Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/72435b-7e7e-447b-ac24-982c429d4156/1/DAAhV2TjSGO4cSsxK_8LvF8dOV0.roa
File: DAAhV2TjSGO4cSsxK_8LvF8dOV0.roa (raw, json)
Hash identifier: D7U9B5cD1GsmZYeXBxahPJqsN6CDE9noJYlOJALO7Bk=
Subject key identifier: 0C:00:21:57:64:E3:48:63:B8:71:2B:31:2B:FF:0B:BC:5F:1D:39:5D
Certificate issuer: /CN=04d9bc828a566b06af4d765dfb5da5bc1d76c725
Certificate serial: 018AF61AC3377FFD379EED6BE89078FCD357
Authority key identifier: 04:D9:BC:82:8A:56:6B:06:AF:4D:76:5D:FB:5D:A5:BC:1D:76:C7:25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BNm8gopWawavTXZd-12lvB12xyU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/72435b-7e7e-447b-ac24-982c429d4156/1/DAAhV2TjSGO4cSsxK_8LvF8dOV0.roa
Signing time: Tue 03 Oct 2023 15:14:23 +0000
ROA not before: Tue 03 Oct 2023 15:14:23 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20712
IP address blocks: 193.219.118.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:f6:1a:c3:37:7f:fd:37:9e:ed:6b:e8:90:78:fc:d3:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04d9bc828a566b06af4d765dfb5da5bc1d76c725
Validity
Not Before: Oct 3 15:14:23 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0c00215764e34863b8712b312bff0bbc5f1d395d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:07:e4:8a:09:19:8b:a6:8e:86:c1:60:01:8d:
94:61:aa:29:63:15:12:f4:1e:4c:aa:c3:b4:d6:10:
33:0d:83:b8:5d:e1:7e:95:24:c6:81:3c:63:31:e3:
60:bc:c9:ac:83:a5:0a:70:08:38:54:da:d0:eb:a6:
27:f6:bd:16:9e:82:e2:6c:85:cd:50:5b:4e:7f:91:
89:2b:5b:d0:8d:8d:ae:2c:71:4b:6e:d3:51:8c:96:
b0:b9:49:fc:ff:ad:81:e5:4d:34:62:ac:f9:7e:4f:
ab:3c:de:33:37:32:5c:f8:c6:0b:ad:82:49:f0:3a:
64:88:cf:16:80:03:e8:4f:a4:e3:4f:43:87:54:99:
96:b4:33:aa:4f:7a:0f:75:18:ba:a4:7a:ea:81:04:
a8:96:61:98:61:b6:32:b6:aa:48:e5:0b:53:d1:27:
32:7d:98:67:e0:9f:99:32:12:16:99:05:f8:e1:bf:
9c:e7:0b:d9:17:5a:5e:1a:80:51:31:c1:a4:60:68:
c3:88:4f:9a:2d:ab:0e:dd:80:27:ea:45:a3:f2:c0:
23:b9:5d:65:4f:f6:0d:d4:98:84:2d:68:d4:16:d6:
ba:e9:c1:b1:9c:1c:7c:27:39:fd:b8:13:72:43:05:
bb:92:9d:fe:19:fd:20:52:ce:fe:70:b7:22:1c:69:
33:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:00:21:57:64:E3:48:63:B8:71:2B:31:2B:FF:0B:BC:5F:1D:39:5D
X509v3 Authority Key Identifier:
keyid:04:D9:BC:82:8A:56:6B:06:AF:4D:76:5D:FB:5D:A5:BC:1D:76:C7:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BNm8gopWawavTXZd-12lvB12xyU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/72435b-7e7e-447b-ac24-982c429d4156/1/DAAhV2TjSGO4cSsxK_8LvF8dOV0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/72435b-7e7e-447b-ac24-982c429d4156/1/BNm8gopWawavTXZd-12lvB12xyU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.219.118.0/24
Signature Algorithm: sha256WithRSAEncryption
55:f3:30:e0:aa:d9:c9:e8:b5:82:8b:01:e3:ce:2a:0e:35:ba:
01:80:d8:2a:e2:2d:f1:7b:73:07:19:9d:45:28:a2:ae:ef:c6:
80:e0:c3:c8:90:86:c6:e0:83:ee:ad:01:cd:89:90:86:64:83:
b0:50:ed:91:c9:b5:bd:24:dc:ba:2b:5a:0f:e9:75:88:d1:e1:
86:14:ed:53:35:ab:53:fa:ce:40:db:3d:9a:39:fd:f3:b6:96:
0d:f5:46:30:18:96:06:9e:be:8e:b8:4b:4b:ea:33:77:35:20:
9f:bb:9d:bd:e2:94:3b:57:43:bb:35:f7:93:ff:f1:c1:37:42:
1d:95:6a:9d:0c:c3:2e:b4:92:67:a2:5d:be:01:bd:ab:87:f4:
0a:05:e3:54:39:9a:ef:73:f5:01:e0:e9:12:ac:59:6e:40:44:
d2:ee:2d:ff:88:fb:a6:c8:e6:6d:37:2f:1f:34:10:06:b0:f7:
eb:0d:8f:32:cb:86:80:12:01:ef:4d:f0:7c:a7:17:64:ec:a1:
eb:17:b8:0f:ad:df:f5:c6:d7:0e:bf:a6:76:5a:a5:38:91:7a:
93:05:b1:18:c1:65:97:af:6c:6f:3b:29:d8:a6:aa:b0:a5:83:
55:b2:20:3b:60:ab:f3:9e:e8:73:da:7b:7e:f9:03:9a:7f:50:
6a:30:cf:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:32:57 2025 by rpki-client