Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/7b1c55-ddd0-4281-8378-4dd04346abc3/1/6BTZ5AaOEQekUYjUxJjubDiWWfg.roa
File: 6BTZ5AaOEQekUYjUxJjubDiWWfg.roa (raw, json)
Hash identifier: Eh6waq+vwtUrAUXpLnHirNMkZ/QKST4EehD+sMDaTTU=
Subject key identifier: E8:14:D9:E4:06:8E:11:07:A4:51:88:D4:C4:98:EE:6C:38:96:59:F8
Certificate issuer: /CN=3aba1172472ea80265d12982967de0a8b0bc5901
Certificate serial: 019424B276EE0F22468BD8EB89E48282037C
Authority key identifier: 3A:BA:11:72:47:2E:A8:02:65:D1:29:82:96:7D:E0:A8:B0:BC:59:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OroRckcuqAJl0SmCln3gqLC8WQE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/7b1c55-ddd0-4281-8378-4dd04346abc3/1/6BTZ5AaOEQekUYjUxJjubDiWWfg.roa
Signing time: Thu 02 Jan 2025 01:47:43 +0000
ROA not before: Thu 02 Jan 2025 01:47:43 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 212830
IP address blocks: 193.57.146.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:b2:76:ee:0f:22:46:8b:d8:eb:89:e4:82:82:03:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3aba1172472ea80265d12982967de0a8b0bc5901
Validity
Not Before: Jan 2 01:47:43 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=e814d9e4068e1107a45188d4c498ee6c389659f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:6e:0b:47:f4:84:f2:d0:db:46:40:d7:e5:55:
ce:94:9b:b7:18:64:44:ad:4c:5f:e1:69:62:86:69:
e4:1d:a8:6e:2d:84:5f:6a:c7:a9:df:f1:66:89:82:
65:31:84:c8:73:1b:77:40:fb:d2:80:b7:f5:a8:39:
75:10:94:d6:62:1e:8b:99:1b:3a:c3:52:42:0e:af:
e5:5e:22:1c:66:62:30:dc:d8:32:c3:41:9f:82:42:
9c:ee:f7:54:7b:9a:10:93:e7:52:e0:a9:c4:99:dc:
8d:77:16:2d:25:db:ef:17:b3:b6:27:18:b0:23:29:
0e:28:6d:ca:b5:c1:b4:41:88:b7:ff:07:38:f4:53:
b1:34:41:ef:0b:ea:49:07:13:27:5e:05:8f:79:6e:
bf:de:38:48:07:5e:fc:31:42:b8:ab:9c:39:9b:e4:
df:30:19:9e:d1:e2:c4:90:90:3d:20:b4:0f:f3:62:
22:97:b6:b5:f6:7e:72:47:c0:d5:9d:c0:b1:0e:d2:
8e:76:4a:4e:c0:61:17:ae:85:84:ad:a0:ab:71:52:
46:7b:f0:e6:19:81:7b:0a:27:ed:72:35:ef:81:5f:
9e:ca:50:1b:65:69:de:6b:a2:71:7d:6b:b6:5e:01:
30:0b:07:15:47:bc:d9:b8:7b:53:53:b3:cc:05:fb:
b9:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:14:D9:E4:06:8E:11:07:A4:51:88:D4:C4:98:EE:6C:38:96:59:F8
X509v3 Authority Key Identifier:
keyid:3A:BA:11:72:47:2E:A8:02:65:D1:29:82:96:7D:E0:A8:B0:BC:59:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OroRckcuqAJl0SmCln3gqLC8WQE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/7b1c55-ddd0-4281-8378-4dd04346abc3/1/6BTZ5AaOEQekUYjUxJjubDiWWfg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/7b1c55-ddd0-4281-8378-4dd04346abc3/1/OroRckcuqAJl0SmCln3gqLC8WQE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.57.146.0/23
Signature Algorithm: sha256WithRSAEncryption
2e:ec:6b:37:82:4c:cd:65:e3:84:6d:2e:b0:87:48:5a:15:5e:
c2:b8:a8:43:57:11:f7:ad:78:bf:84:2b:7c:7d:a5:bf:59:7d:
2b:ff:04:0c:0b:be:de:d3:d8:94:cb:29:cf:e2:85:66:cf:d7:
84:15:aa:a9:55:e9:3f:b0:b5:5b:5e:9a:c7:1e:eb:24:25:c8:
02:42:89:d7:75:57:63:35:00:44:07:ed:c0:06:90:de:c0:fe:
dc:b6:2c:74:2f:32:1c:bd:57:a1:be:18:d8:f3:52:8e:66:d5:
ad:5d:b0:5d:2b:1f:fc:86:d2:cf:37:a6:82:27:9e:6b:f4:82:
a5:97:c8:33:5d:ba:43:3d:ed:70:e2:30:99:27:1d:86:cf:50:
28:09:e5:ba:61:4a:27:cc:e3:75:79:99:7c:c1:f8:93:4e:86:
96:fe:77:6b:cf:b4:79:02:84:f3:4d:e4:86:30:f3:cd:98:85:
27:3b:f6:cc:d3:48:bd:e9:0c:92:83:83:ca:8e:00:56:dc:93:
fd:bf:0e:53:cf:66:0b:66:d0:d9:0a:c6:72:32:f2:32:5f:0f:
11:3e:07:bd:ca:52:c1:d0:47:1e:fe:ac:22:b2:c1:a9:73:d1:
fe:1b:4a:a9:7f:87:73:e3:48:f3:6d:f5:84:28:ca:ae:1c:75:
5c:55:74:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 00:39:36 2025 by rpki-client