Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/c83f28-8a86-4c19-89f7-6e5e053a7ba9/1/5XfTzILInRRtJIVFAn2prvuyF2U.roa
File: 5XfTzILInRRtJIVFAn2prvuyF2U.roa (raw, json)
Hash identifier: YvqoQsyKTkwntPOtGQfDqVpIK37rtnI0mbRmxGYvE84=
Subject key identifier: E5:77:D3:CC:82:C8:9D:14:6D:24:85:45:02:7D:A9:AE:FB:B2:17:65
Certificate issuer: /CN=543162ac1ad26b9c159537c7e555fb3d3889de50
Certificate serial: 0392C6BA
Authority key identifier: 54:31:62:AC:1A:D2:6B:9C:15:95:37:C7:E5:55:FB:3D:38:89:DE:50
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VDFirBrSa5wVlTfH5VX7PTiJ3lA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/c83f28-8a86-4c19-89f7-6e5e053a7ba9/1/5XfTzILInRRtJIVFAn2prvuyF2U.roa
Signing time: Sat 01 Jan 2022 06:06:51 +0000
ROA not before: Sat 01 Jan 2022 06:06:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57497
IP address blocks: 195.226.223.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 59950778 (0x392c6ba)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=543162ac1ad26b9c159537c7e555fb3d3889de50
Validity
Not Before: Jan 1 06:06:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e577d3cc82c89d146d248545027da9aefbb21765
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:51:d0:75:0c:56:2e:da:e0:fd:02:d8:11:a1:
7b:3f:e9:c4:30:24:fc:a7:c3:84:39:41:cb:b4:40:
95:c3:31:94:7d:d8:f4:c5:b9:da:b1:d1:19:9f:27:
03:f1:f3:be:72:a9:5f:56:cf:e9:87:21:09:d3:5a:
92:b8:e4:5a:13:2e:ec:20:ec:05:f3:31:75:27:2b:
37:b7:ac:d0:40:80:3b:a3:1d:51:f9:c3:e2:ca:d1:
a8:dc:37:9f:45:9a:94:bf:62:9d:53:06:8a:40:a2:
38:44:6e:29:f2:e3:fc:5b:29:7b:2b:6f:cf:e4:3a:
d4:25:c7:60:e0:e9:21:ac:94:57:f5:c6:90:fd:70:
ac:ec:8f:7f:76:49:0d:46:5f:9b:5f:d0:24:98:5c:
ca:35:d9:7a:b9:ad:1a:6a:f0:e5:54:74:f5:a9:cd:
01:9c:37:ba:9e:ca:01:12:56:54:b9:e7:4e:e6:9e:
a2:35:de:7f:8a:fb:b1:46:10:b9:e7:0e:e5:07:94:
f3:2b:f0:04:4e:03:04:92:37:66:f7:c2:59:fb:f3:
02:79:a5:68:26:c2:a6:07:76:ce:2e:85:cc:43:61:
6c:c3:59:61:f9:78:3b:b3:3c:b8:ff:28:78:8d:99:
78:c0:69:9e:ea:8a:64:2d:07:e1:ad:44:94:06:28:
da:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:77:D3:CC:82:C8:9D:14:6D:24:85:45:02:7D:A9:AE:FB:B2:17:65
X509v3 Authority Key Identifier:
keyid:54:31:62:AC:1A:D2:6B:9C:15:95:37:C7:E5:55:FB:3D:38:89:DE:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VDFirBrSa5wVlTfH5VX7PTiJ3lA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/c83f28-8a86-4c19-89f7-6e5e053a7ba9/1/5XfTzILInRRtJIVFAn2prvuyF2U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/c83f28-8a86-4c19-89f7-6e5e053a7ba9/1/VDFirBrSa5wVlTfH5VX7PTiJ3lA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.226.223.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:18:1c:7a:3c:16:44:e7:fc:70:9a:f6:d9:28:2a:18:dc:cc:
8c:64:f4:eb:ed:b9:d5:a9:2a:42:6f:f6:21:44:63:6c:28:6d:
e5:11:73:83:b6:f6:7f:d2:81:82:cc:fb:26:0a:1f:c4:a0:7d:
14:f3:93:61:eb:08:2d:19:e5:46:f2:2d:db:a4:97:36:73:bc:
7c:91:74:42:d2:cf:1f:5c:16:d0:24:75:a9:a4:42:83:b0:dd:
9a:db:c1:d9:b9:6a:f1:2c:9d:04:b9:9e:d9:52:42:72:24:3e:
b1:e7:7d:7a:c1:54:95:a7:52:12:ab:41:db:ce:b5:a2:91:94:
ad:f1:b7:7d:4d:ea:1e:d5:43:9e:5a:4b:0d:34:20:dd:a9:53:
7a:5b:e4:1b:7b:2a:1a:14:d6:c4:a4:38:21:11:07:52:4d:92:
c5:4f:41:9a:0a:b2:a5:24:c0:7c:ec:74:c6:9c:d8:ab:99:92:
07:f7:83:d5:d4:ca:2e:3c:a3:fa:f1:b2:56:f9:60:4e:20:26:
a7:c1:14:87:41:44:e8:f0:14:2a:1d:90:9b:e9:d2:01:48:a1:
a8:3b:b9:ca:c6:2a:ff:fc:e6:4e:37:b0:74:95:b3:97:a9:bc:
57:d6:e3:e9:09:07:7e:60:ab:0a:80:8d:81:ef:df:5e:4d:ab:
46:a2:c4:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:18:08 2025 by rpki-client