Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/0e607f-e21f-4cfa-a336-9314860c2c7f/1/OQwjtqNZQlV8lEyA0Jf29isl-ZU.roa
File: OQwjtqNZQlV8lEyA0Jf29isl-ZU.roa (raw, json)
Hash identifier: o8lS2azsiOR89UExPW2sP3uCFgWkjjxbdBk+k+Tavrs=
Subject key identifier: 39:0C:23:B6:A3:59:42:55:7C:94:4C:80:D0:97:F6:F6:2B:25:F9:95
Certificate issuer: /CN=afab1e48def14b29d21d34234c448ea808e618bf
Certificate serial: 018571956681E5D030C88893B75A0613B1B1
Authority key identifier: AF:AB:1E:48:DE:F1:4B:29:D2:1D:34:23:4C:44:8E:A8:08:E6:18:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r6seSN7xSynSHTQjTESOqAjmGL8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/0e607f-e21f-4cfa-a336-9314860c2c7f/1/OQwjtqNZQlV8lEyA0Jf29isl-ZU.roa
Signing time: Mon 02 Jan 2023 08:24:54 +0000
ROA not before: Mon 02 Jan 2023 08:24:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 6830
IP address blocks: 193.246.24.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:95:66:81:e5:d0:30:c8:88:93:b7:5a:06:13:b1:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=afab1e48def14b29d21d34234c448ea808e618bf
Validity
Not Before: Jan 2 08:24:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=390c23b6a35942557c944c80d097f6f62b25f995
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:f0:e4:9f:12:3b:6f:2c:4b:b4:4d:23:20:92:
87:75:67:93:16:58:a2:1c:b0:f2:b0:47:a7:3b:b6:
80:a8:a8:36:26:f0:1a:b2:54:ea:a5:09:8c:04:e5:
9f:fb:9d:60:42:23:b2:2f:41:88:75:d5:ea:2a:93:
73:1d:91:17:ab:84:0c:a3:60:30:6b:7f:2f:9c:7b:
0a:1d:41:3a:35:92:2b:31:c6:16:a0:ec:9e:ca:f0:
98:f6:63:64:0e:b4:96:27:a6:c1:9f:a9:e3:70:1a:
f2:62:93:c9:e4:6d:0d:e5:be:85:b8:df:d3:5d:09:
93:10:13:d6:9e:3e:c3:c2:c5:2b:5b:56:7a:42:93:
60:28:28:41:5a:b6:ed:bf:d3:17:7c:5e:89:93:d6:
fa:47:2d:c6:46:01:eb:05:36:9f:2e:98:29:99:c5:
c0:76:2d:f4:87:6f:bd:8a:f6:9d:b1:f8:36:7e:f9:
ca:f4:c4:5d:86:84:ab:86:2e:53:7b:6e:33:62:53:
d8:5d:99:ac:ab:dd:9f:61:64:cf:36:5d:29:28:21:
08:94:76:1b:27:dc:47:7f:cc:c8:b9:f1:be:d5:5d:
eb:99:1c:b5:4e:2c:3b:ed:7b:cd:ea:58:de:43:cc:
b2:80:b0:16:8a:16:1e:d4:6a:9e:a8:56:4e:2a:36:
97:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:0C:23:B6:A3:59:42:55:7C:94:4C:80:D0:97:F6:F6:2B:25:F9:95
X509v3 Authority Key Identifier:
keyid:AF:AB:1E:48:DE:F1:4B:29:D2:1D:34:23:4C:44:8E:A8:08:E6:18:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r6seSN7xSynSHTQjTESOqAjmGL8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/0e607f-e21f-4cfa-a336-9314860c2c7f/1/OQwjtqNZQlV8lEyA0Jf29isl-ZU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/0e607f-e21f-4cfa-a336-9314860c2c7f/1/r6seSN7xSynSHTQjTESOqAjmGL8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.246.24.0/21
