Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/041b0c-f791-4a5c-8e77-01a066f6f693/1/Ic02oOSQ3k1aGhTNjDcHiA67CaI.roa
File: Ic02oOSQ3k1aGhTNjDcHiA67CaI.roa (raw, json)
Hash identifier: SAbU57dA9ajdErXKiovxcObeyF6yAMek2Wjwfzhtmvc=
Subject key identifier: 21:CD:36:A0:E4:90:DE:4D:5A:1A:14:CD:8C:37:07:88:0E:BB:09:A2
Certificate issuer: /CN=fb4edb6baa24285394f7f1df4f6fb2ac289e82d5
Certificate serial: 01857142ECC27B6FC164EB42E20ADA4676BB
Authority key identifier: FB:4E:DB:6B:AA:24:28:53:94:F7:F1:DF:4F:6F:B2:AC:28:9E:82:D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-07ba6okKFOU9_HfT2-yrCiegtU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/041b0c-f791-4a5c-8e77-01a066f6f693/1/Ic02oOSQ3k1aGhTNjDcHiA67CaI.roa
Signing time: Mon 02 Jan 2023 06:54:49 +0000
ROA not before: Mon 02 Jan 2023 06:54:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39855
IP address blocks: 195.64.108.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:42:ec:c2:7b:6f:c1:64:eb:42:e2:0a:da:46:76:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fb4edb6baa24285394f7f1df4f6fb2ac289e82d5
Validity
Not Before: Jan 2 06:54:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=21cd36a0e490de4d5a1a14cd8c3707880ebb09a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:54:e5:fa:5d:a1:05:39:f6:37:e5:49:f2:cc:
76:cb:c9:a7:9c:1e:8c:00:9d:66:ac:ca:81:39:6c:
64:44:67:3e:4d:91:35:d7:5e:62:79:4d:e7:e4:e8:
5b:5b:43:30:d4:eb:26:8d:65:fc:09:4e:f7:47:d4:
df:45:21:3e:4b:88:a8:54:b5:a7:b2:16:6d:a4:23:
33:ee:1e:35:68:bc:51:98:5a:cc:82:64:fb:cb:a0:
e0:1f:7d:21:90:4e:d1:63:f7:5c:fd:d3:5c:d5:c4:
3a:dd:56:11:ee:93:3a:e4:be:8a:f0:ac:00:9c:e4:
64:ef:4d:ca:01:96:ff:8e:af:3f:a9:c3:cf:10:e4:
bb:9d:ec:64:ee:f3:04:50:b8:9b:7a:ee:e7:90:4d:
e5:38:89:b6:05:5b:b9:e4:eb:76:31:13:6d:47:e5:
65:03:2d:95:2f:9b:a5:24:8f:e2:c5:22:b5:8c:ad:
26:21:76:42:94:17:50:5f:0c:88:43:64:cf:d1:86:
5e:3d:8a:71:96:d6:0b:2d:ac:27:75:5e:81:fc:82:
4a:4f:57:7a:b7:d7:cc:01:ef:a0:f1:86:74:82:84:
95:b2:dc:68:37:a9:ba:83:97:53:46:d2:fb:51:f6:
c2:56:03:33:c6:c0:5b:a2:9f:22:e0:fc:7a:fc:71:
e1:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:CD:36:A0:E4:90:DE:4D:5A:1A:14:CD:8C:37:07:88:0E:BB:09:A2
X509v3 Authority Key Identifier:
keyid:FB:4E:DB:6B:AA:24:28:53:94:F7:F1:DF:4F:6F:B2:AC:28:9E:82:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-07ba6okKFOU9_HfT2-yrCiegtU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/041b0c-f791-4a5c-8e77-01a066f6f693/1/Ic02oOSQ3k1aGhTNjDcHiA67CaI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/041b0c-f791-4a5c-8e77-01a066f6f693/1/1-07ba6okKFOU9_HfT2-yrCiegtU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.64.108.0/24
Signature Algorithm: sha256WithRSAEncryption
14:02:5c:61:0a:51:c4:43:00:78:18:58:2e:13:ab:a9:e0:0d:
85:e1:d3:eb:32:2a:fc:23:fb:e6:51:b4:b1:23:a8:89:05:50:
ec:fe:97:21:1a:41:47:1d:32:0f:bc:bb:d2:ec:4e:a9:9e:62:
9f:fa:d3:39:69:24:f0:eb:bf:4f:2c:ce:b7:1a:0b:85:85:b5:
6e:4b:4c:b4:59:d9:a7:d3:8a:2e:d9:29:16:62:14:f4:20:c3:
da:7b:b7:ce:b4:f0:c6:42:ed:cf:a4:8a:6f:35:ea:91:aa:6a:
2d:86:89:e5:ce:d0:24:ec:fe:67:c6:4b:cb:39:10:39:1c:45:
fa:61:57:dc:d3:0b:2b:cb:b2:db:53:a8:1d:a5:ef:7e:79:f1:
09:ce:6e:1a:51:e2:f1:7b:d3:95:fe:9b:1d:87:39:0b:8a:1e:
c6:56:b9:d7:38:79:f4:29:f5:28:43:54:de:29:f5:31:dd:ec:
58:ea:09:31:40:0e:1f:6b:8e:11:10:31:d6:9b:19:cf:b9:ec:
8d:62:2e:e7:75:b3:3b:67:52:bc:af:c9:68:fd:2f:eb:ef:57:
cb:78:e1:d7:76:17:f4:46:07:78:5a:f6:e6:8b:a6:02:e3:1a:
57:43:c5:42:74:29:b2:48:d8:78:86:91:84:59:f4:78:6f:a4:
83:a4:2e:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:15:44 2025 by rpki-client