Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/aUMTyls8bGRtHVJTJBj4SCXqidQ.roa
File: aUMTyls8bGRtHVJTJBj4SCXqidQ.roa (raw, json)
Hash identifier: eKSUg8eTMRAwZsFfV/BR4endukJmcmuqFVQQkshK4V8=
Subject key identifier: 69:43:13:CA:5B:3C:6C:64:6D:1D:52:53:24:18:F8:48:25:EA:89:D4
Certificate issuer: /CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Certificate serial: 0C9980D2
Authority key identifier: D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/aUMTyls8bGRtHVJTJBj4SCXqidQ.roa
Signing time: Mon 21 Mar 2022 17:56:40 +0000
ROA not before: Mon 21 Mar 2022 17:56:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 400545
IP address blocks: 195.180.157.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 211386578 (0xc9980d2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Validity
Not Before: Mar 21 17:56:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=694313ca5b3c6c646d1d52532418f84825ea89d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:aa:ba:5c:c9:a2:3b:49:94:fd:c9:e9:d0:7c:
d5:da:c7:eb:da:a6:6f:40:0c:8f:d2:59:17:29:17:
d7:fc:2f:33:19:db:d3:28:dc:20:ba:aa:6d:5a:0a:
f0:6f:c4:3a:a9:0b:f5:0e:bd:81:9b:a5:79:c0:de:
46:c5:a1:5a:60:b4:6e:27:8c:e8:23:a9:46:71:f1:
74:29:1d:3b:0d:59:1c:78:84:1e:48:8d:69:39:dc:
6f:1a:de:5f:c6:ec:93:ac:ac:b5:d2:c1:5a:1b:b6:
f1:44:2f:96:fa:c7:ca:f7:47:90:12:cb:26:06:f7:
4e:85:23:1a:9a:5a:3a:fe:81:28:dd:0b:8b:2b:d3:
0b:da:a6:22:27:07:a4:ec:0f:c7:db:29:14:35:e0:
87:2f:c5:54:18:d2:69:ac:d4:0c:97:73:0e:fa:9e:
54:87:d6:4d:45:20:47:30:5d:80:c9:b7:c4:e8:e9:
1d:77:0a:06:d2:69:66:88:53:09:a5:ce:76:e7:05:
fa:4a:b9:75:67:18:9f:c7:1d:67:ff:9f:f2:3f:65:
5f:c4:18:7a:3e:d8:23:0a:71:c4:69:6b:b7:a6:d1:
33:cb:ee:3f:4f:b6:fe:54:01:0a:93:d5:7f:a5:fc:
d7:d2:02:fe:15:1a:40:b2:3b:f4:81:ab:f7:e9:d2:
32:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:43:13:CA:5B:3C:6C:64:6D:1D:52:53:24:18:F8:48:25:EA:89:D4
X509v3 Authority Key Identifier:
keyid:D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/aUMTyls8bGRtHVJTJBj4SCXqidQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/10cBdWTHEby9V2gKDf0A8qXQmds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.180.157.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:39:b3:65:f6:52:9a:3a:e5:60:87:4c:29:f6:33:4f:6a:41:
56:5d:ed:a1:c9:2d:78:1e:22:55:bf:f5:4d:b8:27:6d:0e:04:
a4:78:8f:13:79:29:05:74:e9:49:2a:ff:71:0f:a0:3d:ef:29:
2a:13:8e:4e:b9:d3:d1:5b:17:12:cb:a1:74:34:e4:fb:f1:23:
5f:ec:52:8c:ce:35:a6:da:6f:33:f4:a9:ab:30:48:68:e9:64:
d6:cc:a0:b8:39:b9:10:0f:90:98:2f:59:f2:7c:3b:87:79:fc:
a8:f9:29:65:0b:21:41:3d:25:9d:2c:e8:18:62:1c:f2:9e:65:
96:5c:06:0d:fe:74:23:bc:ac:f5:ee:4c:61:cf:d1:24:00:4d:
d7:25:cc:24:ae:c7:3e:25:d0:0a:b3:d8:83:6a:aa:c9:d8:3e:
43:2b:b6:2a:72:cd:df:ef:0a:0b:ac:1b:64:3c:07:9d:e9:1a:
43:9b:74:82:6f:51:9e:9c:05:83:44:ea:e1:b4:14:6c:a0:8d:
63:11:f8:a5:d7:24:ba:b2:c6:58:92:24:aa:3c:22:b3:c4:71:
4d:78:20:15:f4:0c:43:b9:62:34:75:89:d1:5d:19:8b:36:ff:
2a:a8:f6:08:17:a2:ec:d7:4d:99:f4:b0:bb:fe:d7:96:62:50:
20:3e:41:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:10:05 2025 by rpki-client