Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/5c2e36-a9db-4522-a63e-455ddc7d9e38/1/N7wTPY9fMxEW9bxsO96kZUV-srk.roa
File: N7wTPY9fMxEW9bxsO96kZUV-srk.roa (raw, json)
Hash identifier: uJjDkbG36UQdfaC7DvT1mlqCZKSOCWSqMQESz+y4GRo=
Subject key identifier: 37:BC:13:3D:8F:5F:33:11:16:F5:BC:6C:3B:DE:A4:65:45:7E:B2:B9
Certificate issuer: /CN=3f56231e7ef53181b630260f5739a939980bce0f
Certificate serial: 019425FC680A57CCE057C128F180C723FF83
Authority key identifier: 3F:56:23:1E:7E:F5:31:81:B6:30:26:0F:57:39:A9:39:98:0B:CE:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/P1YjHn71MYG2MCYPVzmpOZgLzg8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/5c2e36-a9db-4522-a63e-455ddc7d9e38/1/N7wTPY9fMxEW9bxsO96kZUV-srk.roa
Signing time: Thu 02 Jan 2025 07:48:06 +0000
ROA not before: Thu 02 Jan 2025 07:48:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 48147
IP address blocks: 193.106.191.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:fc:68:0a:57:cc:e0:57:c1:28:f1:80:c7:23:ff:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3f56231e7ef53181b630260f5739a939980bce0f
Validity
Not Before: Jan 2 07:48:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=37bc133d8f5f331116f5bc6c3bdea465457eb2b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:7f:fc:a6:ab:d4:2f:bc:a6:8b:f7:91:32:b5:
ae:a4:5e:7a:f1:ef:18:71:b8:08:37:c2:bc:b3:e6:
f7:b3:30:de:48:bf:80:47:b5:3b:17:d4:68:1e:5e:
fc:35:c0:59:01:3a:b6:90:8b:91:64:b2:41:a4:1a:
1b:c3:28:4a:1c:38:26:60:40:35:16:3d:fc:81:3d:
00:5e:06:00:c1:c0:b9:e7:7e:ff:d6:be:a1:b8:10:
9e:9e:6e:f6:3b:3d:fc:3c:d8:a5:09:ec:05:eb:38:
3b:28:f2:95:94:e2:53:49:7e:53:b4:a3:b6:2e:e0:
c7:cc:f0:02:ad:b3:8e:8c:1a:8f:0c:26:39:31:cf:
26:24:2d:a5:08:05:a4:d1:70:28:6c:17:23:9e:7c:
ae:e3:10:0d:83:9d:e3:14:e1:09:e1:46:a7:8e:ac:
a2:4c:2c:b5:88:f8:6a:dd:cd:6a:8f:a3:d4:3b:72:
53:0a:26:f7:e9:26:4e:7e:77:c5:ea:28:e7:62:34:
71:a6:1d:6c:c1:27:ae:99:b8:d7:ee:f7:9e:2a:05:
2b:ef:5d:8a:e1:13:35:5a:86:57:56:03:26:0c:0c:
54:c1:79:18:c9:e8:cc:89:c2:10:b1:95:35:50:40:
ed:a9:38:b4:ed:e5:b4:93:30:c9:e2:b9:df:b2:40:
50:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:BC:13:3D:8F:5F:33:11:16:F5:BC:6C:3B:DE:A4:65:45:7E:B2:B9
X509v3 Authority Key Identifier:
keyid:3F:56:23:1E:7E:F5:31:81:B6:30:26:0F:57:39:A9:39:98:0B:CE:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P1YjHn71MYG2MCYPVzmpOZgLzg8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/5c2e36-a9db-4522-a63e-455ddc7d9e38/1/N7wTPY9fMxEW9bxsO96kZUV-srk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/5c2e36-a9db-4522-a63e-455ddc7d9e38/1/P1YjHn71MYG2MCYPVzmpOZgLzg8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.106.191.0/24
Signature Algorithm: sha256WithRSAEncryption
52:0f:ab:d4:04:2c:cf:b9:ef:07:d0:6c:26:75:18:2d:ae:ee:
33:ed:8d:01:3c:df:58:95:7a:dc:8d:2b:04:50:ff:0e:74:e6:
41:ea:77:83:d1:2d:0d:11:85:44:2c:b8:49:64:06:b5:47:22:
02:41:2f:09:43:40:fc:bc:b7:ab:b7:d2:c4:88:5f:3c:00:7f:
d6:98:20:46:bd:42:4b:4e:59:39:04:e2:c0:e2:43:b8:87:a5:
a8:e0:48:08:7d:ca:2a:ae:38:56:76:fa:59:b3:b5:ec:92:20:
5d:2f:a3:7a:60:3d:ab:5e:f6:9f:51:7c:0f:1a:e3:37:18:e8:
03:cb:17:34:b5:a5:6f:b0:bb:32:9c:49:ca:f0:fd:9a:ca:5a:
6a:82:2d:6d:90:0a:de:d4:0e:64:8a:d7:f2:6a:2b:3f:15:d8:
d7:9e:b6:dc:c7:77:9b:30:bb:69:d0:c7:c6:3a:bb:41:76:b3:
e2:ab:27:ab:0f:ea:3e:8d:72:2d:4c:b3:bc:7c:68:ee:34:88:
5c:76:75:68:11:54:28:9f:f1:d0:c6:b0:1d:bb:ad:cf:80:d1:
08:66:ff:2d:a3:6b:d7:a4:f0:6d:34:df:2d:39:b2:cb:b1:a1:
15:14:64:ea:e3:e5:2e:1f:70:88:11:d2:3e:50:62:7b:52:14:
56:64:12:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 23:03:08 2025 by rpki-client