Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/494453-1d1c-415b-8953-c5e5a995d172/1/f4UTYREEkURyM2GjqcLKiIapESY.roa
File: f4UTYREEkURyM2GjqcLKiIapESY.roa (raw, json)
Hash identifier: Ow8OEfICWcdkrZf6JZVVnQov9cpo/kkoWV4FJ4lhk9M=
Subject key identifier: 7F:85:13:61:11:04:91:44:72:33:61:A3:A9:C2:CA:88:86:A9:11:26
Certificate issuer: /CN=ec7c41055e57b977c5b804c0982c75c4e2111a2b
Certificate serial: 04E42BE4
Authority key identifier: EC:7C:41:05:5E:57:B9:77:C5:B8:04:C0:98:2C:75:C4:E2:11:1A:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7HxBBV5XuXfFuATAmCx1xOIRGis.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/494453-1d1c-415b-8953-c5e5a995d172/1/f4UTYREEkURyM2GjqcLKiIapESY.roa
Signing time: Sat 01 Jan 2022 10:57:24 +0000
ROA not before: Sat 01 Jan 2022 10:57:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209320
IP address blocks: 193.25.200.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 82062308 (0x4e42be4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ec7c41055e57b977c5b804c0982c75c4e2111a2b
Validity
Not Before: Jan 1 10:57:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7f85136111049144723361a3a9c2ca8886a91126
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:e5:79:22:f2:4e:c1:81:5f:5b:7d:5f:9d:4f:
9f:ed:e7:c1:73:95:1d:4b:d6:cf:31:96:78:2f:3b:
d6:82:4c:46:40:31:23:38:e4:8b:b1:d7:e2:f4:c9:
5d:b3:ec:92:85:21:49:2d:48:48:98:5b:41:31:88:
30:5c:14:cf:d1:cf:e6:59:1a:8c:56:19:f8:33:95:
d2:fd:57:36:3b:68:17:c9:0a:72:ff:76:b0:d7:5f:
2e:70:0e:eb:d9:6a:be:a0:b4:eb:d2:09:7b:6b:f9:
2d:38:ca:3c:58:bd:26:2e:73:b9:95:26:55:4d:83:
86:90:56:5e:82:93:6b:1b:a1:4b:86:a1:8b:57:31:
b8:0d:45:4e:a5:bc:c1:28:81:23:18:d6:25:a4:1a:
9b:a2:c2:d3:34:41:be:6e:a0:40:e4:11:d4:a7:a5:
0f:e1:0c:f8:49:9e:af:82:38:a4:8f:64:4f:3a:2c:
07:d7:b4:cd:02:c5:b0:d8:38:74:5d:63:ca:d9:61:
a6:6d:0e:0d:a1:a1:c5:8f:5b:36:c0:16:98:0c:3f:
3a:e5:f2:34:de:e8:4d:3d:e1:ad:ea:1f:55:a9:e0:
f1:48:eb:9c:44:ff:a4:be:ea:de:62:1f:a6:b9:e7:
f6:0c:f0:c4:ff:1a:dd:7e:04:31:d2:06:12:04:6d:
bd:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:85:13:61:11:04:91:44:72:33:61:A3:A9:C2:CA:88:86:A9:11:26
X509v3 Authority Key Identifier:
keyid:EC:7C:41:05:5E:57:B9:77:C5:B8:04:C0:98:2C:75:C4:E2:11:1A:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7HxBBV5XuXfFuATAmCx1xOIRGis.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/494453-1d1c-415b-8953-c5e5a995d172/1/f4UTYREEkURyM2GjqcLKiIapESY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/494453-1d1c-415b-8953-c5e5a995d172/1/7HxBBV5XuXfFuATAmCx1xOIRGis.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.25.200.0/24
Signature Algorithm: sha256WithRSAEncryption
41:15:a5:1f:bc:a9:07:34:9b:b3:09:1d:59:3a:85:4f:ff:f3:
77:b5:2e:c5:50:9b:2d:48:66:90:4f:f1:97:55:47:5c:b1:b4:
f5:1d:7f:5e:3f:73:ed:7e:2d:be:b3:36:45:16:56:d4:2f:37:
75:bf:10:d9:03:ea:7c:40:e4:d6:0c:85:57:22:11:a2:e5:c2:
48:91:e7:65:26:38:c7:23:c7:20:01:32:57:76:1d:2c:0d:af:
82:2c:07:d1:df:a1:c9:86:47:47:63:40:d2:61:9c:fa:1d:4c:
63:48:4d:ad:b7:85:52:73:a2:27:da:68:d3:b6:36:ee:8f:8a:
5c:3a:dc:a9:b9:d0:92:dd:af:5d:50:b5:75:32:d7:39:47:16:
68:17:f3:d4:bd:80:06:74:ab:a9:a7:0d:af:1f:6a:4c:73:42:
21:9b:e3:6f:96:97:08:40:c5:0f:49:4d:3b:48:66:87:29:3e:
f1:58:df:d6:e2:29:a1:3a:a0:ed:67:16:5b:6d:05:37:10:af:
c2:7d:07:86:2f:0b:a6:30:b6:9b:fe:c5:d0:96:6a:1a:33:79:
af:68:55:e1:63:9a:ef:4e:af:5e:e2:c6:67:83:d4:1d:74:79:
d6:ea:ae:a9:ae:22:93:6c:87:7b:5c:23:59:93:88:8e:9d:23:
fb:53:0d:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:28 2023 by rpki-client on console-ams.rpki-client.org