43f18746/1/4grrgtzcORYn9NWXH9Aisw7I2us.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/cee4c2-e8ac-4742-bd06-e49c43f18746/1/vhMndLv49KofLC_DF4chmYYayQQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.9.25.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:85:e5:2d:3c:da:d8:fd:85:2d:50:46:5b:72:29:e8:a7:ed:
0b:3b:fb:cc:31:c2:69:88:9c:d2:6b:0e:0e:60:f5:4c:d4:7b:
ff:87:a3:84:40:65:2a:99:54:e7:45:2a:2f:95:ca:dd:a7:9f:
90:20:b5:8a:ee:54:e3:da:a7:99:fc:ea:8d:86:7c:cd:27:10:
08:bf:a8:28:16:b9:8b:99:e1:96:d9:47:84:10:16:02:39:83:
7b:ac:4d:7d:3d:20:78:32:b9:09:e8:27:9a:7a:82:b8:4d:57:
8a:56:a7:ea:84:af:f7:73:a8:76:65:a1:25:9b:53:24:17:a9:
81:d4:1e:d3:53:10:fb:f6:94:a6:1c:4c:8e:b6:f9:06:36:77:
ae:1e:ae:1b:66:31:7d:a5:1b:96:32:b7:b4:e2:4a:d1:e3:3b:
12:ea:9d:64:88:0b:09:18:b6:98:1d:5e:74:9d:f7:bb:ee:dd:
5e:fc:2c:4e:10:d7:b3:f1:d7:d6:4d:81:1a:05:16:b5:08:19:
87:ca:be:5a:a4:c0:c5:7b:f9:38:8a:84:a1:b9:13:61:73:9d:
9f:e0:3d:b6:e2:9d:12:bd:36:21:01:3e:77:f1:c8:83:bd:01:
89:42:b0:6c:a4:f1:44:3c:a8:08:d6:37:f9:f0:8a:83:b4:bb:
1b:ce:2b:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 12 07:14:47 2025 by rpki-client