Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/b4d9d7-6703-4b06-b3ee-07510381420a/1/sCD32TGYokW-ecEzDd1a2N_qFso.roa
File: sCD32TGYokW-ecEzDd1a2N_qFso.roa (raw, json)
Hash identifier: aYgbwtAYWcpANk5V6wuuYM02/qdZgJOAhPq6W8G6HNQ=
Subject key identifier: B0:20:F7:D9:31:98:A2:45:BE:79:C1:33:0D:DD:5A:D8:DF:EA:16:CA
Certificate issuer: /CN=f651dc9875e35ec580c571fd0416f4d5f5d4158a
Certificate serial: 05C488F6
Authority key identifier: F6:51:DC:98:75:E3:5E:C5:80:C5:71:FD:04:16:F4:D5:F5:D4:15:8A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9lHcmHXjXsWAxXH9BBb01fXUFYo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/b4d9d7-6703-4b06-b3ee-07510381420a/1/sCD32TGYokW-ecEzDd1a2N_qFso.roa
Signing time: Mon 30 May 2022 18:32:13 +0000
ROA not before: Mon 30 May 2022 18:32:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 834
IP address blocks: 193.30.101.0/24 maxlen: 24
193.30.102.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 96766198 (0x5c488f6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f651dc9875e35ec580c571fd0416f4d5f5d4158a
Validity
Not Before: May 30 18:32:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b020f7d93198a245be79c1330ddd5ad8dfea16ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:73:79:cd:48:00:4b:4a:3e:bc:27:20:60:f4:
cd:1e:1d:eb:b2:b9:30:fe:e0:92:c6:67:ab:3c:f0:
ae:a0:12:15:f3:fc:54:a0:a7:bf:b6:60:17:a6:09:
4b:b1:1a:ed:a0:03:a4:d1:2a:88:19:ed:22:25:b1:
cf:06:47:09:14:e6:fc:81:1b:3d:18:29:fe:13:02:
a2:47:9f:8d:bd:2b:51:71:04:be:f4:cf:ad:46:24:
21:5d:5e:ed:01:39:99:f9:9d:e6:3f:79:34:60:e3:
2d:45:61:f4:ac:37:20:22:80:98:c4:25:29:59:64:
fd:45:cc:a5:a6:2a:f2:c9:f9:d7:09:e4:93:7f:86:
d7:2b:79:b1:48:50:80:28:26:5f:c3:f6:bc:57:f6:
4d:fc:9b:40:fd:6c:ea:bc:76:0c:36:01:39:eb:b3:
72:f6:ae:b7:11:ad:c5:0d:9b:36:9b:e6:0d:a0:45:
e4:52:8b:e3:01:4e:54:08:9f:6d:6e:54:3e:0b:90:
ca:9a:a8:01:27:ee:34:55:c5:af:15:94:37:31:fd:
34:a5:76:68:8d:c4:54:e1:37:90:84:30:25:41:7a:
83:d4:08:49:af:f8:d5:5b:65:e2:3f:04:3a:74:68:
96:b1:ea:d8:25:68:2d:c9:01:39:4b:fb:8d:03:2a:
0d:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:20:F7:D9:31:98:A2:45:BE:79:C1:33:0D:DD:5A:D8:DF:EA:16:CA
X509v3 Authority Key Identifier:
keyid:F6:51:DC:98:75:E3:5E:C5:80:C5:71:FD:04:16:F4:D5:F5:D4:15:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9lHcmHXjXsWAxXH9BBb01fXUFYo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/b4d9d7-6703-4b06-b3ee-07510381420a/1/sCD32TGYokW-ecEzDd1a2N_qFso.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/b4d9d7-6703-4b06-b3ee-07510381420a/1/9lHcmHXjXsWAxXH9BBb01fXUFYo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.30.101.0-193.30.102.255
Signature Algorithm: sha256WithRSAEncryption
7c:f8:83:08:95:e7:62:e0:5d:50:31:5c:18:42:80:e9:d1:cd:
b1:9d:8c:ef:5a:2f:19:ff:4b:74:c5:f4:42:cb:9d:aa:9f:11:
8c:24:84:91:2a:6b:f3:c8:a4:7d:9a:c1:44:24:dc:3a:12:82:
a8:1f:55:d7:40:63:26:fe:36:b9:6b:ac:e8:e3:d1:69:79:6f:
ae:a6:03:f8:b1:2b:0d:fa:76:91:c2:c5:06:da:f8:1f:7d:66:
cf:45:69:d7:8f:e7:32:91:ea:99:7a:c0:a1:6e:f2:d4:61:06:
a5:2a:70:c4:e9:48:31:20:42:86:5c:d2:8e:f1:c1:06:f5:47:
9c:95:29:df:05:b6:a6:af:9a:ca:bd:b1:ad:b3:44:07:29:2a:
d8:50:2d:df:65:1e:a0:ed:27:e0:70:3f:01:a6:5d:69:95:a6:
40:2a:1e:3a:35:dc:9b:59:a5:47:94:ad:1b:27:84:b0:0f:91:
32:cc:90:a6:08:8a:bd:e9:f5:e5:b8:f0:1d:80:9c:78:45:84:
d8:c6:33:f4:d0:9b:aa:2f:6e:3e:18:1d:b2:f5:e0:51:f7:e5:
95:e2:9f:07:78:2c:6a:0d:74:34:08:93:4c:d2:b2:f1:81:69:
31:69:c6:8b:db:19:6d:1a:f6:b2:7a:1c:4e:63:22:19:b5:13:
e6:77:13:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:20:49 2025 by rpki-client