Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/fb147f-04ee-48f0-807d-fe3db5253eb0/1/UlCdxQ4WifGfQaMDwpsd6K8sJs0.roa
File: UlCdxQ4WifGfQaMDwpsd6K8sJs0.roa (raw, json)
Hash identifier: cxDmoXPQJKScCvMtumrY9cNKMbwAsSR47AK9vB361PE=
Subject key identifier: 52:50:9D:C5:0E:16:89:F1:9F:41:A3:03:C2:9B:1D:E8:AF:2C:26:CD
Certificate issuer: /CN=ba25763dd7f2965b46f81dc89fb84557c8a69a73
Certificate serial: 01B413
Authority key identifier: BA:25:76:3D:D7:F2:96:5B:46:F8:1D:C8:9F:B8:45:57:C8:A6:9A:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uiV2PdfylltG-B3In7hFV8immnM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/fb147f-04ee-48f0-807d-fe3db5253eb0/1/UlCdxQ4WifGfQaMDwpsd6K8sJs0.roa
Signing time: Wed 09 Mar 2022 09:42:08 +0000
ROA not before: Wed 09 Mar 2022 09:42:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15404
IP address blocks: 193.23.152.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 111635 (0x1b413)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba25763dd7f2965b46f81dc89fb84557c8a69a73
Validity
Not Before: Mar 9 09:42:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=52509dc50e1689f19f41a303c29b1de8af2c26cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:a1:d8:81:20:db:3a:d4:2e:ae:67:d6:fe:29:
4c:34:19:f8:ac:ca:d3:e4:87:2a:da:1d:04:8d:c7:
27:79:e7:49:1a:51:ba:d8:0f:57:27:44:40:d5:64:
9d:cc:f6:4e:b5:02:9d:99:4c:e3:31:08:f2:67:9d:
19:6b:9e:f5:9c:ef:b0:95:f4:c8:d2:3c:db:9a:f9:
e4:cf:09:f3:e0:b5:66:80:22:ba:29:75:94:71:32:
59:a9:fd:e8:09:1e:10:6c:cf:af:04:c0:0d:3d:74:
c0:5c:9e:4f:97:f6:83:e7:51:55:17:5c:5d:f9:dd:
e5:0c:c9:35:0a:f7:fc:9f:4a:0a:66:c2:ad:10:48:
2e:f4:96:e9:ff:12:95:c1:4d:78:e8:39:60:51:a0:
0e:22:1b:ba:ef:a8:ae:b5:e4:c1:12:08:0d:6d:dc:
63:c2:1f:8a:85:7d:27:5d:4b:a9:82:5d:b5:9a:8b:
45:ac:15:be:27:4e:fc:ea:21:32:67:70:36:37:60:
fb:14:c0:3a:40:28:2a:ba:9b:05:34:2a:25:f5:bd:
f7:14:6a:e2:8c:bf:a9:9a:37:11:40:3c:d2:aa:0e:
e2:75:76:34:b7:52:0b:d8:cf:56:be:52:bb:1f:9d:
54:fb:e5:6e:93:05:84:39:d3:e0:7c:2d:48:c5:86:
d9:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:50:9D:C5:0E:16:89:F1:9F:41:A3:03:C2:9B:1D:E8:AF:2C:26:CD
X509v3 Authority Key Identifier:
keyid:BA:25:76:3D:D7:F2:96:5B:46:F8:1D:C8:9F:B8:45:57:C8:A6:9A:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uiV2PdfylltG-B3In7hFV8immnM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/fb147f-04ee-48f0-807d-fe3db5253eb0/1/UlCdxQ4WifGfQaMDwpsd6K8sJs0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/fb147f-04ee-48f0-807d-fe3db5253eb0/1/uiV2PdfylltG-B3In7hFV8immnM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.23.152.0/22
Signature Algorithm: sha256WithRSAEncryption
3a:50:98:33:ba:2d:85:96:af:14:59:b7:4e:5d:98:6f:2f:a8:
90:6d:53:8c:58:53:6d:7b:8f:6e:42:a0:d7:97:f5:e9:aa:d2:
31:02:91:5d:18:f9:6d:2e:e3:90:03:4f:45:89:55:37:bf:7a:
84:55:18:09:e6:9c:e6:39:14:1f:59:c8:e0:94:46:0d:0e:55:
98:32:28:fb:3a:4c:8a:95:18:44:05:49:fa:db:d9:a2:b2:80:
07:12:91:d5:26:f1:d5:d4:78:ba:90:44:3f:10:c7:4d:5a:04:
3c:c0:44:a2:d4:c1:23:2d:2a:5e:63:d7:d5:15:c7:f7:b7:e6:
32:b8:c8:21:be:82:78:3c:cb:73:37:f5:c7:61:9b:c9:6c:92:
71:21:3d:b6:e0:c0:f0:f7:4a:f8:56:86:a4:25:1b:09:be:ab:
ff:58:4d:16:74:3e:3f:34:03:8f:50:7f:c2:b3:93:5e:3d:5f:
9c:21:b9:7a:33:92:ef:f3:2f:05:f8:5b:39:0a:6d:e1:e1:71:
df:86:e8:9a:13:25:e0:af:3d:d2:bf:d5:a2:03:69:30:cd:cc:
5d:b5:aa:e2:af:41:21:7a:1a:3a:19:33:8f:a7:3d:aa:0b:1e:
d0:93:15:a7:72:81:01:12:7a:bf:b9:fc:76:f8:fb:81:57:17:
b1:cf:89:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:01:40 2024 by rpki-client on console-ams.rpki-client.org