Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/2a4b7d-0372-41bf-bf38-796b059a3b93/1/LY57jBVY3_XOL119E6s0prpQ_sQ.roa
File: LY57jBVY3_XOL119E6s0prpQ_sQ.roa (raw, json)
Hash identifier: +WeN+lAAGmt7K2rPtqb+e3aJAQtSPUge8z+FaHnM2O0=
Subject key identifier: 2D:8E:7B:8C:15:58:DF:F5:CE:2F:5D:7D:13:AB:34:A6:BA:50:FE:C4
Certificate issuer: /CN=b536bd81b38c70bf1fb259bc9752eacebe55b738
Certificate serial: 08E44F1D
Authority key identifier: B5:36:BD:81:B3:8C:70:BF:1F:B2:59:BC:97:52:EA:CE:BE:55:B7:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tTa9gbOMcL8fslm8l1Lqzr5Vtzg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/2a4b7d-0372-41bf-bf38-796b059a3b93/1/LY57jBVY3_XOL119E6s0prpQ_sQ.roa
Signing time: Sat 01 Jan 2022 09:55:30 +0000
ROA not before: Sat 01 Jan 2022 09:55:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 5483
IP address blocks: 194.39.160.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 149180189 (0x8e44f1d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b536bd81b38c70bf1fb259bc9752eacebe55b738
Validity
Not Before: Jan 1 09:55:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2d8e7b8c1558dff5ce2f5d7d13ab34a6ba50fec4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:e8:09:22:28:33:93:f4:fa:0e:17:e7:7c:ae:
b7:6c:e2:1d:db:81:cf:64:8d:10:90:92:d4:50:a4:
e8:be:a7:21:76:7c:57:62:ce:a8:c8:af:36:94:ae:
14:6e:d8:a3:3a:3f:47:09:3b:e8:0f:8b:26:34:93:
2e:d6:1e:96:1c:ad:df:2a:0f:14:cf:07:6f:83:1c:
5d:bf:a0:19:19:83:18:76:1e:d6:74:8a:2f:db:d3:
fd:ab:75:a1:9a:85:7b:87:fe:88:02:35:ae:e6:04:
5c:af:ab:e2:4f:6b:f4:aa:26:ef:a2:9d:01:bb:74:
a4:28:75:f8:33:7d:44:6d:7e:5c:ab:b8:b9:69:33:
e2:c9:2e:76:7a:a1:b6:42:3d:89:75:8b:13:26:65:
12:c0:7a:0a:13:8a:8a:e5:2e:d3:8d:e4:ed:06:03:
55:91:b9:16:82:3b:11:15:cc:e2:30:63:bc:24:e1:
52:d4:69:48:58:36:e6:d7:9f:13:ea:40:2c:c0:b7:
cb:a8:91:06:07:6f:73:71:94:0f:76:66:32:3c:77:
50:8c:29:f1:bd:15:4a:a2:73:61:bd:c7:32:34:68:
12:40:bf:eb:1e:52:b0:2c:59:21:d4:cc:9e:d9:83:
40:fd:77:1b:70:51:9b:a5:ec:97:bb:f8:30:96:2f:
b3:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:8E:7B:8C:15:58:DF:F5:CE:2F:5D:7D:13:AB:34:A6:BA:50:FE:C4
X509v3 Authority Key Identifier:
keyid:B5:36:BD:81:B3:8C:70:BF:1F:B2:59:BC:97:52:EA:CE:BE:55:B7:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tTa9gbOMcL8fslm8l1Lqzr5Vtzg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/2a4b7d-0372-41bf-bf38-796b059a3b93/1/LY57jBVY3_XOL119E6s0prpQ_sQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/2a4b7d-0372-41bf-bf38-796b059a3b93/1/tTa9gbOMcL8fslm8l1Lqzr5Vtzg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.39.160.0/22
Signature Algorithm: sha256WithRSAEncryption
d2:84:8d:91:72:b0:22:20:fe:4f:6a:af:eb:59:5f:6e:20:02:
60:fd:85:ae:34:d2:2e:b9:18:78:db:c6:24:77:2f:92:88:c8:
de:7f:48:d4:fe:7a:b6:56:0c:3d:f6:ef:2e:10:ab:cd:a7:6b:
1a:95:62:56:3f:b6:3e:7f:af:c8:36:7b:6e:b5:d0:81:0d:1d:
29:bd:3d:c6:4f:01:44:57:30:3f:b1:6b:4b:45:9e:ec:84:02:
28:98:7c:a6:f4:d6:46:78:4d:22:70:c3:d9:1e:0f:48:46:2d:
f9:d3:70:fb:71:a7:69:65:ad:3a:f9:43:34:70:b0:d9:61:5a:
7f:23:ef:ec:50:c0:5b:0e:0d:19:a8:e3:c5:0b:04:ee:f2:cb:
4b:34:0b:1f:61:2c:3a:64:1c:6a:5f:e5:b7:2d:c1:58:48:21:
86:97:b9:35:bd:88:20:97:66:7a:f6:04:1e:1f:33:99:99:08:
38:38:8c:6c:b5:29:31:df:4e:25:50:0e:19:31:34:4b:90:1f:
95:3b:10:4c:19:25:c5:b5:de:70:48:bc:4e:d7:5a:bc:35:1f:
e0:62:36:f6:cc:c3:c9:71:5e:84:1c:13:03:5e:a1:77:5a:cf:
e2:e8:8a:42:cc:f0:6a:44:eb:cc:90:9c:9d:1b:6d:ef:0d:2c:
d2:de:cd:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:38 2024 by rpki-client on console-fra.rpki-client.org