Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/0e607f-e21f-4cfa-a336-9314860c2c7f/1/N4oFEWC7lYUZpMb-9fQpPm6wpeI.roa
File: N4oFEWC7lYUZpMb-9fQpPm6wpeI.roa (raw, json)
Hash identifier: OYxT3neOnNOfxTjsBdXgFG9AbuhQsq0MpxTZf25oq8k=
Subject key identifier: 37:8A:05:11:60:BB:95:85:19:A4:C6:FE:F5:F4:29:3E:6E:B0:A5:E2
Certificate issuer: /CN=afab1e48def14b29d21d34234c448ea808e618bf
Certificate serial: 018A6E91A8A56DE9D6AB6CDD71BBE5D6CDCB
Authority key identifier: AF:AB:1E:48:DE:F1:4B:29:D2:1D:34:23:4C:44:8E:A8:08:E6:18:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r6seSN7xSynSHTQjTESOqAjmGL8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/0e607f-e21f-4cfa-a336-9314860c2c7f/1/N4oFEWC7lYUZpMb-9fQpPm6wpeI.roa
Signing time: Thu 07 Sep 2023 07:35:54 +0000
ROA not before: Thu 07 Sep 2023 07:35:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 6730
IP address blocks: 193.246.31.0/24 maxlen: 24
193.246.28.0/24 maxlen: 24
193.246.29.0/24 maxlen: 24
193.246.30.0/24 maxlen: 24
193.246.24.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:6e:91:a8:a5:6d:e9:d6:ab:6c:dd:71:bb:e5:d6:cd:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=afab1e48def14b29d21d34234c448ea808e618bf
Validity
Not Before: Sep 7 07:35:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=378a051160bb958519a4c6fef5f4293e6eb0a5e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:f9:7f:88:e3:f4:35:ae:a1:d0:c6:46:c3:d1:
1a:ac:f8:e0:04:e3:e4:e3:18:99:aa:c0:be:9b:39:
dc:74:07:44:2c:bf:59:c5:f7:9f:be:13:0d:7c:9e:
6d:79:f5:04:2a:b0:c3:b0:a7:c8:ea:ed:72:9b:57:
9b:53:f2:0a:5d:3d:1b:9a:85:8c:67:8c:0e:b0:02:
c9:9e:81:89:48:01:ee:29:0b:24:0d:14:91:97:c6:
15:04:76:48:b7:93:a7:04:02:9e:de:e2:9b:11:23:
ec:62:32:de:c5:04:11:72:9f:aa:35:0b:9f:19:7e:
cc:19:7f:38:53:d9:6c:39:c4:e1:85:b5:10:35:0d:
fc:c0:13:66:6c:27:d3:b1:cd:95:3f:bc:bf:13:fb:
02:63:38:65:13:f3:74:dc:54:92:76:63:ca:df:e2:
17:24:d7:68:1f:0d:1c:2b:2b:41:c5:c8:6a:b5:ed:
ce:34:0c:6f:56:16:17:95:35:ab:f4:bb:5a:48:a3:
c3:e2:d5:b5:a8:64:e3:33:fb:64:d4:0c:2e:33:ae:
47:70:78:fd:94:68:b7:7b:a1:04:54:53:0b:dd:d1:
e4:27:2d:ab:ef:60:df:a9:c1:36:f9:bf:cf:38:03:
46:53:4d:91:38:b6:ee:ab:be:6e:d5:bb:62:27:01:
73:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:8A:05:11:60:BB:95:85:19:A4:C6:FE:F5:F4:29:3E:6E:B0:A5:E2
X509v3 Authority Key Identifier:
keyid:AF:AB:1E:48:DE:F1:4B:29:D2:1D:34:23:4C:44:8E:A8:08:E6:18:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r6seSN7xSynSHTQjTESOqAjmGL8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/0e607f-e21f-4cfa-a336-9314860c2c7f/1/N4oFEWC7lYUZpMb-9fQpPm6wpeI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/0e607f-e21f-4cfa-a336-9314860c2c7f/1/r6seSN7xSynSHTQjTESOqAjmGL8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.246.24.0/24
193.246.28.0/22
Signature Algorithm: sha256WithRSAEncryption
87:8a:5b:8a:c9:6f:0c:0c:87:bc:0a:6d:6e:a3:1a:50:44:c3:
26:c5:56:75:b9:7f:68:30:fe:d7:4a:25:89:a0:c4:17:e3:ea:
cf:a5:0f:14:3e:1c:df:44:f6:49:b3:63:51:3d:14:e5:4f:55:
56:6e:16:75:fb:4b:e2:62:ff:80:e5:b4:1e:1a:08:da:a2:5d:
fc:cf:6f:f9:1f:1f:16:b5:67:cb:1b:15:91:0f:5b:8b:da:80:
e9:6e:c0:6b:f5:0a:78:11:99:88:42:e7:a5:24:c3:a8:44:ef:
3b:7d:de:8d:3e:c9:0d:a7:cc:eb:c9:a8:8e:52:18:60:88:93:
34:d5:a2:57:34:17:5b:c6:a1:03:4b:ef:8a:90:a5:5b:ec:25:
e6:68:f5:b5:8b:0b:98:f4:2f:0d:fd:fe:d9:5d:26:54:76:32:
d6:14:9f:21:e7:b5:cd:77:09:23:af:81:60:e8:c8:79:41:f4:
a0:83:36:73:03:7c:77:48:10:36:b5:f2:2f:d3:c2:f1:cc:09:
a9:03:b4:f3:44:ac:e5:5c:c5:46:f5:0e:68:d1:9a:f4:cc:66:
ab:4b:35:4d:9a:dd:2e:20:08:94:ca:7c:26:b6:66:9e:d3:0a:
e0:b2:91:2f:c5:df:16:55:6d:e5:31:5c:8f:cd:e2:f1:ab:42:
d3:0a:14:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 23:29:41 2025 by rpki-client