Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/1c2a4a-0b62-4df3-99a3-54ec3e27129a/1/P47HD-jbwn01nyJVnKvVCTt8kYo.roa
File: P47HD-jbwn01nyJVnKvVCTt8kYo.roa (raw, json)
Hash identifier: gQUi8QUtuYsKnqKMDfLtDl4j5BXdPwdSdnfNIh37w1g=
Subject key identifier: 3F:8E:C7:0F:E8:DB:C2:7D:35:9F:22:55:9C:AB:D5:09:3B:7C:91:8A
Certificate issuer: /CN=543b0e6e50655043357a552d4b6c2b302de597f0
Certificate serial: 01856DE6418D3628ADA9E2A103306B5E66D8
Authority key identifier: 54:3B:0E:6E:50:65:50:43:35:7A:55:2D:4B:6C:2B:30:2D:E5:97:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VDsOblBlUEM1elUtS2wrMC3ll_A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/1c2a4a-0b62-4df3-99a3-54ec3e27129a/1/P47HD-jbwn01nyJVnKvVCTt8kYo.roa
Signing time: Sun 01 Jan 2023 15:14:44 +0000
ROA not before: Sun 01 Jan 2023 15:14:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42724
IP address blocks: 193.3.167.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:e6:41:8d:36:28:ad:a9:e2:a1:03:30:6b:5e:66:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=543b0e6e50655043357a552d4b6c2b302de597f0
Validity
Not Before: Jan 1 15:14:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3f8ec70fe8dbc27d359f22559cabd5093b7c918a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:02:79:10:0d:88:99:5a:ad:27:2b:97:f2:9e:
d0:9b:a0:24:94:b1:2e:ec:df:61:62:08:07:ed:7f:
b2:08:d9:5d:87:6b:ab:a7:f7:53:81:a2:0f:c7:59:
50:20:e2:3a:18:70:86:92:af:ff:84:e8:ea:c7:28:
9b:fd:59:e4:a2:26:da:e0:75:83:4d:bd:48:46:43:
36:e4:ca:27:04:f2:ea:09:0e:5a:4a:e7:ef:59:79:
92:41:c8:c7:ea:61:a0:b4:dc:f9:53:f7:e8:fb:16:
87:13:ba:ac:ba:fe:34:bc:89:6d:e1:f5:ab:86:e3:
c1:56:38:64:28:73:28:14:24:64:4d:38:43:38:34:
37:2e:81:c2:75:6d:22:54:80:02:c6:ad:d9:81:b4:
45:26:39:79:7c:d1:d8:a9:62:d4:4e:08:86:0d:ee:
3f:7c:07:5e:a8:46:3c:24:03:5a:07:ef:f7:09:8b:
d3:12:d3:b9:e1:64:f8:52:cd:2d:dc:9f:32:1e:ec:
53:5c:3a:86:81:e1:cc:0c:70:d7:3e:ec:84:ed:df:
93:99:f1:bd:b1:fe:24:fb:1a:58:d1:98:a0:3e:10:
55:3c:d2:fa:0e:76:df:a2:a6:6b:a8:a6:c1:66:96:
81:2a:9d:55:9c:74:18:0b:8f:52:87:f7:68:b2:2c:
05:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:8E:C7:0F:E8:DB:C2:7D:35:9F:22:55:9C:AB:D5:09:3B:7C:91:8A
X509v3 Authority Key Identifier:
keyid:54:3B:0E:6E:50:65:50:43:35:7A:55:2D:4B:6C:2B:30:2D:E5:97:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VDsOblBlUEM1elUtS2wrMC3ll_A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/1c2a4a-0b62-4df3-99a3-54ec3e27129a/1/P47HD-jbwn01nyJVnKvVCTt8kYo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/1c2a4a-0b62-4df3-99a3-54ec3e27129a/1/VDsOblBlUEM1elUtS2wrMC3ll_A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.3.167.0/24
Signature Algorithm: sha256WithRSAEncryption
79:1f:5a:85:ac:da:2c:ff:b3:26:86:c3:b7:f0:65:bd:ab:cd:
3d:4c:e7:b2:5a:ec:2a:7e:a8:5b:45:c2:67:46:63:af:d6:9e:
23:16:9c:35:46:2b:83:25:3c:1b:f6:8b:53:71:d8:e5:4b:b7:
76:ba:1a:f2:da:ea:fb:ac:6c:be:d5:25:b0:83:66:b4:44:2b:
74:5c:06:44:1b:6e:d8:45:cc:15:b6:02:25:44:eb:80:e2:5a:
b2:1a:77:62:b3:01:e4:58:04:41:27:2c:8e:85:3c:a4:60:4f:
5c:0e:fc:3c:91:30:e5:ac:46:63:42:62:8a:7d:6a:1f:12:ec:
be:24:56:bf:80:e2:4b:e1:47:3d:80:27:8b:42:42:d5:01:31:
af:e3:f3:63:9d:f4:d0:b4:23:e2:30:08:fb:7b:80:a4:b0:36:
ee:de:ec:74:a3:22:91:6e:a2:52:21:93:fb:7e:93:15:66:80:
fe:ef:7e:eb:f8:ef:c5:26:e1:fa:98:ae:a0:6a:2b:56:a0:3e:
ae:2d:b1:44:be:1e:01:54:3b:6f:17:45:a4:22:17:6a:7d:94:
84:47:e9:25:d3:fe:d6:e9:36:69:cf:a3:83:5e:0d:a4:a0:51:
68:bc:42:63:a1:58:4a:c4:ab:75:83:a3:73:c2:0c:7d:bd:56:
fc:fe:c6:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:22:07 2025 by rpki-client