Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/f5d3fb-c8c7-42e4-9ff8-6018faf464fb/1/BZMdhRy_OD3Qx9C-RVCl04LY2O0.roa
File: BZMdhRy_OD3Qx9C-RVCl04LY2O0.roa (raw, json)
Hash identifier: R8bqC57WvMFvJj4ca+8jykPhnQRe9FI3MErhT6AYjpw=
Subject key identifier: 05:93:1D:85:1C:BF:38:3D:D0:C7:D0:BE:45:50:A5:D3:82:D8:D8:ED
Certificate issuer: /CN=c43256a81911d13cd80c53673e0517ff225c6d08
Certificate serial: 01856C413EE9000DD0D6B8EE179ABC1301CE
Authority key identifier: C4:32:56:A8:19:11:D1:3C:D8:0C:53:67:3E:05:17:FF:22:5C:6D:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xDJWqBkR0TzYDFNnPgUX_yJcbQg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/f5d3fb-c8c7-42e4-9ff8-6018faf464fb/1/BZMdhRy_OD3Qx9C-RVCl04LY2O0.roa
Signing time: Sun 01 Jan 2023 07:34:53 +0000
ROA not before: Sun 01 Jan 2023 07:34:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1239
IP address blocks: 193.228.225.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:41:3e:e9:00:0d:d0:d6:b8:ee:17:9a:bc:13:01:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c43256a81911d13cd80c53673e0517ff225c6d08
Validity
Not Before: Jan 1 07:34:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=05931d851cbf383dd0c7d0be4550a5d382d8d8ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:85:5a:e4:a3:49:eb:37:62:88:e7:8a:7a:b9:
21:03:37:aa:6f:41:6f:df:1f:82:e1:18:58:68:9c:
a0:19:0b:94:f8:55:be:c8:e9:75:ea:85:03:3e:c7:
de:7d:2b:00:1f:7e:95:da:6f:95:aa:b7:31:c0:a4:
79:40:bb:a4:76:4a:09:4b:8f:c6:61:36:0c:ef:74:
e0:dd:ed:24:65:96:e6:23:3c:6d:da:1a:61:6a:cc:
56:a2:75:ef:57:03:a4:a4:7c:28:19:dc:ec:c5:13:
30:c1:83:18:4b:f7:57:a8:f2:e2:32:3f:a4:a1:96:
43:da:6c:ec:e8:b9:12:5b:94:30:fa:d0:ce:11:e4:
c5:c7:dd:9f:c9:ab:df:d7:23:ba:29:4b:1c:eb:52:
e3:27:92:59:49:f0:ea:84:a1:ea:f6:c4:2a:7d:5a:
28:6a:13:47:23:fb:ab:1a:f3:e6:8f:6c:f7:dc:a7:
5e:e2:51:6d:3f:d3:90:fc:e2:5b:59:c0:eb:37:c4:
94:3a:f2:8c:15:82:8c:4a:ae:b3:d1:e5:c5:48:f6:
81:f7:5b:c6:d8:b2:6e:c4:1d:ff:bf:5a:61:bd:77:
47:b4:6c:b0:9f:08:7d:80:15:b0:77:2d:4e:11:06:
19:1f:19:70:1f:10:3a:8f:34:d7:01:66:7b:95:7a:
d7:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:93:1D:85:1C:BF:38:3D:D0:C7:D0:BE:45:50:A5:D3:82:D8:D8:ED
X509v3 Authority Key Identifier:
keyid:C4:32:56:A8:19:11:D1:3C:D8:0C:53:67:3E:05:17:FF:22:5C:6D:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xDJWqBkR0TzYDFNnPgUX_yJcbQg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/f5d3fb-c8c7-42e4-9ff8-6018faf464fb/1/BZMdhRy_OD3Qx9C-RVCl04LY2O0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/f5d3fb-c8c7-42e4-9ff8-6018faf464fb/1/xDJWqBkR0TzYDFNnPgUX_yJcbQg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.228.225.0/24
Signature Algorithm: sha256WithRSAEncryption
ce:ec:42:96:cf:d0:cc:23:7f:dc:df:b6:c6:5a:a3:ed:9e:79:
58:3b:a0:bc:2f:65:0e:e6:9d:10:d9:9b:e8:93:f6:ec:55:f2:
ec:af:b0:0b:e6:b9:74:9f:b7:bf:c5:e0:55:da:60:ac:14:b9:
5c:9d:1e:77:57:98:9f:58:3a:56:ce:ec:be:c5:50:7d:ae:c9:
d9:50:38:bf:18:60:dc:05:6d:0c:6e:5e:86:c1:61:6e:28:1b:
57:93:c4:8a:0f:32:46:f8:44:be:b7:07:93:a3:25:c3:b5:34:
69:ca:2e:03:2b:95:83:8f:b7:60:e6:fd:43:0e:21:e7:ca:8f:
44:ff:00:9a:8d:d9:1a:e4:09:54:6c:5d:f9:9c:87:37:e0:d3:
29:67:65:b5:ce:14:31:5c:b0:1e:de:ae:2c:3b:3a:c6:13:10:
4d:ba:02:50:68:ff:da:3c:52:4c:1e:c4:44:79:39:0a:21:21:
2d:4d:98:ea:c5:5a:a3:61:06:37:36:77:7b:48:8a:fc:10:4f:
5a:c7:45:36:ee:7b:5f:91:a0:50:44:37:e6:9f:0b:fd:4c:a6:
9a:01:e0:97:20:55:b5:7d:52:11:f8:4e:d1:95:39:0b:57:65:
bb:30:63:5b:fe:fe:64:98:19:42:da:1b:8b:5e:61:21:75:88:
3b:6a:5a:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:41 2023 by rpki-client on console-ams.rpki-client.org