Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/1c3b20-c966-4840-8be2-2e10a1e7198e/1/0-SITXurrvKcxDpO6dO_XrAIfP8.roa
File: 0-SITXurrvKcxDpO6dO_XrAIfP8.roa (raw, json)
Hash identifier: +zqoCflNYn4wEmoLJUGKEliu1gA8EIuMdK6taXERgxk=
Subject key identifier: D3:E4:88:4D:7B:AB:AE:F2:9C:C4:3A:4E:E9:D3:BF:5E:B0:08:7C:FF
Certificate issuer: /CN=91242d9769b759349c8018c908736e54dffc0cb5
Certificate serial: 0188208677F0E01D50DC00F699303918BE7C
Authority key identifier: 91:24:2D:97:69:B7:59:34:9C:80:18:C9:08:73:6E:54:DF:FC:0C:B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kSQtl2m3WTScgBjJCHNuVN_8DLU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/1c3b20-c966-4840-8be2-2e10a1e7198e/1/0-SITXurrvKcxDpO6dO_XrAIfP8.roa
Signing time: Mon 15 May 2023 17:47:43 +0000
ROA not before: Mon 15 May 2023 17:47:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 7393
IP address blocks: 185.249.55.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:20:86:77:f0:e0:1d:50:dc:00:f6:99:30:39:18:be:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91242d9769b759349c8018c908736e54dffc0cb5
Validity
Not Before: May 15 17:47:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d3e4884d7babaef29cc43a4ee9d3bf5eb0087cff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:ab:55:e1:77:3a:52:bd:6e:d0:bb:3d:91:17:
02:7a:c6:14:bd:30:97:39:c8:82:f6:39:cb:d0:e6:
06:9e:1d:fc:12:f4:56:b6:5d:2e:a7:55:c8:58:7b:
de:62:24:32:51:da:94:6d:23:28:ba:67:01:9c:c0:
ab:28:9b:b1:5f:50:5b:f5:0d:a0:c3:f1:03:9d:fa:
cc:02:3e:9d:ae:bd:75:ef:40:3c:10:21:4d:43:48:
1d:08:e3:89:8c:45:ab:5d:81:55:63:53:6e:22:87:
51:c8:a0:af:a7:45:53:e5:c0:7d:64:18:43:06:1d:
ff:6f:63:08:30:18:25:19:f7:62:9d:4e:3b:40:38:
36:d0:fb:00:a6:7f:c6:97:f5:51:0c:4a:07:e2:92:
23:47:06:81:e7:4c:c8:94:ad:64:53:2a:cd:86:7d:
41:ad:23:2d:25:a4:45:71:0f:3e:52:df:2f:6e:6f:
51:7a:9b:0d:1d:c1:d0:c6:fe:4f:b7:23:a6:4a:24:
10:af:ff:6b:e9:8f:e9:75:df:84:5c:1e:cc:27:04:
59:57:29:35:0d:fd:94:30:f6:1e:35:28:f3:17:08:
04:af:22:64:5c:8a:0a:64:75:ad:df:dd:3f:30:54:
5b:ae:11:10:ad:cf:70:16:93:34:3c:51:37:7c:c0:
e4:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:E4:88:4D:7B:AB:AE:F2:9C:C4:3A:4E:E9:D3:BF:5E:B0:08:7C:FF
X509v3 Authority Key Identifier:
keyid:91:24:2D:97:69:B7:59:34:9C:80:18:C9:08:73:6E:54:DF:FC:0C:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kSQtl2m3WTScgBjJCHNuVN_8DLU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/1c3b20-c966-4840-8be2-2e10a1e7198e/1/0-SITXurrvKcxDpO6dO_XrAIfP8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/1c3b20-c966-4840-8be2-2e10a1e7198e/1/kSQtl2m3WTScgBjJCHNuVN_8DLU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.249.55.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:ae:18:fe:bf:05:73:3c:0a:68:e5:98:5c:c8:57:ec:78:0d:
7b:37:14:27:a3:c6:3a:ed:13:75:20:e6:f3:35:3b:53:4b:6f:
82:8b:99:1c:2f:76:bb:80:61:e1:5c:a0:60:4d:dc:aa:72:13:
95:4d:af:42:ba:81:47:a9:70:9a:c6:64:00:5c:62:9f:b4:13:
0b:89:62:28:e2:f2:aa:4c:3b:ec:b3:86:9c:94:ea:d5:58:7b:
fe:08:ea:3e:ae:ab:fb:7c:0f:8d:42:1d:b4:7d:53:dd:84:50:
ea:90:6d:a3:be:e7:8f:0c:7e:73:5c:1d:d1:93:fb:9a:0d:2a:
9e:1d:be:51:a7:89:d5:a1:3c:98:f4:ca:5b:ac:6f:c1:b5:b8:
36:d8:96:57:c7:0f:72:c9:99:07:68:c7:42:76:bf:a7:31:32:
78:c6:8e:f7:e6:5d:75:93:18:e6:db:f3:58:8a:0f:4d:cd:66:
44:dc:66:58:1d:a8:90:33:43:20:d0:a6:72:ce:27:8b:c8:76:
13:b6:87:a4:82:1b:ce:87:54:26:5d:af:d9:42:19:4b:0e:8c:
00:6e:ab:71:17:04:16:96:02:0e:92:1d:6b:bc:34:36:d9:6b:
0e:f2:dd:75:77:26:57:8a:ea:68:08:02:36:07:7c:ae:c5:af:
f1:ea:1b:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:13:46 2025 by rpki-client