Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/3a9331-45a9-4b18-876e-caf60305bafe/1/U30UWRHCV35ommuJq3IHSo6Dffk.roa
File: U30UWRHCV35ommuJq3IHSo6Dffk.roa (raw, json)
Hash identifier: joa0e8DKaFCt4neoalLgUFlnXQHyG8al2fdOlxCatHE=
Subject key identifier: 53:7D:14:59:11:C2:57:7E:68:9A:6B:89:AB:72:07:4A:8E:83:7D:F9
Certificate issuer: /CN=ce296c05a87baf290d0ca921d250f5410148a7d4
Certificate serial: 018964753D09EF71BE1C7B6443E8E7AC1174
Authority key identifier: CE:29:6C:05:A8:7B:AF:29:0D:0C:A9:21:D2:50:F5:41:01:48:A7:D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zilsBah7rykNDKkh0lD1QQFIp9Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/3a9331-45a9-4b18-876e-caf60305bafe/1/U30UWRHCV35ommuJq3IHSo6Dffk.roa
Signing time: Mon 17 Jul 2023 15:25:52 +0000
ROA not before: Mon 17 Jul 2023 15:25:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48031
IP address blocks: 93.157.109.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:64:75:3d:09:ef:71:be:1c:7b:64:43:e8:e7:ac:11:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ce296c05a87baf290d0ca921d250f5410148a7d4
Validity
Not Before: Jul 17 15:25:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=537d145911c2577e689a6b89ab72074a8e837df9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:70:cd:4b:6b:bf:bd:b0:e0:2d:38:cc:b9:08:
eb:9b:e3:bb:f7:fd:35:d6:63:18:6e:32:ef:30:5b:
3c:73:39:f4:c1:3a:fc:4c:74:c3:cc:51:62:7a:5f:
09:fc:23:bd:62:77:7f:05:06:de:8f:8b:a6:2b:29:
9b:57:77:ac:93:42:b7:9a:84:f2:c9:7f:02:45:6e:
a3:89:0b:47:88:37:05:02:5c:2a:07:8a:ac:a8:25:
bf:7a:c6:02:9e:d3:d9:ee:f7:ab:c5:6e:34:a8:af:
05:6c:ab:fe:41:ae:0e:fd:ce:16:6a:3e:9e:de:ad:
15:8a:f4:06:96:22:c6:b3:c8:da:8e:85:3c:41:1f:
9a:2b:7f:ed:e6:1d:83:61:84:7e:10:aa:08:07:71:
7e:30:16:2a:9a:38:4d:f5:b5:ef:a0:65:e7:14:d6:
74:c9:c8:c1:bc:62:8e:aa:4a:d4:85:08:a5:0b:a0:
35:91:d4:8c:3b:53:b5:bd:b1:3f:d8:9f:53:74:1c:
16:2d:c0:91:26:21:07:09:e2:d3:63:ec:09:f6:33:
9e:4e:2e:56:90:09:da:d9:51:c4:c1:28:60:0b:d3:
39:48:c8:53:81:8e:2c:76:a0:88:a8:df:94:b2:db:
99:3e:c5:05:69:74:19:90:e6:a2:df:c8:3d:93:a6:
9b:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:7D:14:59:11:C2:57:7E:68:9A:6B:89:AB:72:07:4A:8E:83:7D:F9
X509v3 Authority Key Identifier:
keyid:CE:29:6C:05:A8:7B:AF:29:0D:0C:A9:21:D2:50:F5:41:01:48:A7:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zilsBah7rykNDKkh0lD1QQFIp9Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/3a9331-45a9-4b18-876e-caf60305bafe/1/U30UWRHCV35ommuJq3IHSo6Dffk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/3a9331-45a9-4b18-876e-caf60305bafe/1/zilsBah7rykNDKkh0lD1QQFIp9Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.157.109.0/24
Signature Algorithm: sha256WithRSAEncryption
68:c1:41:77:ae:fc:ed:06:02:f8:65:96:5d:d1:fd:a1:17:42:
51:be:2e:b4:50:ba:70:ce:bb:fc:9f:92:c5:7a:44:8e:ce:26:
f0:3d:7c:3b:04:38:6e:cd:c6:4f:02:e4:ea:41:79:a6:dc:dd:
40:18:2e:8b:81:2c:94:a5:d6:d8:f3:e1:9e:e3:c7:4d:77:11:
cc:6c:f8:30:0a:0b:89:08:dc:a7:8f:71:56:4a:6d:6e:5a:48:
75:8b:18:38:61:e0:80:81:ca:68:07:b1:7a:8b:f6:86:30:07:
dc:b8:22:84:6e:e6:e3:26:ee:d7:d9:14:ea:f4:ff:3b:3c:9f:
80:ac:d1:8d:14:de:17:a7:a1:a5:a7:6f:fa:a4:7a:dc:24:a6:
86:b5:51:17:97:10:12:46:21:3a:a0:57:30:fe:f3:71:c6:7a:
86:c1:36:e2:94:20:6f:f6:ea:ae:6d:48:a7:e2:be:b6:67:94:
1a:40:52:0d:63:e0:62:60:d7:33:16:c7:ff:e4:d9:a7:4b:6a:
7a:3f:11:e5:42:12:b0:3d:86:01:8f:15:2c:f0:c3:13:7a:15:
6b:c7:8b:1b:44:30:c5:9d:b4:42:34:83:35:b9:66:9f:e7:c1:
12:ec:f4:6a:02:d5:fb:91:8d:35:5f:c3:73:ee:b3:e2:ee:06:
bd:66:93:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 12 12:56:10 2025 by rpki-client