Signature Algorithm: sha256WithRSAEncryption
b6:6d:df:6f:ee:99:d4:36:39:54:91:e5:e6:8e:3b:f8:90:63:
a5:c3:67:59:96:b5:f9:e2:dd:2f:c3:e6:e6:0a:b3:79:e6:83:
7a:92:bf:f7:70:08:c7:b6:2c:e9:90:41:51:55:6f:3e:a0:3c:
c5:f9:66:7a:fc:60:b9:11:8a:3c:2b:6e:c3:15:e2:44:ed:89:
ac:34:5b:0d:a3:1e:67:60:9e:e9:36:f3:e0:bc:4d:1e:2c:55:
d5:b9:56:b5:4e:37:bc:60:9c:cf:45:d7:2f:08:f7:8a:a6:29:
d5:51:fa:b5:40:df:e9:f8:c6:af:2e:78:6b:38:96:9a:70:a1:
fe:06:bf:ae:be:81:19:de:2e:58:17:d5:dc:ce:8c:b8:01:3c:
6a:6e:1b:bb:3b:37:9a:56:e2:22:02:b7:09:90:19:eb:e8:22:
b5:33:99:1f:d9:f9:ca:62:0d:57:5d:b8:8a:22:c0:53:a7:c8:
1a:55:17:9d:27:fc:64:8e:57:cd:ec:b3:06:54:4d:8c:15:17:
c5:9d:18:69:a4:2a:47:19:d8:72:0d:ef:6a:93:38:67:24:ec:
2b:10:24:f3:cd:4d:68:3d:46:f6:eb:91:62:3d:3d:f6:05:80:
a1:0a:9b:c5:fb:05:29:29:48:c7:31:b2:47:94:d3:98:f9:2a:
e5:7b:8e:b0
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVxlWaB5dAwyIiTt1oGE7GxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFmYWIxZTQ4ZGVmMTRiMjlkMjFkMzQyMzRjNDQ4ZWE4MDhl
NjE4YmYwHhcNMjMwMTAyMDgyNDU0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzOTBjMjNiNmEzNTk0MjU1N2M5NDRjODBkMDk3ZjZmNjJiMjVmOTk1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApPDknxI7byxLtE0jIJKHdWeTFlii
HLDysEenO7aAqKg2JvAaslTqpQmMBOWf+51gQiOyL0GIddXqKpNzHZEXq4QMo2Aw
a38vnHsKHUE6NZIrMcYWoOyeyvCY9mNkDrSWJ6bBn6njcBryYpPJ5G0N5b6FuN/T
XQmTEBPWnj7DwsUrW1Z6QpNgKChBWrbtv9MXfF6Jk9b6Ry3GRgHrBTafLpgpmcXA
di30h2+9ivadsfg2fvnK9MRdhoSrhi5Te24zYlPYXZmsq92fYWTPNl0pKCEIlHYb
J9xHf8zIufG+1V3rmRy1Tiw77XvN6ljeQ8yygLAWihYe1GqeqFZOKjaX6wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDkMI7ajWUJVfJRMgNCX9vYrJfmVMB8GA1UdIwQY
MBaAFK+rHkje8Usp0h00I0xEjqgI5hi/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcjZzZVNON3hTeW5TSFRRalRFU09xQWptR0w4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMy8wZTYwN2YtZTIxZi00Y2ZhLWEzMzYt
OTMxNDg2MGMyYzdmLzEvT1F3anRxTlpRbFY4bEV5QTBKZjI5aXNsLVpVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMy8wZTYwN2YtZTIxZi00Y2ZhLWEzMzYtOTMxNDg2MGMyYzdm
LzEvcjZzZVNON3hTeW5TSFRRalRFU09xQWptR0w4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDwfYYMA0G
CSqGSIb3DQEBCwUAA4IBAQC2bd9v7pnUNjlUkeXmjjv4kGOlw2dZlrX54t0vw+bm
CrN55oN6kr/3cAjHtizpkEFRVW8+oDzF+WZ6/GC5EYo8K27DFeJE7YmsNFsNox5n
YJ7pNvPgvE0eLFXVuVa1Tje8YJzPRdcvCPeKpinVUfq1QN/p+MavLnhrOJaacKH+
Br+uvoEZ3i5YF9Xczoy4ATxqbhu7OzeaVuIiArcJkBnr6CK1M5kf2fnKYg1XXbiK
IsBTp8gaVRedJ/xkjlfN7LMGVE2MFRfFnRhppCpHGdhyDe9qkzhnJOwrECTzzU1o
PUb265FiPT32BYChCpvF+wUpKUjHMbJHlNOY+Srle46w
-----END CERTIFICATE-----
Generated at Tue Apr 8 00:17:50 2025 by rpki-client