Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/e350a3-2987-43f9-9c3b-c0449a380c94/1/1O4mgWgQV9P0ifE1ljACcIFzXVI.roa
File: 1O4mgWgQV9P0ifE1ljACcIFzXVI.roa (raw, json)
Hash identifier: VR/h8U37F+1AkgN7lonulMfjKNtWCLnHsBgbB8/iqVA=
Subject key identifier: D4:EE:26:81:68:10:57:D3:F4:89:F1:35:96:30:02:70:81:73:5D:52
Certificate issuer: /CN=ad8ff0f5116e5f6049dea23cef4c77ff3cc7cece
Certificate serial: 05CD4575
Authority key identifier: AD:8F:F0:F5:11:6E:5F:60:49:DE:A2:3C:EF:4C:77:FF:3C:C7:CE:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rY_w9RFuX2BJ3qI870x3_zzHzs4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/e350a3-2987-43f9-9c3b-c0449a380c94/1/1O4mgWgQV9P0ifE1ljACcIFzXVI.roa
Signing time: Sat 01 Jan 2022 10:54:36 +0000
ROA not before: Sat 01 Jan 2022 10:54:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60268
IP address blocks: 193.19.72.0/24 maxlen: 24
193.19.73.0/24 maxlen: 24
193.19.97.0/24 maxlen: 24
193.19.96.0/24 maxlen: 24
193.19.96.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 97338741 (0x5cd4575)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad8ff0f5116e5f6049dea23cef4c77ff3cc7cece
Validity
Not Before: Jan 1 10:54:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d4ee2681681057d3f489f1359630027081735d52
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:bb:48:39:ea:d9:d5:c9:92:b4:a9:95:c7:20:
83:99:dd:61:35:d2:d2:75:83:cc:7c:f9:9f:d0:17:
ea:72:da:c3:b9:a2:fc:c9:8f:c5:3a:e7:a2:8c:90:
d9:ee:2e:25:01:a4:b7:3b:35:fe:ec:36:ac:6d:a5:
cd:61:66:f1:16:68:4d:3d:b9:95:53:bd:0d:4b:71:
38:63:9e:75:1e:a0:10:6f:0b:48:c3:5b:db:67:de:
a5:1e:c0:0e:6a:b4:b4:50:31:50:0b:30:de:43:01:
3c:43:4e:92:a5:78:36:a9:4e:a2:85:cf:4c:15:51:
37:92:e1:58:c8:ea:8f:31:db:e0:07:4f:45:59:30:
30:63:94:d4:97:0d:a6:fb:b3:b5:32:93:27:30:d8:
f1:05:06:16:27:17:e8:bc:ad:92:ef:f3:e1:bd:73:
52:56:7c:69:16:b6:df:96:d0:da:5f:9b:39:89:f2:
d8:18:3a:11:14:64:4e:1c:87:12:58:6a:e5:a4:36:
a1:4a:90:19:1f:cf:2b:cc:39:f4:7b:09:06:ee:fa:
b4:66:a9:03:f4:48:e5:a8:0d:47:42:b2:7a:dd:2a:
14:94:c2:4e:d3:80:ba:20:f7:56:c8:6c:4b:38:06:
e3:ed:55:64:e9:c5:98:ca:de:dc:fd:40:71:b8:67:
ff:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:EE:26:81:68:10:57:D3:F4:89:F1:35:96:30:02:70:81:73:5D:52
X509v3 Authority Key Identifier:
keyid:AD:8F:F0:F5:11:6E:5F:60:49:DE:A2:3C:EF:4C:77:FF:3C:C7:CE:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rY_w9RFuX2BJ3qI870x3_zzHzs4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/e350a3-2987-43f9-9c3b-c0449a380c94/1/1O4mgWgQV9P0ifE1ljACcIFzXVI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/e350a3-2987-43f9-9c3b-c0449a380c94/1/rY_w9RFuX2BJ3qI870x3_zzHzs4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.19.72.0/23
193.19.96.0/23
Signature Algorithm: sha256WithRSAEncryption
1e:da:54:bb:9a:57:21:0e:32:f6:b2:3a:19:53:a9:68:9f:15:
68:8b:97:94:df:5d:4b:26:38:b3:4c:55:a3:0f:9a:0d:fa:19:
d1:7a:07:63:27:71:2e:e7:f8:b5:21:77:a6:8a:cd:47:28:e8:
34:db:49:85:88:62:92:f8:49:b8:e7:6e:ae:65:1e:51:ed:ec:
b0:dc:9a:45:25:5d:01:0a:71:b2:8d:ab:a0:2e:00:34:8d:aa:
e8:26:68:d4:e4:20:26:c7:24:6f:c8:07:55:9c:a3:87:2d:ac:
d4:50:c1:d9:52:df:bc:b4:ec:ff:48:65:a6:8c:95:cb:f7:8a:
bb:06:d3:92:6d:8d:84:83:06:3c:cb:6c:7f:cf:a0:f4:b1:fd:
3c:38:a8:ab:11:c3:a9:eb:f6:50:ba:3b:9a:04:84:09:c9:0e:
f9:19:4f:a8:75:b8:a3:b6:b1:a8:cc:93:e6:4a:99:60:68:05:
16:c0:e6:fa:19:82:db:ea:2b:83:f2:30:60:fd:15:93:fa:77:
a6:ee:88:73:2c:63:80:e5:5c:06:35:29:56:21:30:52:b9:70:
fc:8c:7a:c0:d2:48:3b:cc:69:a8:ce:58:cf:b6:9a:7b:07:c7:
f9:d0:b8:80:6e:98:9e:d9:23:f4:87:0d:6a:f1:bb:cc:e2:1e:
ed:6e:96:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:34 2023 by rpki-client on console-ams.rpki-client.org