Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/f54cb3-ebae-46b2-8b17-84b57693c7a8/1/kyN0WWkyKmvqixy5lWeDm8cyXsk.roa
File: kyN0WWkyKmvqixy5lWeDm8cyXsk.roa (raw, json)
Hash identifier: PvvB6yKuDqOU2looXNznQebEk8ZA6ldARR0PgTYG5Pg=
Subject key identifier: 93:23:74:59:69:32:2A:6B:EA:8B:1C:B9:95:67:83:9B:C7:32:5E:C9
Certificate issuer: /CN=741491a6b10433b99615756fde9313f2be1d3df0
Certificate serial: 019421B258ECCCE2F2A89A4715F348F1608A
Authority key identifier: 74:14:91:A6:B1:04:33:B9:96:15:75:6F:DE:93:13:F2:BE:1D:3D:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dBSRprEEM7mWFXVv3pMT8r4dPfA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/f54cb3-ebae-46b2-8b17-84b57693c7a8/1/kyN0WWkyKmvqixy5lWeDm8cyXsk.roa
Signing time: Wed 01 Jan 2025 11:48:43 +0000
ROA not before: Wed 01 Jan 2025 11:48:43 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 9211
IP address blocks: 193.28.52.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:b2:58:ec:cc:e2:f2:a8:9a:47:15:f3:48:f1:60:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=741491a6b10433b99615756fde9313f2be1d3df0
Validity
Not Before: Jan 1 11:48:43 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=9323745969322a6bea8b1cb99567839bc7325ec9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:55:50:98:11:dc:60:60:6a:db:ea:18:25:a2:
0f:4d:5b:0b:4d:09:8d:ba:4b:a7:48:64:64:f1:5b:
17:80:d6:85:a5:b6:ec:5e:dd:5d:a2:52:44:88:0e:
b7:8e:32:e0:aa:19:e2:8d:c8:5a:19:8f:4e:05:55:
c7:81:00:e9:08:04:56:c6:cf:68:db:a8:be:05:57:
e9:86:fd:ea:e6:18:61:28:75:ea:0c:ec:69:5a:a7:
53:78:44:e5:dc:bb:64:a3:91:b2:97:0a:50:11:f8:
58:0d:91:e7:a2:6d:2f:9c:69:3e:05:0e:34:5d:af:
c1:01:65:1c:e6:69:97:8f:72:e1:6f:46:0d:82:6c:
7e:b2:b6:36:28:0e:a8:a4:8e:05:8f:59:de:bc:5d:
9d:9f:d2:ad:cd:fb:86:b8:d8:9d:2b:c9:36:4c:19:
59:28:d4:40:ce:27:01:29:80:4d:98:17:98:de:2b:
dc:8e:4f:ca:7f:12:bf:c9:a9:1f:d2:d6:6d:f4:9d:
e4:9e:76:7e:c4:90:77:db:72:1d:81:1e:b3:54:74:
7d:b0:24:35:05:97:ad:e0:d5:81:5f:98:38:da:4a:
fb:1f:56:13:35:f4:72:a2:52:ef:a3:23:64:2a:d8:
3f:51:f8:8b:e2:3e:10:da:d9:10:b6:c6:bc:60:d0:
c9:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:23:74:59:69:32:2A:6B:EA:8B:1C:B9:95:67:83:9B:C7:32:5E:C9
X509v3 Authority Key Identifier:
keyid:74:14:91:A6:B1:04:33:B9:96:15:75:6F:DE:93:13:F2:BE:1D:3D:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dBSRprEEM7mWFXVv3pMT8r4dPfA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/f54cb3-ebae-46b2-8b17-84b57693c7a8/1/kyN0WWkyKmvqixy5lWeDm8cyXsk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/f54cb3-ebae-46b2-8b17-84b57693c7a8/1/dBSRprEEM7mWFXVv3pMT8r4dPfA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.28.52.0/23
Signature Algorithm: sha256WithRSAEncryption
59:2c:69:97:36:5d:e5:3c:f2:cc:60:d9:f0:35:c8:ec:54:e3:
2a:b7:6b:4f:44:d7:05:63:c9:0b:09:45:8e:8e:54:d1:e6:63:
89:6c:a5:9f:96:8b:63:72:52:a1:f1:7b:03:33:5a:dd:0a:e9:
3d:61:65:98:f2:67:2f:f4:6c:51:b9:ba:6e:62:c8:61:71:a4:
90:45:e6:08:86:df:48:06:fa:2a:03:a6:93:6a:cb:84:51:91:
2c:5c:68:72:33:c9:ad:5c:74:21:d4:1a:60:61:0e:a4:98:bb:
6c:59:86:51:b0:66:8c:59:56:1a:3d:71:7f:6d:bf:79:5f:76:
ef:a5:81:e2:35:b9:75:3c:e8:66:5e:fd:c5:2e:ce:ea:78:15:
31:92:e0:3e:5a:b9:28:28:96:4a:e6:f0:be:f0:e1:47:7b:ac:
94:1e:9a:56:a7:e0:50:44:4d:22:94:d3:38:c4:78:53:33:cc:
35:98:2b:10:ce:7f:3f:c8:2d:29:31:22:de:b3:0b:de:63:1a:
af:1f:00:1b:6b:19:b5:bc:c0:fa:f3:49:a1:b4:ff:fe:d8:a0:
58:97:0d:19:b7:88:fb:3b:e1:6c:83:71:5a:c3:bf:71:c9:17:
58:7d:60:2d:60:1e:29:09:52:03:5f:b5:8e:d0:9b:0e:1e:e1:
c9:2d:76:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 02:46:59 2025 by rpki-client