Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/287cd2-f1d8-44a9-bed2-ee95b6cc3474/1/59cKfcz0Ya4KHxnGKIOonDSH1J8.roa
File: 59cKfcz0Ya4KHxnGKIOonDSH1J8.roa (raw, json)
Hash identifier: wMCNU23ThLgA53OHqzbETqbGYM8mHwwhtOu0XtVHWwM=
Subject key identifier: E7:D7:0A:7D:CC:F4:61:AE:0A:1F:19:C6:28:83:A8:9C:34:87:D4:9F
Certificate issuer: /CN=94e59d245d150dc38c4896263dcbdcbbd67470a7
Certificate serial: 019131B380BF21EA12EC0EFE89D60B877707
Authority key identifier: 94:E5:9D:24:5D:15:0D:C3:8C:48:96:26:3D:CB:DC:BB:D6:74:70:A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lOWdJF0VDcOMSJYmPcvcu9Z0cKc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/287cd2-f1d8-44a9-bed2-ee95b6cc3474/1/59cKfcz0Ya4KHxnGKIOonDSH1J8.roa
Signing time: Thu 08 Aug 2024 11:15:33 +0000
ROA not before: Thu 08 Aug 2024 11:15:33 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 193.228.139.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:31:b3:80:bf:21:ea:12:ec:0e:fe:89:d6:0b:87:77:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94e59d245d150dc38c4896263dcbdcbbd67470a7
Validity
Not Before: Aug 8 11:15:33 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e7d70a7dccf461ae0a1f19c62883a89c3487d49f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:17:76:e8:d7:0d:0f:19:62:e2:f8:ea:d2:0e:
e1:7c:b4:41:28:b8:39:f2:4c:18:fe:3d:b9:a0:b4:
30:34:bb:35:92:53:93:bc:59:e1:2d:84:24:e3:74:
1e:98:0f:ee:27:9a:fe:c5:79:94:db:a1:f1:b2:81:
3e:fb:e2:05:0c:14:d5:ff:4a:43:c0:1d:2a:12:b2:
13:c4:a6:21:93:98:42:d0:46:00:b8:39:cf:12:1f:
0a:17:0e:8b:a0:b5:01:11:4e:21:84:c3:b7:44:5a:
2e:6e:c3:c5:e2:10:53:56:54:01:46:fe:f3:89:8e:
e3:62:31:63:14:ed:dd:48:c8:66:2c:4f:22:0e:0f:
ff:6e:25:d3:e3:e4:b1:cf:01:0c:19:db:cb:ee:86:
a0:dc:fd:83:5e:88:be:02:38:44:81:61:3c:12:8d:
ac:55:78:8a:89:d4:10:64:08:43:f6:87:02:f9:d8:
7d:b3:fd:ea:b3:22:17:83:ee:2f:2d:81:73:ea:13:
f8:fe:d3:d8:c9:15:84:27:e3:da:5e:e6:a1:a8:9a:
d4:9e:fc:e4:dc:2f:be:c1:ef:45:0e:40:1a:d2:99:
b6:bf:91:15:4a:80:21:a0:54:1a:c9:65:a4:9a:fc:
cd:40:06:ec:40:41:c1:2d:f6:e2:89:a1:1e:57:40:
1a:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:D7:0A:7D:CC:F4:61:AE:0A:1F:19:C6:28:83:A8:9C:34:87:D4:9F
X509v3 Authority Key Identifier:
keyid:94:E5:9D:24:5D:15:0D:C3:8C:48:96:26:3D:CB:DC:BB:D6:74:70:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lOWdJF0VDcOMSJYmPcvcu9Z0cKc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/287cd2-f1d8-44a9-bed2-ee95b6cc3474/1/59cKfcz0Ya4KHxnGKIOonDSH1J8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/287cd2-f1d8-44a9-bed2-ee95b6cc3474/1/lOWdJF0VDcOMSJYmPcvcu9Z0cKc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.228.139.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:d0:68:b1:08:92:20:b3:92:33:d0:ac:3e:27:84:82:eb:ff:
13:c5:7a:8f:7f:e6:11:8e:60:9a:1a:96:bd:61:34:75:84:6c:
0e:ba:ca:f7:5c:6e:8b:fb:73:01:58:bb:71:23:48:8c:88:b5:
2d:52:1a:70:88:be:c4:3c:1f:3e:a7:97:31:64:47:21:87:8e:
f1:4b:9f:e7:58:92:00:08:e1:b2:01:a1:49:d0:c0:fe:eb:c4:
5b:35:ea:e3:8c:32:88:46:8c:55:9b:8d:1b:14:e1:02:7d:1e:
37:77:43:40:e1:71:fd:86:5d:6a:37:cb:00:e2:e4:14:c9:09:
68:0f:09:f7:a7:2e:bf:4c:d3:ac:8e:63:3c:7b:22:5c:38:30:
22:8d:7b:3a:c0:29:93:70:95:f1:72:f4:59:23:3c:05:49:e0:
a0:41:3d:02:28:0e:48:bb:4e:14:93:a8:ad:14:3d:1b:08:73:
fa:f7:f4:5b:cb:df:0c:ac:ec:d7:e8:9d:0a:61:7b:c2:a4:32:
59:67:0f:7d:af:89:16:f4:28:82:a9:bc:a1:e4:79:0f:f8:47:
02:1f:ae:84:5b:92:5e:e2:dd:38:e7:7a:8b:fa:1f:95:e3:8b:
86:65:2b:df:fa:27:fc:d1:1b:fa:45:58:e1:6a:7c:8d:c6:ec:
b8:84:ff:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:14:44 2025 by rpki-client