Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/1c2a4a-0b62-4df3-99a3-54ec3e27129a/1/18HhoYOMAlslOAjsm-VCykqc-UE.roa
File: 18HhoYOMAlslOAjsm-VCykqc-UE.roa (raw, json)
Hash identifier: hUs6CdCnfUvE729leiuQFhvZApAIOcxlD3IN4iIOD74=
Subject key identifier: D7:C1:E1:A1:83:8C:02:5B:25:38:08:EC:9B:E5:42:CA:4A:9C:F9:41
Certificate issuer: /CN=543b0e6e50655043357a552d4b6c2b302de597f0
Certificate serial: 01A6533E
Authority key identifier: 54:3B:0E:6E:50:65:50:43:35:7A:55:2D:4B:6C:2B:30:2D:E5:97:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VDsOblBlUEM1elUtS2wrMC3ll_A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/1c2a4a-0b62-4df3-99a3-54ec3e27129a/1/18HhoYOMAlslOAjsm-VCykqc-UE.roa
Signing time: Tue 10 May 2022 08:43:19 +0000
ROA not before: Tue 10 May 2022 08:43:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212369
IP address blocks: 193.3.167.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 27677502 (0x1a6533e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=543b0e6e50655043357a552d4b6c2b302de597f0
Validity
Not Before: May 10 08:43:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d7c1e1a1838c025b253808ec9be542ca4a9cf941
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:a9:3d:99:0f:94:bc:31:97:fb:42:89:a5:b4:
2b:f5:bd:00:48:0d:bd:da:51:e3:7e:d7:e6:8f:a2:
30:5a:73:3b:54:b4:38:9d:91:39:47:42:42:24:bf:
b1:3f:c7:9e:35:aa:98:0d:4d:7d:0c:dc:98:60:1f:
10:aa:49:fb:61:cd:29:f8:9c:39:02:b6:f0:de:2f:
c8:d3:90:45:78:69:32:c4:a3:35:fe:95:7c:9f:2c:
15:2b:38:88:e5:e0:1c:5e:23:63:e1:d5:37:67:2d:
7d:5c:9b:78:2e:e2:c3:43:0f:cd:43:a7:a5:00:a6:
28:e7:56:99:5f:99:e9:b2:b3:23:dd:66:18:63:5d:
f2:1c:15:a7:b8:9a:70:7d:ff:c9:0e:d0:f4:46:56:
6f:0b:7a:f2:c7:dd:15:e8:e2:41:26:51:dd:2b:02:
86:8d:49:0e:70:35:9a:59:83:3b:b2:e8:07:9f:40:
41:18:21:76:d5:23:26:41:07:75:55:e7:7b:53:97:
74:49:6c:16:e6:4f:8c:b1:32:8c:7b:4e:36:73:d2:
d8:a0:3c:48:3a:3d:ad:ba:3b:74:ed:83:1e:64:5d:
fb:49:5a:ab:a8:73:b1:b2:1b:97:8f:1e:84:77:d5:
8d:0e:c8:4c:6c:79:d2:dd:4b:6c:31:2e:63:cd:37:
5b:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:C1:E1:A1:83:8C:02:5B:25:38:08:EC:9B:E5:42:CA:4A:9C:F9:41
X509v3 Authority Key Identifier:
keyid:54:3B:0E:6E:50:65:50:43:35:7A:55:2D:4B:6C:2B:30:2D:E5:97:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VDsOblBlUEM1elUtS2wrMC3ll_A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/1c2a4a-0b62-4df3-99a3-54ec3e27129a/1/18HhoYOMAlslOAjsm-VCykqc-UE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/1c2a4a-0b62-4df3-99a3-54ec3e27129a/1/VDsOblBlUEM1elUtS2wrMC3ll_A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.3.167.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:fa:3d:d5:cb:4e:04:08:05:70:b6:cf:74:5e:29:ed:42:b7:
14:b3:f1:d4:1a:21:b4:d7:a9:73:89:ac:7c:88:bd:50:2d:a9:
07:2e:4d:9a:6a:8b:c2:ad:62:1a:e0:8f:0c:4d:a9:28:40:f8:
2b:d6:51:6b:6f:76:88:ed:4d:39:7e:bc:18:d6:f1:a1:4d:43:
04:98:34:58:98:50:38:61:f1:eb:8b:a9:a4:6d:bf:03:8c:01:
02:1f:12:5a:f8:6e:72:aa:05:c6:a7:40:f2:ca:bd:83:dd:cb:
6e:30:17:01:78:fa:74:eb:98:9f:26:80:04:f9:46:dc:78:1b:
2b:02:5b:ce:e7:18:ee:f7:0b:32:93:50:e2:c2:cb:97:19:2d:
62:16:0d:a1:b8:c8:d6:fc:03:67:45:c9:ed:2b:5b:61:3f:ff:
3b:15:0f:bc:54:60:83:2e:81:4b:c8:02:a2:2c:cd:1e:ca:95:
81:a4:99:9d:17:84:5a:87:76:64:45:90:c0:32:1d:cc:95:a9:
49:38:a1:0c:72:ff:75:fe:74:70:f6:1b:0c:c5:27:74:ac:a2:
b0:86:df:18:7f:22:a7:23:8c:81:30:b9:27:bc:64:59:e9:92:
51:c4:2e:2a:70:85:46:77:9c:2a:69:32:fb:33:36:80:21:ad:
73:c7:07:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:05:29 2025 by rpki-client