Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/9tE0dhjecz_vEPgQYKZazxJZpXs.roa
File: 9tE0dhjecz_vEPgQYKZazxJZpXs.roa (raw, json)
Hash identifier: ybs354Sqw4G0DipKA3jVjo1yJgYq86p+0PfMWE0k7zg=
Subject key identifier: F6:D1:34:76:18:DE:73:3F:EF:10:F8:10:60:A6:5A:CF:12:59:A5:7B
Certificate issuer: /CN=1c963e3d22847d466c262c20878c2780d8840003
Certificate serial: 0195BA85DF57C062812B565110E117AAA8AC
Authority key identifier: 1C:96:3E:3D:22:84:7D:46:6C:26:2C:20:87:8C:27:80:D8:84:00:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HJY-PSKEfUZsJiwgh4wngNiEAAM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/9tE0dhjecz_vEPgQYKZazxJZpXs.roa
Signing time: Fri 21 Mar 2025 21:04:50 +0000
ROA not before: Fri 21 Mar 2025 21:04:50 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 212598
IP address blocks: 193.23.222.0/24 maxlen: 24
193.23.223.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:ba:85:df:57:c0:62:81:2b:56:51:10:e1:17:aa:a8:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c963e3d22847d466c262c20878c2780d8840003
Validity
Not Before: Mar 21 21:04:50 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=f6d1347618de733fef10f81060a65acf1259a57b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:dc:a5:e7:08:12:f2:00:c5:d1:91:e3:19:17:
51:2a:b8:f5:63:52:e4:f8:ce:a1:ac:b6:fe:2f:8c:
94:9a:1d:71:4c:06:d2:48:ec:be:a6:9e:67:56:3e:
0d:92:bd:52:71:e6:b7:3d:4b:84:33:70:58:37:22:
d2:52:47:02:bf:7e:af:62:ec:c2:f5:e8:86:88:10:
dc:8a:cd:d4:29:d4:f3:ab:46:ff:5f:85:b4:d7:09:
6a:e8:2c:6d:aa:68:c1:78:86:e2:14:10:42:cb:ea:
a0:60:a7:fa:a0:76:c8:c4:b7:32:84:fe:e2:fd:8a:
ee:be:af:c6:d8:03:f6:21:60:9a:e4:e7:7c:a0:1c:
24:bd:fc:ec:6d:ba:46:e0:cf:89:36:d4:28:f0:41:
ae:4f:31:73:c9:9e:cd:1d:2d:ea:b7:5c:a2:be:ac:
02:83:0a:90:78:3a:cf:47:68:10:59:d3:c6:8d:6e:
5a:64:18:56:6e:b3:ff:40:b0:aa:b2:cc:8c:5e:bb:
e8:a2:ec:0b:cf:a2:2d:0d:ac:c7:e8:8f:e2:cc:e1:
2a:d7:92:89:2a:04:97:e2:5c:b6:58:43:ca:4c:8b:
bb:dd:7f:03:dc:6b:66:7b:12:96:b0:b4:8e:e0:d1:
d6:01:01:19:5b:d3:97:18:78:52:c8:e5:cc:22:90:
86:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:D1:34:76:18:DE:73:3F:EF:10:F8:10:60:A6:5A:CF:12:59:A5:7B
X509v3 Authority Key Identifier:
keyid:1C:96:3E:3D:22:84:7D:46:6C:26:2C:20:87:8C:27:80:D8:84:00:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HJY-PSKEfUZsJiwgh4wngNiEAAM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/9tE0dhjecz_vEPgQYKZazxJZpXs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/HJY-PSKEfUZsJiwgh4wngNiEAAM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.23.222.0/23
Signature Algorithm: sha256WithRSAEncryption
1c:c0:3c:bf:68:ab:96:86:69:7c:8d:1e:27:0b:4b:3d:37:69:
04:ea:bc:6e:88:f5:6a:bf:61:96:39:e1:f7:78:e2:90:cc:06:
32:4d:56:d6:c2:e9:69:8b:5e:a6:10:da:b2:23:6e:22:ab:c7:
8b:fd:85:f4:8a:b5:9d:1b:62:ea:ae:06:11:c1:1b:e5:1a:46:
6a:a3:bc:57:59:a0:50:44:58:b6:79:d5:ee:14:75:cf:5a:61:
94:42:61:30:ac:e5:3b:f4:72:09:93:9f:a2:7e:64:01:d3:a0:
eb:02:51:ed:17:c6:3e:2f:a0:90:c1:a9:10:cf:f2:0a:8b:16:
85:cf:e1:e1:12:ad:ce:37:90:d6:90:df:6b:44:0d:6f:cb:da:
12:b8:d9:cc:de:73:dc:66:bc:71:38:da:f3:41:55:46:c0:28:
21:eb:dc:09:50:54:5f:96:50:bb:35:05:fe:77:05:6a:af:c6:
23:4e:58:59:d8:50:81:eb:10:19:12:0a:ba:be:a1:fb:e1:4e:
a2:a0:cb:14:96:ba:b7:a5:9d:37:2f:c6:5d:17:5b:9d:90:cf:
17:56:84:94:c8:f7:2c:01:c5:de:46:8f:e0:97:bf:73:49:e8:
b4:6d:63:07:c4:c7:d3:3b:91:6b:c6:a6:d9:5e:10:0d:68:fb:
6a:2e:da:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 13:51:12 2025 by rpki-client