Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/jDm75kXITs_LAT3KLHpl5eYL_Pk.roa
File: jDm75kXITs_LAT3KLHpl5eYL_Pk.roa (raw, json)
Hash identifier: qGWW0p3yQvY/mnmdjIg4yI8LBFY1AQ/1YPeOKYrp2xU=
Subject key identifier: 8C:39:BB:E6:45:C8:4E:CF:CB:01:3D:CA:2C:7A:65:E5:E6:0B:FC:F9
Certificate issuer: /CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Certificate serial: 01857039A99ED9D4E6A29290277F54AF5D8E
Authority key identifier: D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/jDm75kXITs_LAT3KLHpl5eYL_Pk.roa
Signing time: Mon 02 Jan 2023 02:05:05 +0000
ROA not before: Mon 02 Jan 2023 02:05:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211459
IP address blocks: 194.233.151.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:39:a9:9e:d9:d4:e6:a2:92:90:27:7f:54:af:5d:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Validity
Not Before: Jan 2 02:05:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8c39bbe645c84ecfcb013dca2c7a65e5e60bfcf9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:58:7d:9a:99:87:90:f2:b6:4f:d1:a2:2c:c4:
60:32:3c:75:d8:74:31:55:7d:47:66:6f:1b:b3:73:
33:49:fc:cb:11:e9:21:bc:e7:1b:d1:4d:ca:74:ee:
7a:72:a8:e1:4d:f3:c3:65:21:ca:36:dd:c6:72:50:
6c:6f:df:81:c3:8a:0e:58:ea:a1:04:34:ff:a4:39:
70:97:73:29:89:10:8f:35:47:dd:9c:32:d7:32:3b:
0b:47:5c:13:31:45:fc:41:c6:e2:2f:fb:bf:3c:39:
be:eb:35:98:58:14:5f:34:db:a7:33:71:b7:5a:af:
2c:db:f1:36:3f:9e:9d:33:04:df:c7:ea:8a:b7:b1:
df:40:4e:6f:20:1e:a9:57:6a:7b:4e:cb:49:fe:ec:
9d:62:c1:50:e2:2e:d3:ec:08:0f:e8:9a:4e:13:3a:
ba:6d:42:a2:28:67:18:ea:69:da:b7:21:37:f4:5c:
cd:ac:15:ee:74:60:ac:3e:ef:11:2b:77:c9:f7:75:
9e:4d:e0:fa:b5:59:3f:0a:63:03:e1:bf:b2:b9:8a:
23:f0:25:b7:2f:b4:64:8e:4f:86:fd:15:92:97:bb:
59:d0:14:a4:3b:2d:f3:9b:29:b7:6a:df:63:0e:71:
dc:4c:94:ee:41:9e:a4:72:fa:75:ab:2d:32:dd:01:
8d:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:39:BB:E6:45:C8:4E:CF:CB:01:3D:CA:2C:7A:65:E5:E6:0B:FC:F9
X509v3 Authority Key Identifier:
keyid:D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/jDm75kXITs_LAT3KLHpl5eYL_Pk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/10cBdWTHEby9V2gKDf0A8qXQmds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.233.151.0/24
Signature Algorithm: sha256WithRSAEncryption
01:01:7e:4b:06:be:4a:9f:eb:66:6a:7a:0c:8b:5e:f6:c4:3e:
01:d8:1e:46:c7:43:91:a5:58:19:c2:77:77:96:4c:3d:92:35:
4c:c1:3c:64:ae:60:ec:5d:bc:a5:7d:5b:0f:e8:db:87:14:39:
d5:bf:6e:3f:2f:e4:81:23:23:4f:d0:0d:80:ae:88:72:7b:09:
94:80:55:12:d1:f6:5b:f2:bc:18:1c:a5:a8:c6:4b:e8:38:b3:
f8:f9:32:bc:dd:52:d5:67:71:ae:7f:e2:28:c5:98:89:6b:24:
ec:14:ce:58:d8:3d:73:56:e1:9a:21:66:11:7c:ca:a4:1d:5b:
24:60:44:ee:92:1b:2a:c3:2d:dd:7b:e2:e9:7b:1b:7b:f4:df:
d9:9e:10:f1:5c:f2:84:b0:f5:bc:f4:92:8d:e1:8c:8d:ae:d3:
9a:17:c2:40:b9:3f:78:bc:07:3b:30:ac:30:dc:33:c4:a6:0e:
96:37:18:14:f0:0a:04:13:15:b4:0c:44:68:13:33:3c:07:57:
b9:49:e1:ac:09:fd:c0:ca:ad:3b:e8:3f:1f:e4:f1:1b:d1:f0:
48:74:d7:7d:03:cb:8a:1a:92:eb:62:8e:00:d3:4f:e0:fb:3d:
c1:21:14:57:82:a7:59:3e:82:24:4b:53:92:65:6a:62:3d:6d:
31:d6:16:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:01:01 2025 by rpki-client