Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/00df1c-7c89-4254-b1ca-e7bd48bdeca5/1/XqYKDc_5uj_g0FQI7SyUlyXtZ-M.roa
File: XqYKDc_5uj_g0FQI7SyUlyXtZ-M.roa (raw, json)
Hash identifier: zY8SfzjWxoe+KsOBeViw88KndMb91HOGcUdVNW9VVpw=
Subject key identifier: 5E:A6:0A:0D:CF:F9:BA:3F:E0:D0:54:08:ED:2C:94:97:25:ED:67:E3
Certificate issuer: /CN=33bc522fbde48d01dd6f7b74109cf9a57dd70009
Certificate serial: 09C24826
Authority key identifier: 33:BC:52:2F:BD:E4:8D:01:DD:6F:7B:74:10:9C:F9:A5:7D:D7:00:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/M7xSL73kjQHdb3t0EJz5pX3XAAk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/00df1c-7c89-4254-b1ca-e7bd48bdeca5/1/XqYKDc_5uj_g0FQI7SyUlyXtZ-M.roa
Signing time: Sat 01 Jan 2022 11:55:01 +0000
ROA not before: Sat 01 Jan 2022 11:55:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47263
IP address blocks: 195.62.88.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 163727398 (0x9c24826)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=33bc522fbde48d01dd6f7b74109cf9a57dd70009
Validity
Not Before: Jan 1 11:55:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5ea60a0dcff9ba3fe0d05408ed2c949725ed67e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:1f:17:be:76:b0:51:32:ff:4a:83:c4:f1:7a:
30:d6:2c:02:4b:66:4c:cf:34:35:2c:39:10:1d:25:
a0:df:0c:49:22:b2:83:47:cc:1e:42:9d:bf:ed:30:
4c:99:3e:3c:7d:53:5b:79:67:42:42:f2:f7:b7:53:
e4:af:fb:8e:55:f4:90:fb:d7:1f:df:35:31:21:d4:
e0:dc:1f:ce:13:4b:1b:54:d3:75:1e:c1:7c:b2:28:
02:b3:99:5b:25:55:44:2f:8b:af:6c:41:39:27:5b:
8e:7c:ec:79:13:50:7a:07:1e:3f:75:54:2f:d9:c5:
4b:b2:6d:f5:87:cd:8f:55:31:58:b9:cf:03:57:ff:
a1:89:ba:1b:57:63:71:7b:71:d0:b4:64:14:3c:58:
74:58:22:4f:58:f5:69:38:51:43:7b:17:41:d5:ec:
c9:cf:c2:57:60:bb:ef:af:11:4b:08:8b:5c:d9:63:
b9:ef:00:c4:fd:0c:43:18:22:b2:1c:ee:c8:2e:e2:
43:f1:6e:d0:d5:20:0b:1e:0b:bf:02:2c:69:63:c7:
3f:94:c1:e6:60:0e:c5:ab:dc:80:bb:8c:46:a0:91:
e3:30:b7:9f:41:0a:aa:d7:00:64:7a:96:7e:50:16:
5d:e7:7c:b2:f8:ca:95:c5:d8:33:92:54:b1:12:1b:
f9:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:A6:0A:0D:CF:F9:BA:3F:E0:D0:54:08:ED:2C:94:97:25:ED:67:E3
X509v3 Authority Key Identifier:
keyid:33:BC:52:2F:BD:E4:8D:01:DD:6F:7B:74:10:9C:F9:A5:7D:D7:00:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/M7xSL73kjQHdb3t0EJz5pX3XAAk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/00df1c-7c89-4254-b1ca-e7bd48bdeca5/1/XqYKDc_5uj_g0FQI7SyUlyXtZ-M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/00df1c-7c89-4254-b1ca-e7bd48bdeca5/1/M7xSL73kjQHdb3t0EJz5pX3XAAk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.62.88.0/23
Signature Algorithm: sha256WithRSAEncryption
24:26:71:40:a5:bf:16:ad:1f:c1:b1:78:f3:9a:9b:b1:ac:a9:
c4:45:86:4b:7b:f9:a2:8a:c4:af:8b:94:51:8f:c6:56:45:51:
d5:94:63:35:71:13:e1:3e:b5:c8:3f:92:fd:a2:47:98:01:b6:
48:84:3f:9b:7f:77:0f:ab:33:f0:01:e8:06:d8:16:8d:3e:76:
a8:ed:20:c6:a4:56:b4:86:95:4a:68:a4:55:f7:a2:fd:0b:c3:
d2:78:2d:be:28:05:68:76:41:08:f7:3d:34:bc:4f:f8:37:5f:
ae:ab:fc:a9:3d:d9:12:e0:2b:29:9b:3e:20:8a:e6:06:30:81:
fd:1f:85:24:15:f9:69:01:19:06:cd:c8:82:a1:cd:74:79:fc:
14:8e:71:31:54:68:d5:ba:2c:75:25:3a:58:a6:04:20:45:53:
a7:90:5f:ab:8d:83:dd:d5:6c:4d:ba:fd:59:57:ed:4e:ff:08:
1b:dc:f9:0d:c5:3d:d0:7c:f2:72:71:f5:00:1d:95:bf:01:0f:
fc:be:2d:52:b3:06:d2:0e:92:09:76:6d:93:65:41:ca:69:af:
72:a6:ed:d8:7b:a1:f1:4f:d9:87:1f:bf:c2:14:cf:39:29:87:
f0:ee:52:a4:a6:c1:3e:87:5e:d4:ce:2b:f9:ba:5d:ae:cd:a1:
73:9d:3d:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:02:39 2025 by rpki-client