Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/7faf5e-7435-49fe-acd7-20fbc906494b/1/HKdVcnfVobsdIXBp0QDt_Z0qTCg.roa
File: HKdVcnfVobsdIXBp0QDt_Z0qTCg.roa (raw, json)
Hash identifier: HCRvOv3w8ga9OyNraAL7FomJBvkDq6oZ4SO2+hazIX0=
Subject key identifier: 1C:A7:55:72:77:D5:A1:BB:1D:21:70:69:D1:00:ED:FD:9D:2A:4C:28
Certificate issuer: /CN=07a6a589ee848a8052238191b98035e775122725
Certificate serial: 019427B5B4CF5B76A273F0499EB728D0C7C6
Authority key identifier: 07:A6:A5:89:EE:84:8A:80:52:23:81:91:B9:80:35:E7:75:12:27:25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B6alie6EioBSI4GRuYA153USJyU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/7faf5e-7435-49fe-acd7-20fbc906494b/1/HKdVcnfVobsdIXBp0QDt_Z0qTCg.roa
Signing time: Thu 02 Jan 2025 15:50:07 +0000
ROA not before: Thu 02 Jan 2025 15:50:07 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 14618
IP address blocks: 193.207.0.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:b5:b4:cf:5b:76:a2:73:f0:49:9e:b7:28:d0:c7:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07a6a589ee848a8052238191b98035e775122725
Validity
Not Before: Jan 2 15:50:07 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=1ca7557277d5a1bb1d217069d100edfd9d2a4c28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:21:15:79:2f:29:e6:4c:c7:90:d2:b5:53:d3:
90:bf:c5:bc:26:54:af:23:50:37:3b:46:ea:78:30:
b8:39:b7:f8:e6:e6:2b:e7:50:47:99:21:75:a1:cc:
61:31:78:fe:66:23:41:8f:5e:7e:45:a8:f1:fc:39:
32:4b:23:6f:4d:5d:f3:ce:4b:38:29:0b:8c:cf:9a:
84:96:3b:ec:df:96:06:3a:9d:de:01:8b:18:79:d4:
f0:aa:44:b9:e3:44:29:d5:c7:51:41:2d:f4:fb:27:
af:cc:d3:cf:68:b0:6d:a5:b5:f8:2b:19:59:53:a4:
e4:ec:f2:38:70:c4:70:56:26:77:4a:2b:38:f4:4f:
7d:86:09:0b:69:13:f4:f6:b2:e5:27:c2:24:72:c0:
dc:90:19:9c:69:7d:60:f4:e1:ee:ba:09:a1:a1:f0:
6d:33:fb:62:2f:01:ee:83:41:98:20:56:36:da:b8:
c6:49:ec:f1:e5:73:d4:fe:04:e0:0b:f1:a2:48:13:
bf:3b:f4:a0:9a:cf:82:68:4f:ab:d5:d8:3b:93:38:
dd:36:a8:ad:a4:4f:bb:e7:0b:93:4b:2d:c8:4d:3e:
a5:72:81:56:0f:74:15:51:17:d2:18:b8:5e:d2:45:
01:5e:9a:9b:34:0a:d5:a0:a1:96:94:2a:7c:47:e0:
d2:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:A7:55:72:77:D5:A1:BB:1D:21:70:69:D1:00:ED:FD:9D:2A:4C:28
X509v3 Authority Key Identifier:
keyid:07:A6:A5:89:EE:84:8A:80:52:23:81:91:B9:80:35:E7:75:12:27:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B6alie6EioBSI4GRuYA153USJyU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/7faf5e-7435-49fe-acd7-20fbc906494b/1/HKdVcnfVobsdIXBp0QDt_Z0qTCg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/7faf5e-7435-49fe-acd7-20fbc906494b/1/B6alie6EioBSI4GRuYA153USJyU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.207.0.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:c0:d6:b4:56:4e:bf:71:0e:a4:1c:1b:29:ac:ea:71:1f:4d:
25:ad:59:4f:61:be:8c:c4:fe:b8:aa:4e:f9:eb:34:2e:27:54:
8d:73:68:91:6e:a5:93:ec:87:90:80:9b:db:44:01:ea:c1:dc:
dc:dd:60:8e:39:0b:2a:5f:44:39:cb:08:dc:4f:86:10:76:23:
44:30:d6:66:0c:5a:01:1d:9b:27:67:e7:3b:b4:9a:27:bf:b0:
b6:be:83:d6:6d:df:63:27:2b:57:97:7c:cc:58:6b:cf:73:ec:
cd:9e:f0:85:84:4a:87:19:08:a1:8d:77:b5:10:37:7c:0e:f1:
2d:02:15:21:d6:64:49:ea:62:ab:44:71:f8:c7:df:03:2b:d5:
35:e8:d2:af:13:6f:d9:00:4e:0d:5b:be:85:23:95:ee:bf:77:
a5:ad:ca:a1:d4:4e:a2:f3:78:e1:f1:7a:9f:e3:1d:e3:33:8c:
52:a8:ff:7d:d5:88:b6:41:e8:d9:44:a5:0f:7f:e3:6f:b8:6f:
cf:0a:a2:d9:e7:05:10:62:30:fb:ba:d2:0b:20:b8:97:a3:65:
fc:72:56:27:d7:b7:1b:c0:b9:3d:1b:7b:82:b0:14:a3:64:46:
c5:1e:99:ca:65:d7:a5:2f:6d:74:6a:f2:57:24:66:37:09:78:
2b:79:7e:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 23:54:20 2025 by rpki-client