Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/d217d2-571e-4467-a225-6f9179ea997e/1/SP4gpIFpIsoOCDud9jsawfLCElw.roa
File: SP4gpIFpIsoOCDud9jsawfLCElw.roa (raw, json)
Hash identifier: aqQ8yOLvDwdN1Nv65aT1J6qJ5pCb2n4x6l2kYOeoFqo=
Subject key identifier: 48:FE:20:A4:81:69:22:CA:0E:08:3B:9D:F6:3B:1A:C1:F2:C2:12:5C
Certificate issuer: /CN=0fca0c8ad12ddc205b15a89e45303b2d63f04588
Certificate serial: 018B08A52AC956CA8706456E898DB8AD2EB1
Authority key identifier: 0F:CA:0C:8A:D1:2D:DC:20:5B:15:A8:9E:45:30:3B:2D:63:F0:45:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D8oMitEt3CBbFaieRTA7LWPwRYg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/d217d2-571e-4467-a225-6f9179ea997e/1/SP4gpIFpIsoOCDud9jsawfLCElw.roa
Signing time: Sat 07 Oct 2023 05:38:43 +0000
ROA not before: Sat 07 Oct 2023 05:38:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15386
IP address blocks: 193.26.3.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:08:a5:2a:c9:56:ca:87:06:45:6e:89:8d:b8:ad:2e:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0fca0c8ad12ddc205b15a89e45303b2d63f04588
Validity
Not Before: Oct 7 05:38:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=48fe20a4816922ca0e083b9df63b1ac1f2c2125c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:04:94:4e:81:f6:94:db:ae:66:e7:09:5e:e1:
86:31:6f:cc:a2:9c:26:9a:4f:23:5d:77:5e:f1:14:
65:56:a8:3e:47:f7:fd:f5:8f:a5:21:8c:e5:e9:e1:
b1:16:52:af:2f:8d:be:0d:2c:64:99:6a:9a:27:e1:
4c:45:75:77:aa:4f:65:95:d1:b3:17:cf:d8:63:57:
0c:a2:20:30:3a:37:f4:56:97:f3:82:3f:be:b1:dc:
73:6a:71:b7:7b:18:d4:a9:96:bb:04:d8:07:3d:76:
0e:fb:2b:8c:80:f3:27:a7:bb:9e:ff:5f:48:c1:2d:
1d:fa:4c:f2:29:24:28:35:44:92:3c:8d:92:48:a1:
e6:d3:b1:5d:e4:9c:04:e4:06:5c:80:d3:a9:36:2d:
07:c1:56:5c:a4:97:2a:9c:1b:49:b7:fb:42:e5:86:
79:aa:d0:c6:30:91:fc:b8:48:c3:c5:1b:c6:eb:86:
56:41:e8:08:e3:42:2b:79:fc:e7:37:79:19:5d:1b:
65:5c:88:3e:e7:28:12:e2:5f:49:7f:50:9a:87:3e:
42:90:7f:8e:95:44:89:c1:73:4b:7e:7f:82:af:28:
07:dc:d4:f2:b1:bc:9a:86:2b:f2:2b:e1:96:61:59:
24:60:78:07:10:2f:31:3b:d0:f0:e2:22:d7:5e:fa:
c4:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:FE:20:A4:81:69:22:CA:0E:08:3B:9D:F6:3B:1A:C1:F2:C2:12:5C
X509v3 Authority Key Identifier:
keyid:0F:CA:0C:8A:D1:2D:DC:20:5B:15:A8:9E:45:30:3B:2D:63:F0:45:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D8oMitEt3CBbFaieRTA7LWPwRYg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/d217d2-571e-4467-a225-6f9179ea997e/1/SP4gpIFpIsoOCDud9jsawfLCElw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/d217d2-571e-4467-a225-6f9179ea997e/1/D8oMitEt3CBbFaieRTA7LWPwRYg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.26.3.0/24
Signature Algorithm: sha256WithRSAEncryption
49:b4:3e:51:6a:9a:a9:28:cd:27:7c:55:32:b5:a6:98:a8:36:
84:b3:f2:01:ba:91:e4:42:11:b0:86:8c:c4:27:78:18:8f:56:
66:19:18:92:96:87:2b:c9:4b:ed:a9:42:c1:f3:c1:bc:ab:94:
f6:b9:5b:ad:fe:82:d5:78:f0:66:18:b1:88:14:fc:e7:fe:ae:
0f:68:82:f4:3b:41:6b:2d:1d:70:ca:03:bc:2a:ca:20:22:2b:
58:4f:95:a2:ec:3d:94:4e:eb:15:8a:22:eb:4c:54:f5:f9:06:
3f:88:c7:ec:ef:1f:6f:c3:80:4d:96:7a:d7:29:76:ad:9b:f2:
fc:96:75:50:87:60:ce:3a:39:61:01:df:de:2d:09:ab:6f:1a:
af:dd:eb:36:a0:d1:c0:e2:ae:00:42:7d:4b:71:fe:21:49:38:
02:77:20:e7:ab:d1:3f:6e:52:63:18:23:74:ed:c7:db:69:90:
76:d0:7a:24:d0:20:bf:ad:ac:51:d8:1f:30:16:5b:db:f0:b2:
87:ed:22:bb:b8:ca:ac:3f:cc:b8:f8:04:2d:b1:4d:74:45:86:
76:1a:4d:4b:cf:11:83:75:ce:b4:66:4d:a0:3d:cc:37:20:91:
e3:e1:19:6e:cd:51:59:48:1e:06:c2:5c:f5:ee:1d:61:10:e2:
2f:41:b9:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 18:37:19 2025 by rpki-client