Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/f49614-6c51-49a2-9ffa-f75f48bd94f4/1/tn341Lzi5MPGO9EUcmk0M7cXZxM.roa
File: tn341Lzi5MPGO9EUcmk0M7cXZxM.roa (raw, json)
Hash identifier: FFlSPwmOxmVm+VW9zVZtaZMl/pgjePvamNa1bTrjlRg=
Subject key identifier: B6:7D:F8:D4:BC:E2:E4:C3:C6:3B:D1:14:72:69:34:33:B7:17:67:13
Certificate issuer: /CN=0e03f3c3cff6d8cd4b15240f6172836c7b53eb24
Certificate serial: 019426D9319BDC8BDAB3FC493D26A8D9A23D
Authority key identifier: 0E:03:F3:C3:CF:F6:D8:CD:4B:15:24:0F:61:72:83:6C:7B:53:EB:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DgPzw8_22M1LFSQPYXKDbHtT6yQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/f49614-6c51-49a2-9ffa-f75f48bd94f4/1/tn341Lzi5MPGO9EUcmk0M7cXZxM.roa
Signing time: Thu 02 Jan 2025 11:49:15 +0000
ROA not before: Thu 02 Jan 2025 11:49:15 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 15404
IP address blocks: 193.17.201.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:d9:31:9b:dc:8b:da:b3:fc:49:3d:26:a8:d9:a2:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e03f3c3cff6d8cd4b15240f6172836c7b53eb24
Validity
Not Before: Jan 2 11:49:15 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b67df8d4bce2e4c3c63bd11472693433b7176713
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:e3:80:eb:ee:52:18:8a:c2:e2:fc:c8:37:a0:
71:7c:d2:aa:b9:0a:3c:69:05:77:b2:df:39:63:22:
5e:87:e0:9f:4a:08:96:08:d9:18:e7:97:f7:dd:1a:
d4:2d:8a:f6:2e:da:f6:21:ef:54:fd:73:96:e3:5f:
ef:55:a2:f4:3d:dc:4c:c1:40:03:e6:d3:cb:80:dd:
ff:84:94:48:76:12:20:31:91:db:42:10:5e:16:1a:
05:29:28:b8:62:70:bc:c0:8a:af:3f:a8:7a:68:65:
00:a5:f7:5e:41:c9:97:55:53:3f:c3:66:58:03:27:
46:a3:3c:cb:3c:9b:5f:ed:89:2b:95:e8:91:56:b6:
09:92:01:db:f6:e0:6d:51:05:d2:95:1f:a9:62:59:
1d:2c:55:cf:c8:37:48:4a:d7:cb:c6:31:c9:58:57:
23:34:8e:a0:6d:d2:dc:60:8d:a3:29:5b:86:a6:b0:
5c:c7:54:a4:cd:c0:8e:de:c8:d1:61:f7:b7:fb:82:
b0:ce:4f:e8:36:b5:ab:aa:25:11:7e:ac:bf:e6:59:
3f:85:67:1c:e8:45:7b:31:4d:19:10:da:95:14:a1:
fb:dd:01:19:6b:34:6c:76:f6:a3:3d:14:34:bd:fd:
f1:55:ea:7c:44:1d:16:d9:47:00:94:f9:63:5d:7c:
32:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:7D:F8:D4:BC:E2:E4:C3:C6:3B:D1:14:72:69:34:33:B7:17:67:13
X509v3 Authority Key Identifier:
keyid:0E:03:F3:C3:CF:F6:D8:CD:4B:15:24:0F:61:72:83:6C:7B:53:EB:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DgPzw8_22M1LFSQPYXKDbHtT6yQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f49614-6c51-49a2-9ffa-f75f48bd94f4/1/tn341Lzi5MPGO9EUcmk0M7cXZxM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f49614-6c51-49a2-9ffa-f75f48bd94f4/1/DgPzw8_22M1LFSQPYXKDbHtT6yQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.17.201.0/24
Signature Algorithm: sha256WithRSAEncryption
98:4f:83:0d:58:0e:32:67:69:3c:5f:6e:fd:0a:42:01:54:cd:
af:26:ec:7b:ff:48:d6:1e:55:7e:3b:da:e0:b6:7f:e4:c9:ce:
ae:9d:44:c0:6c:a4:e0:d4:27:02:1a:28:45:b7:00:91:c6:c5:
1a:bb:2b:98:02:a4:6b:b4:86:62:53:06:28:8b:90:3e:43:74:
48:26:93:fa:1a:9f:11:d1:e5:08:43:4e:42:3e:06:cb:4f:b1:
a1:28:87:07:7c:30:c6:53:89:f1:a3:9f:5f:3c:05:74:dc:15:
dc:58:d4:0b:3e:9b:8f:55:ea:20:26:3a:d7:13:c6:4b:b2:4c:
cd:b9:5f:6a:3f:8f:b4:ca:f4:ad:69:d7:23:4d:2b:82:f6:b6:
a5:8e:26:95:29:a7:e3:4a:25:5b:92:6e:3d:c0:f7:e7:69:51:
da:91:e9:cd:ad:a8:74:a5:7f:11:c2:99:27:35:21:3a:47:8c:
19:e8:87:53:1c:78:ff:03:49:f2:2f:20:85:c9:aa:fd:e6:71:
bd:02:f2:af:b3:e8:71:63:95:cf:0a:03:9a:0c:6d:12:5d:bc:
cb:01:c1:3b:3e:c6:fe:bf:8c:5d:10:c9:dd:a3:99:bf:4b:80:
32:1f:2a:6f:0d:e8:d9:37:0e:67:fe:f1:73:f8:8d:45:8c:f4:
97:a0:07:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 17:55:20 2025 by rpki-client