Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/32ef0a-c5fd-4c1e-ae6e-93283df2c97f/1/qBNKeiXyahUPLm51ZAFQ9h2irjU.roa
File: qBNKeiXyahUPLm51ZAFQ9h2irjU.roa (raw, json)
Hash identifier: ++bxVnpALCo49LDSl6ZkYma++UgKuhc+WunZ2NI4nL4=
Subject key identifier: A8:13:4A:7A:25:F2:6A:15:0F:2E:6E:75:64:01:50:F6:1D:A2:AE:35
Certificate issuer: /CN=65e1a29a4579bf089ce845a4bffaf8b645530d96
Certificate serial: 018572CCB3877011C97BDC365BD86A4E7E0F
Authority key identifier: 65:E1:A2:9A:45:79:BF:08:9C:E8:45:A4:BF:FA:F8:B6:45:53:0D:96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZeGimkV5vwic6EWkv_r4tkVTDZY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/32ef0a-c5fd-4c1e-ae6e-93283df2c97f/1/qBNKeiXyahUPLm51ZAFQ9h2irjU.roa
Signing time: Mon 02 Jan 2023 14:04:56 +0000
ROA not before: Mon 02 Jan 2023 14:04:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62240
IP address blocks: 193.163.16.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:cc:b3:87:70:11:c9:7b:dc:36:5b:d8:6a:4e:7e:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65e1a29a4579bf089ce845a4bffaf8b645530d96
Validity
Not Before: Jan 2 14:04:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a8134a7a25f26a150f2e6e75640150f61da2ae35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:fb:9a:5f:1a:36:fa:f4:1a:b1:11:c6:83:98:
a3:e9:6b:a0:f2:97:a5:aa:9f:08:e4:73:df:91:2f:
ab:92:df:2a:4e:fa:89:8b:fc:5e:66:09:c7:fb:3e:
63:20:bf:29:4b:9d:f4:17:f0:8e:4a:7e:31:1e:5a:
f0:0f:88:7b:99:4b:07:8d:9a:d6:31:aa:6f:8a:e6:
e9:51:92:4d:dd:0a:f3:68:6c:5d:e0:1f:8b:a7:f2:
3b:36:f8:ef:f8:19:28:ed:0a:4e:3c:9e:df:ac:3a:
cb:ee:fd:be:e1:79:54:ad:6e:d6:26:42:0e:b3:1f:
cb:c9:29:9e:d5:19:e4:f1:e0:8c:0b:fc:ce:27:ee:
a8:7e:5b:a6:6f:d1:69:eb:e5:f3:3f:07:7b:56:7e:
38:1e:ba:a8:8e:c7:66:08:dc:24:86:10:59:d1:df:
28:9b:94:e6:90:e3:3e:2d:15:db:fc:63:3d:00:c2:
90:61:f5:db:09:e7:1e:f9:87:27:49:aa:91:89:09:
4c:eb:ac:db:17:d5:ca:76:d4:30:e1:94:96:67:80:
24:0d:8d:c1:03:5a:ae:b9:28:36:d7:50:fa:2c:8a:
de:4a:af:de:41:3e:02:01:ac:33:1c:4c:43:2e:7b:
ca:de:88:f9:3b:2d:81:f6:26:cf:c3:9a:87:a6:6e:
7a:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:13:4A:7A:25:F2:6A:15:0F:2E:6E:75:64:01:50:F6:1D:A2:AE:35
X509v3 Authority Key Identifier:
keyid:65:E1:A2:9A:45:79:BF:08:9C:E8:45:A4:BF:FA:F8:B6:45:53:0D:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZeGimkV5vwic6EWkv_r4tkVTDZY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/32ef0a-c5fd-4c1e-ae6e-93283df2c97f/1/qBNKeiXyahUPLm51ZAFQ9h2irjU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/32ef0a-c5fd-4c1e-ae6e-93283df2c97f/1/ZeGimkV5vwic6EWkv_r4tkVTDZY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.163.16.0/24
Signature Algorithm: sha256WithRSAEncryption
48:96:ca:92:f8:ec:56:da:05:72:2e:ff:10:dc:a9:e0:5c:2f:
f3:bc:c7:a6:d2:7a:99:3c:24:43:9c:32:45:6f:40:88:ab:bd:
e7:5c:e0:9e:8b:e0:bc:cc:85:9d:91:90:f9:10:1a:fc:78:36:
33:b9:fe:da:dc:99:0b:e5:64:94:3a:db:9e:0e:84:2c:b0:4e:
c3:ed:16:e9:71:b9:32:bd:9c:e9:d8:bb:76:c2:3b:d0:2f:e7:
ba:76:cb:18:75:d6:32:63:7c:93:ea:e4:b9:53:fa:f0:63:a8:
ab:d4:a2:13:e2:4f:d5:51:09:c2:a4:04:44:d4:b7:7f:5f:18:
ba:61:ed:d0:1b:d5:ef:da:a1:30:49:f1:34:fc:94:83:ba:c2:
91:f3:8b:e2:46:f7:06:51:52:34:2f:c3:8e:93:4c:10:d3:af:
fb:01:bd:12:a0:43:e3:8c:03:58:6d:b3:0a:3d:03:cb:f7:d8:
eb:a4:84:03:29:d7:88:95:d6:ef:d8:ba:e8:cb:de:6b:0b:0e:
a8:cd:53:5b:f5:06:6a:4e:6d:d7:7f:a9:7e:8f:da:c5:b5:17:
03:d4:d3:b3:3d:a4:e6:57:85:ca:4c:40:69:69:90:19:b3:74:
81:e7:01:9c:9f:32:d2:d5:ff:a8:07:ff:21:89:70:e2:32:ec:
22:1b:71:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:56:26 2025 by rpki-client