Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/32c807-30ae-4b22-905f-dc33eaa10d28/1/Q0gUuxATATDf6JEQ9fzt1u3IZsc.roa
File: Q0gUuxATATDf6JEQ9fzt1u3IZsc.roa (raw, json)
Hash identifier: 3y/S39XmNPx0DoVA3l0EHWQrU4S+Z88s+G6ph2XRAwc=
Subject key identifier: 43:48:14:BB:10:13:01:30:DF:E8:91:10:F5:FC:ED:D6:ED:C8:66:C7
Certificate issuer: /CN=61d9f3ac50864d18ff268933c74e2a89aec6109d
Certificate serial: 01942369DC98638FF0CAA776848D02D4A9CF
Authority key identifier: 61:D9:F3:AC:50:86:4D:18:FF:26:89:33:C7:4E:2A:89:AE:C6:10:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YdnzrFCGTRj_Jokzx04qia7GEJ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/32c807-30ae-4b22-905f-dc33eaa10d28/1/Q0gUuxATATDf6JEQ9fzt1u3IZsc.roa
Signing time: Wed 01 Jan 2025 19:48:47 +0000
ROA not before: Wed 01 Jan 2025 19:48:47 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 214287
IP address blocks: 193.228.137.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:69:dc:98:63:8f:f0:ca:a7:76:84:8d:02:d4:a9:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61d9f3ac50864d18ff268933c74e2a89aec6109d
Validity
Not Before: Jan 1 19:48:47 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=434814bb10130130dfe89110f5fcedd6edc866c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:a2:2b:97:dc:da:72:a9:26:85:16:f0:5b:51:
c4:c6:14:f6:e8:a5:45:45:fb:95:f7:b7:84:44:b2:
25:3a:46:a5:41:f2:9a:f5:c4:17:22:28:22:70:d4:
dd:78:c5:34:47:aa:7e:13:1a:b6:dd:99:3a:f3:77:
01:f6:03:c4:fc:95:e8:91:42:f0:0a:ef:f0:12:04:
01:41:6b:a3:7f:d7:07:e0:dd:bc:1f:f8:91:b6:90:
57:48:97:ab:44:93:33:b2:4c:5d:1d:d2:1c:4b:bc:
45:71:3e:10:83:50:9a:12:23:3d:07:90:42:5d:4c:
4b:0e:ab:1c:56:93:51:5b:7a:92:36:6e:a5:4e:04:
f8:5f:fb:f5:1c:84:76:fa:a2:d4:4c:75:56:e4:5c:
aa:4c:a9:24:5b:8f:78:f4:59:96:9a:4f:7d:f0:e8:
9e:77:33:7a:dc:19:f4:07:25:45:cb:9d:f2:e7:ea:
bc:1b:a6:5c:95:ab:33:0c:c2:ee:56:a0:8f:75:2d:
20:8d:e2:d5:4f:ec:a6:24:3e:69:aa:b1:2f:08:d1:
57:86:86:04:77:01:f9:a3:e8:4b:c3:e8:04:0d:f2:
c0:07:cd:23:e9:bf:76:d9:eb:02:81:3b:3b:ba:4a:
ee:d7:b1:cc:a3:77:b8:e7:85:52:dd:75:52:ed:09:
a4:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:48:14:BB:10:13:01:30:DF:E8:91:10:F5:FC:ED:D6:ED:C8:66:C7
X509v3 Authority Key Identifier:
keyid:61:D9:F3:AC:50:86:4D:18:FF:26:89:33:C7:4E:2A:89:AE:C6:10:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YdnzrFCGTRj_Jokzx04qia7GEJ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/32c807-30ae-4b22-905f-dc33eaa10d28/1/Q0gUuxATATDf6JEQ9fzt1u3IZsc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/32c807-30ae-4b22-905f-dc33eaa10d28/1/YdnzrFCGTRj_Jokzx04qia7GEJ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.228.137.0/24
Signature Algorithm: sha256WithRSAEncryption
74:cd:57:43:80:b9:70:c9:f7:17:2a:03:0a:b1:34:cb:7e:40:
3b:38:c6:23:5a:7b:f7:b0:81:26:9e:38:1b:88:83:6e:21:9a:
51:8d:15:17:45:aa:87:75:9d:77:b0:f4:b0:9a:8c:57:b5:14:
ac:e9:bb:45:ca:6a:aa:dc:4e:02:5c:dc:23:32:d0:cb:fd:40:
00:4b:6d:8c:6e:df:6a:49:4e:0b:b0:28:83:60:5e:6a:a1:38:
c9:f2:e6:79:9b:a5:d7:b6:18:f9:94:f8:8b:c1:b6:c5:b8:fa:
ec:77:b3:73:4f:9f:1c:a9:75:a3:84:84:cd:ae:71:f6:49:c6:
99:b6:d1:ab:ec:88:93:05:c0:95:c6:b4:e1:1a:98:ae:d5:00:
a2:61:db:dd:02:60:e3:41:58:e1:32:b9:c5:fa:da:78:0c:da:
d6:8b:68:79:83:a4:05:5f:19:1e:61:97:56:b5:9f:9c:90:bf:
05:3c:53:7e:a0:00:d1:22:b3:dc:32:f9:9a:ba:d7:e3:10:59:
a0:a5:82:1c:c4:2f:d3:d9:0c:a0:d0:34:1e:7b:0e:56:01:7b:
6c:95:17:48:3d:09:1f:ef:ee:cc:87:d1:c8:2e:15:3e:ed:a0:
e1:e9:8f:1e:4a:14:66:95:25:38:45:74:89:7a:3c:eb:63:82:
ce:5d:61:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 02:44:51 2025 by rpki-client