Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/e5a892-23f5-49fa-b6a9-a65233b3e975/1/54YteikBSHafpH2YWRP_R0AhPOI.roa
File: 54YteikBSHafpH2YWRP_R0AhPOI.roa (raw, json)
Hash identifier: VylQBb6ETLD13AU/egwX774hnO7D6GlMIftNxb3zbqk=
Subject key identifier: E7:86:2D:7A:29:01:48:76:9F:A4:7D:98:59:13:FF:47:40:21:3C:E2
Certificate issuer: /CN=72ed2fbb7213fbf32ad4c087f8b0b22cecef4fea
Certificate serial: 0185728C845FD7842ACA4C0FEB1E936E4B69
Authority key identifier: 72:ED:2F:BB:72:13:FB:F3:2A:D4:C0:87:F8:B0:B2:2C:EC:EF:4F:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cu0vu3IT-_Mq1MCH-LCyLOzvT-o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/e5a892-23f5-49fa-b6a9-a65233b3e975/1/54YteikBSHafpH2YWRP_R0AhPOI.roa
Signing time: Mon 02 Jan 2023 12:54:49 +0000
ROA not before: Mon 02 Jan 2023 12:54:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62242
IP address blocks: 193.23.28.0/24 maxlen: 24
2a04:9ac0::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:8c:84:5f:d7:84:2a:ca:4c:0f:eb:1e:93:6e:4b:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72ed2fbb7213fbf32ad4c087f8b0b22cecef4fea
Validity
Not Before: Jan 2 12:54:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e7862d7a290148769fa47d985913ff4740213ce2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:3b:69:2d:2d:77:ef:40:e7:f0:de:2c:75:14:
22:92:57:87:72:fc:31:95:b2:65:2a:c7:0b:67:2c:
33:bb:fd:de:ed:1d:5e:00:64:71:1a:2a:bf:9f:d0:
2c:43:73:12:11:2f:c9:d4:4e:bd:d9:a1:3b:4e:f8:
1c:ef:5b:c3:3d:c4:c6:f4:07:a5:26:68:fb:c7:c3:
03:db:e6:11:e1:52:25:55:1d:8a:5f:f4:f7:a2:de:
ea:36:b1:0f:4d:34:35:45:50:d2:97:d3:c2:63:e7:
b9:ad:e7:b4:11:2a:b9:d3:d1:1e:88:70:1f:3c:68:
5d:1c:84:95:3b:2f:da:67:72:34:1a:01:67:d4:91:
ce:34:7a:d7:e8:c3:61:bb:e3:79:f3:77:cf:a8:54:
ba:a9:50:e9:c7:83:a2:88:c0:bf:6c:d9:09:3d:24:
b5:45:8e:c8:06:df:c2:c1:53:b3:89:f5:b2:f0:cb:
42:8f:e4:c1:85:e6:1e:c4:54:aa:85:9d:1f:ba:ff:
d7:98:c8:7e:94:9b:78:a1:e9:47:93:18:38:fc:16:
f7:78:f4:b7:d3:56:56:50:4b:e0:5b:ba:e7:af:c1:
b6:89:87:f0:86:8a:c8:62:db:1b:03:c2:7f:ab:3d:
7e:dc:59:0f:61:93:96:c6:cb:91:0e:89:0f:26:06:
32:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:86:2D:7A:29:01:48:76:9F:A4:7D:98:59:13:FF:47:40:21:3C:E2
X509v3 Authority Key Identifier:
keyid:72:ED:2F:BB:72:13:FB:F3:2A:D4:C0:87:F8:B0:B2:2C:EC:EF:4F:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cu0vu3IT-_Mq1MCH-LCyLOzvT-o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/e5a892-23f5-49fa-b6a9-a65233b3e975/1/54YteikBSHafpH2YWRP_R0AhPOI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/e5a892-23f5-49fa-b6a9-a65233b3e975/1/cu0vu3IT-_Mq1MCH-LCyLOzvT-o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.23.28.0/24
IPv6:
2a04:9ac0::/32
Signature Algorithm: sha256WithRSAEncryption
53:72:0b:d5:4b:7b:88:c9:ec:fb:d3:f8:f7:c6:93:2d:8d:87:
24:2d:c7:9f:97:3a:0c:e1:fb:49:79:41:5b:a2:ee:0c:35:44:
88:7a:f6:f9:da:c8:f4:44:eb:02:e3:34:8b:39:81:79:fb:c8:
46:b4:ec:36:e9:9a:4c:34:18:c2:a1:c8:3b:ab:4a:74:a0:d5:
90:a0:94:00:12:80:19:6b:0c:2b:40:1d:b6:e7:16:48:dd:b3:
0f:2c:08:ab:7f:96:cc:a5:f5:74:32:90:dd:f3:ca:4b:c8:be:
be:fa:81:6d:5a:74:2c:54:96:1c:9e:62:04:2b:61:81:d3:66:
ab:00:22:56:e0:0a:81:4a:4f:29:c2:f0:67:5c:c1:65:d9:62:
11:cb:e8:9a:9f:98:f7:4c:79:93:b4:bb:87:1f:00:35:05:d5:
0a:33:6f:ae:e0:30:19:8e:02:fb:94:c7:99:d7:34:8d:18:04:
58:a1:bf:fc:7b:b8:50:e2:d6:9d:dc:b5:24:0c:50:ba:0b:bc:
14:05:72:2b:37:04:ef:4a:23:9b:eb:2f:d2:c7:77:98:df:53:
4f:c2:17:b1:05:40:2a:81:29:66:54:29:4c:d0:82:3f:fb:25:
1a:fd:db:d8:2b:59:d2:55:2d:29:01:94:b0:64:fd:62:97:de:
f9:f1:c8:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 04:41:15 2025 by rpki-client