Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/d9540d-2ecf-4e0d-ab24-6a737deabb0f/1/sKWNtaqadPeAa8HWZSkxz3YK1M8.roa
File: sKWNtaqadPeAa8HWZSkxz3YK1M8.roa (raw, json)
Hash identifier: YfHFiCcFeOHFIrGX8xfZvy8T2h7J1+MoTdKfb4/XfpI=
Subject key identifier: B0:A5:8D:B5:AA:9A:74:F7:80:6B:C1:D6:65:29:31:CF:76:0A:D4:CF
Certificate issuer: /CN=de05ab283d2b544673b7d7229f32b962cfc68a1e
Certificate serial: 01882086B52D2E4924A65664474ACEAA561B
Authority key identifier: DE:05:AB:28:3D:2B:54:46:73:B7:D7:22:9F:32:B9:62:CF:C6:8A:1E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3gWrKD0rVEZzt9cinzK5Ys_Gih4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/d9540d-2ecf-4e0d-ab24-6a737deabb0f/1/sKWNtaqadPeAa8HWZSkxz3YK1M8.roa
Signing time: Mon 15 May 2023 17:47:59 +0000
ROA not before: Mon 15 May 2023 17:47:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 7393
IP address blocks: 193.3.187.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:20:86:b5:2d:2e:49:24:a6:56:64:47:4a:ce:aa:56:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de05ab283d2b544673b7d7229f32b962cfc68a1e
Validity
Not Before: May 15 17:47:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b0a58db5aa9a74f7806bc1d6652931cf760ad4cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:d0:da:08:c0:27:92:66:da:18:37:8f:02:b3:
94:7f:9d:5e:12:cf:09:81:d4:08:16:53:14:70:5a:
12:78:dd:a6:63:46:f1:c1:ec:5b:db:85:ed:ae:66:
8a:2e:e1:7f:ca:3d:a1:bf:a4:07:37:80:ca:24:e5:
ad:f0:65:a9:76:68:af:b6:22:89:e3:0e:1b:c3:ba:
6b:fb:ed:c8:db:ee:5e:b5:8d:f2:24:b5:8d:ec:00:
d1:41:83:2d:a0:1c:71:ff:fa:94:3e:c4:30:cf:5c:
be:8a:da:5e:cc:3c:18:41:bb:df:43:fa:15:0c:e1:
97:61:36:b7:a0:19:77:81:6a:27:f8:25:08:2a:b7:
cb:cc:78:10:db:a7:d4:c7:17:a4:c5:91:50:bd:b2:
bb:0e:89:1f:de:72:27:cc:9b:ce:e7:10:26:bd:97:
54:79:57:2b:ff:92:ae:44:1b:b4:0a:80:7d:4e:c5:
8f:9f:87:0b:c1:3a:b0:dd:eb:16:69:43:70:9a:4a:
af:f5:d1:29:bb:a2:78:33:b1:02:5d:3d:89:90:b9:
65:b0:39:50:20:47:ee:8a:53:0c:2d:a0:b7:16:96:
de:96:87:f3:7a:8f:f9:8f:61:8f:bd:a1:c2:f8:5e:
34:c5:a2:40:4b:0e:01:1a:3b:45:48:c2:4b:3b:a1:
9a:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:A5:8D:B5:AA:9A:74:F7:80:6B:C1:D6:65:29:31:CF:76:0A:D4:CF
X509v3 Authority Key Identifier:
keyid:DE:05:AB:28:3D:2B:54:46:73:B7:D7:22:9F:32:B9:62:CF:C6:8A:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3gWrKD0rVEZzt9cinzK5Ys_Gih4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/d9540d-2ecf-4e0d-ab24-6a737deabb0f/1/sKWNtaqadPeAa8HWZSkxz3YK1M8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/d9540d-2ecf-4e0d-ab24-6a737deabb0f/1/3gWrKD0rVEZzt9cinzK5Ys_Gih4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.3.187.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:fc:75:ae:08:e3:dc:03:8c:5e:31:4e:48:79:d1:f1:e3:73:
91:66:1a:b1:ed:cd:b7:1a:fb:9f:21:eb:5c:3b:c0:a8:ea:8a:
3d:2d:08:62:69:a0:70:34:08:29:01:da:e4:1b:e8:a0:ec:2a:
1e:6d:28:93:77:a1:a6:86:e5:6f:c8:b7:db:e6:8c:c8:98:4c:
e2:32:eb:95:c0:74:a2:80:a1:cb:43:1c:c5:c0:4c:5e:74:9b:
74:d8:4b:8d:80:74:ef:9e:73:3b:7c:17:10:33:17:ee:b9:a3:
46:c0:01:16:5c:3a:52:8e:95:18:19:2c:a9:6a:bd:fb:33:7d:
35:df:dc:ec:bb:78:e4:e7:ad:2e:f1:58:70:a0:66:70:bb:7d:
fc:48:e7:24:36:9e:db:74:1f:ea:0c:79:73:c9:5b:09:06:9a:
ae:50:90:5a:d0:98:23:57:a6:66:c3:9a:30:12:33:ce:d1:3e:
b5:77:3f:1a:db:f4:f8:dd:a6:8d:0d:a5:d3:58:c5:a6:6a:90:
98:2f:43:8a:ec:2f:3a:41:22:bc:fb:eb:00:f4:54:42:12:ae:
67:d2:d9:aa:d1:7a:d6:59:8e:a2:ce:68:d4:6f:38:58:1e:3f:
88:7a:63:65:c4:fd:99:db:5c:d9:68:26:6c:99:c8:5a:4d:55:
3f:53:54:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 12:27:47 2025 by rpki-client