Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/247492-da0f-4d43-b262-d2c29f1981ff/1/TdWzOC-X1fHjCL07PBa9ISBW-Gs.roa
File: TdWzOC-X1fHjCL07PBa9ISBW-Gs.roa (raw, json)
Hash identifier: nNwG6oJQ/Ijf26AwYksBw/P8bnETeSH1Azuzwxa98n4=
Subject key identifier: 4D:D5:B3:38:2F:97:D5:F1:E3:08:BD:3B:3C:16:BD:21:20:56:F8:6B
Certificate issuer: /CN=0d8f95c3875d66b069042196606c00d9f96fd4cb
Certificate serial: 018CC348F62FEA0E21E6A8EA82D961B79647
Authority key identifier: 0D:8F:95:C3:87:5D:66:B0:69:04:21:96:60:6C:00:D9:F9:6F:D4:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DY-Vw4ddZrBpBCGWYGwA2flv1Ms.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/247492-da0f-4d43-b262-d2c29f1981ff/1/TdWzOC-X1fHjCL07PBa9ISBW-Gs.roa
Signing time: Mon 01 Jan 2024 04:29:47 +0000
ROA not before: Mon 01 Jan 2024 04:29:47 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 62240
IP address blocks: 193.228.131.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:48:f6:2f:ea:0e:21:e6:a8:ea:82:d9:61:b7:96:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d8f95c3875d66b069042196606c00d9f96fd4cb
Validity
Not Before: Jan 1 04:29:47 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4dd5b3382f97d5f1e308bd3b3c16bd212056f86b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:bd:0a:b1:af:21:8b:cc:be:f9:03:45:73:c6:
9d:48:ed:32:ac:7f:ef:c0:91:a7:97:e8:d0:a1:bd:
71:b6:1f:0c:c4:42:d0:c1:d4:b5:b2:fd:2e:88:c8:
e8:61:1d:ac:2b:26:c6:7a:bb:80:f9:74:95:08:9b:
d4:b7:64:d5:51:f1:74:b6:bf:30:07:02:5e:a0:bd:
82:4e:a3:40:5d:04:e6:e7:16:4e:85:df:58:b7:d1:
60:6b:5d:f7:7a:41:8c:46:cf:75:38:b7:48:71:64:
01:01:e1:a9:df:58:e5:aa:16:19:c2:3e:65:f4:54:
79:45:d2:25:65:41:31:fd:15:5e:67:1c:4b:93:d8:
2f:f4:e5:d6:09:71:15:4d:61:07:f0:3e:4b:56:ba:
4a:c7:4d:57:11:41:bb:1e:a2:2b:2d:39:a9:78:16:
76:8d:7a:63:04:f9:e2:27:2f:71:0d:3a:e1:15:32:
d8:da:2e:b4:24:76:fb:77:de:c5:a8:1a:ad:28:ed:
66:af:d7:23:7b:d6:01:a6:d4:0a:70:2c:30:f4:4f:
8d:e5:8d:fc:59:7d:bc:24:dd:62:cf:a1:38:19:df:
b8:65:41:5e:31:eb:21:f0:04:db:c5:5e:73:16:8b:
c9:d0:5e:57:c6:e4:38:37:41:72:e6:e9:7f:a0:55:
9e:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:D5:B3:38:2F:97:D5:F1:E3:08:BD:3B:3C:16:BD:21:20:56:F8:6B
X509v3 Authority Key Identifier:
keyid:0D:8F:95:C3:87:5D:66:B0:69:04:21:96:60:6C:00:D9:F9:6F:D4:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DY-Vw4ddZrBpBCGWYGwA2flv1Ms.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/247492-da0f-4d43-b262-d2c29f1981ff/1/TdWzOC-X1fHjCL07PBa9ISBW-Gs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/247492-da0f-4d43-b262-d2c29f1981ff/1/DY-Vw4ddZrBpBCGWYGwA2flv1Ms.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.228.131.0/24
Signature Algorithm: sha256WithRSAEncryption
96:de:6d:d3:48:88:9a:f3:70:3c:2b:48:8a:bb:52:80:b2:66:
d7:e4:4b:83:89:a7:ae:b3:68:32:63:cc:d4:4f:f7:58:c3:52:
93:b1:00:aa:e7:2a:6f:66:93:74:ba:f2:4a:e9:3f:f6:0d:e6:
c6:0d:da:a7:41:9d:ac:d4:8d:59:59:b2:4a:4b:b0:65:93:98:
c9:89:cd:9b:60:61:6c:cc:03:ad:23:5b:74:01:81:90:23:c7:
17:d2:b2:44:84:87:cf:1c:e1:db:2c:a4:35:a8:47:32:b4:0d:
19:60:5d:69:c7:19:7f:4d:a1:9e:2a:1d:c4:d2:3e:7f:a8:14:
97:bc:fa:a2:8a:44:a8:85:c7:4b:b6:c2:ae:b1:8d:36:20:2a:
54:28:21:12:f4:2f:96:c7:ec:9f:00:94:60:ec:a0:3e:df:72:
f5:fb:09:ca:ef:cd:97:97:10:21:bc:3c:7f:ea:c0:99:ef:2b:
78:94:d7:b4:aa:4d:08:4e:2d:2c:f1:eb:1a:c7:34:a1:2f:b6:
bd:7a:21:c5:ba:86:d0:4f:8f:34:8b:2e:21:18:e9:0b:36:df:
b7:e2:64:15:d2:d4:53:8a:c8:db:df:8a:76:9a:38:c0:e5:96:
5b:d3:6d:f5:f5:12:9f:08:90:22:3e:1b:61:55:90:13:fb:6f:
be:b5:9a:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Feb 9 18:37:58 2024 by rpki-client on console-fra.rpki-client.org