Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/9baf4f-a79c-4a92-b7c7-06a4795f52e5/1/7ZFy5rD-ghiI6nUNpX_iK6l2_Vo.roa
File: 7ZFy5rD-ghiI6nUNpX_iK6l2_Vo.roa (raw, json)
Hash identifier: aSICd9s8QhqRoCaSqHY1sRX6OZOKzSbNYRV/4/P2pOk=
Subject key identifier: ED:91:72:E6:B0:FE:82:18:88:EA:75:0D:A5:7F:E2:2B:A9:76:FD:5A
Certificate issuer: /CN=fb08bfb7f36f091de2744a72461e4d801ee7edb4
Certificate serial: 0539DA54
Authority key identifier: FB:08:BF:B7:F3:6F:09:1D:E2:74:4A:72:46:1E:4D:80:1E:E7:ED:B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-wi_t_NvCR3idEpyRh5NgB7n7bQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/9baf4f-a79c-4a92-b7c7-06a4795f52e5/1/7ZFy5rD-ghiI6nUNpX_iK6l2_Vo.roa
Signing time: Sat 01 Jan 2022 06:58:53 +0000
ROA not before: Sat 01 Jan 2022 06:58:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 137523
IP address blocks: 193.239.191.0/24 maxlen: 24
193.239.190.0/23 maxlen: 23
193.239.190.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 87677524 (0x539da54)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fb08bfb7f36f091de2744a72461e4d801ee7edb4
Validity
Not Before: Jan 1 06:58:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ed9172e6b0fe821888ea750da57fe22ba976fd5a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:68:fb:90:ac:96:4f:62:5c:a4:bd:cb:36:62:
2e:4d:44:ea:a2:c6:6d:2c:c6:a5:d3:34:72:b8:c3:
6f:56:ca:6b:61:07:42:69:84:cb:15:09:e2:b5:3d:
ea:0e:51:9d:d9:d8:93:43:2d:c4:57:da:b6:5c:aa:
82:7a:2f:88:b9:40:a5:cc:b8:75:35:9b:b0:8e:3b:
74:60:d6:a0:dc:a9:6d:2f:ae:f3:e6:77:0b:c2:82:
c2:6c:f1:40:b5:f8:b0:f0:8f:20:6a:42:ce:48:a6:
57:26:88:5d:9e:c6:41:c4:57:73:c1:39:7c:95:82:
5c:bc:b4:75:ab:c4:55:29:9c:8e:ed:e6:aa:25:eb:
76:5b:1f:aa:7e:3d:b3:8d:a0:10:e3:3f:75:58:2d:
c6:34:10:bf:dc:0c:eb:92:61:17:ac:76:73:c5:d3:
3c:9a:09:a1:bf:21:77:0d:a4:13:32:72:b7:e0:f8:
c6:2c:8b:9b:b7:40:04:6f:de:81:ff:28:6c:79:6e:
ca:dc:3f:71:b9:1e:f7:9a:2e:66:bf:45:75:e1:b6:
03:ed:74:e5:14:c6:39:87:13:7a:18:8f:d3:d6:60:
45:69:9d:df:8a:e2:37:77:58:90:1a:93:ba:1f:24:
c6:c7:46:96:f4:81:c4:76:df:ef:f3:3d:70:41:b7:
03:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:91:72:E6:B0:FE:82:18:88:EA:75:0D:A5:7F:E2:2B:A9:76:FD:5A
X509v3 Authority Key Identifier:
keyid:FB:08:BF:B7:F3:6F:09:1D:E2:74:4A:72:46:1E:4D:80:1E:E7:ED:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-wi_t_NvCR3idEpyRh5NgB7n7bQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/9baf4f-a79c-4a92-b7c7-06a4795f52e5/1/7ZFy5rD-ghiI6nUNpX_iK6l2_Vo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/9baf4f-a79c-4a92-b7c7-06a4795f52e5/1/1-wi_t_NvCR3idEpyRh5NgB7n7bQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.239.190.0/23
Signature Algorithm: sha256WithRSAEncryption
08:9f:17:a6:29:db:fb:0c:1a:96:a6:5b:01:bf:b4:73:8d:95:
f0:79:e7:b0:b1:b9:cf:21:82:e4:72:74:bb:49:fb:21:54:c0:
74:05:49:d5:5f:5f:c1:dc:bf:d3:2d:45:23:e4:7d:3e:53:cc:
c6:40:42:9e:e4:c4:ce:17:43:a4:68:51:25:33:3b:ca:49:e5:
7b:09:9e:6c:cd:09:91:d6:15:ec:a5:e2:a6:ff:00:20:cd:71:
c4:ce:44:0d:32:1d:08:bb:5b:c6:62:56:7a:74:31:c0:7a:5a:
80:a7:f6:ce:89:ba:2e:37:64:f8:ea:9c:cb:78:c2:df:98:b6:
3e:c8:48:49:ba:d1:7b:1e:d0:0c:5f:0a:ef:38:d5:34:08:2f:
26:d2:f2:6e:47:65:03:c6:90:b0:38:2a:7d:da:06:4a:d6:85:
7c:cd:47:ee:2a:39:28:d9:f9:e2:2d:3c:44:7b:1a:e1:b8:d0:
40:94:e6:08:df:59:db:5c:6a:2d:73:bb:f4:83:57:60:b6:69:
56:2d:a8:97:80:b5:37:41:32:2c:97:0a:95:1c:16:1f:d2:d2:
72:84:ed:f8:08:21:5f:2e:05:c0:dd:23:cd:ed:e5:84:34:83:
73:3b:b3:41:6c:15:9f:51:1f:c4:57:f0:91:ec:6c:17:d1:67:
9a:f6:34:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:01 2023 by rpki-client on console-fra.rpki-client.org