Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/193c71-c94a-416f-a186-416664f01a2c/1/MTNOy7b7UXBuDhTWFdLoGz3xI7M.roa
File: MTNOy7b7UXBuDhTWFdLoGz3xI7M.roa (raw, json)
Hash identifier: 4ZX6fQMS98Elkm3fvvEp0vmRVivITzZ9Q5iSo62oSc8=
Subject key identifier: 31:33:4E:CB:B6:FB:51:70:6E:0E:14:D6:15:D2:E8:1B:3D:F1:23:B3
Certificate issuer: /CN=fb1157e81b7c9e43360a1cb50a31401175921808
Certificate serial: 01856D13E0EA04F8362B433F1BF37730EB2A
Authority key identifier: FB:11:57:E8:1B:7C:9E:43:36:0A:1C:B5:0A:31:40:11:75:92:18:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-xFX6Bt8nkM2Chy1CjFAEXWSGAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/193c71-c94a-416f-a186-416664f01a2c/1/MTNOy7b7UXBuDhTWFdLoGz3xI7M.roa
Signing time: Sun 01 Jan 2023 11:24:57 +0000
ROA not before: Sun 01 Jan 2023 11:24:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 136923
IP address blocks: 193.108.56.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:13:e0:ea:04:f8:36:2b:43:3f:1b:f3:77:30:eb:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fb1157e81b7c9e43360a1cb50a31401175921808
Validity
Not Before: Jan 1 11:24:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=31334ecbb6fb51706e0e14d615d2e81b3df123b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:57:2c:46:0d:70:ca:45:b5:76:5e:f2:eb:82:
b2:31:d8:6a:6c:ad:13:46:d4:5e:37:ac:19:83:26:
d3:2b:79:6f:cc:40:31:dd:4d:02:1a:5a:3c:f0:4c:
6e:fb:f4:4c:fd:05:17:7d:61:28:5a:89:4c:69:d6:
54:b0:5d:76:fe:4e:73:c9:00:b8:c1:02:87:11:a8:
e8:55:7a:ef:8e:b9:d4:3c:f1:7c:39:33:0f:af:6d:
07:48:19:d1:a8:3f:33:83:77:5e:a5:b5:3f:69:b6:
57:fb:8c:fe:20:76:f4:52:e2:f4:33:bb:9d:8d:42:
0a:64:7e:74:30:a4:85:b7:8d:28:3c:c3:8b:3d:18:
6b:1a:ad:dd:44:a9:65:c2:5e:95:5f:ff:18:ab:98:
13:00:86:97:e0:f7:e9:14:89:85:46:72:5a:16:6c:
28:21:e9:3d:93:ea:78:c1:b1:2d:77:9d:a6:1c:0e:
dd:b6:38:6e:62:d0:eb:0a:30:fc:16:06:ab:0d:ed:
50:a5:c0:14:74:8b:fc:2c:8e:4b:f0:19:8f:bd:9a:
42:2e:87:7e:ec:2f:fe:53:2d:9d:7d:bf:d2:90:51:
5d:9d:43:4f:d2:6a:22:1d:77:64:76:1b:8a:6d:ba:
16:ee:73:20:fb:1b:8f:fa:7c:10:34:5c:09:26:bd:
2c:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:33:4E:CB:B6:FB:51:70:6E:0E:14:D6:15:D2:E8:1B:3D:F1:23:B3
X509v3 Authority Key Identifier:
keyid:FB:11:57:E8:1B:7C:9E:43:36:0A:1C:B5:0A:31:40:11:75:92:18:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-xFX6Bt8nkM2Chy1CjFAEXWSGAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/193c71-c94a-416f-a186-416664f01a2c/1/MTNOy7b7UXBuDhTWFdLoGz3xI7M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/193c71-c94a-416f-a186-416664f01a2c/1/1-xFX6Bt8nkM2Chy1CjFAEXWSGAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.108.56.0/24
Signature Algorithm: sha256WithRSAEncryption
52:e7:95:aa:96:d1:4c:f7:70:18:0e:b0:0b:4c:94:a0:0c:4c:
49:39:b2:07:e8:aa:5a:31:b3:13:c0:be:f7:d6:d7:05:c0:d2:
aa:9e:60:03:73:4a:ac:d4:f4:fd:1b:64:08:b8:c7:f9:c0:ff:
e9:48:17:a9:7a:a5:ce:e4:e5:e9:09:02:da:b8:77:38:62:00:
c9:46:db:00:76:f8:66:45:5e:fe:d2:73:e1:9a:78:1b:6b:9c:
18:f9:b8:eb:d4:45:2c:d9:53:ca:de:b7:61:81:a3:33:c9:d0:
02:d5:eb:70:c8:88:94:b8:d0:b6:b4:92:c8:a9:12:96:bb:dc:
29:f9:66:cc:70:11:9d:48:00:10:ec:1c:59:9d:33:bc:6d:7c:
92:85:25:3c:7d:73:41:92:8e:d8:5e:f9:e5:e7:71:f2:2e:f3:
28:18:f8:6d:dc:82:26:1f:bf:71:36:5f:a0:4d:9b:8b:5d:cf:
a1:84:7b:03:07:dc:ce:55:1b:95:19:e2:11:44:fc:e0:98:7a:
5f:c9:bd:b7:47:a3:7c:72:cf:52:90:7d:b0:0f:f0:6e:10:d5:
fb:ca:55:89:d4:ef:1e:cf:cc:74:8d:36:59:c4:32:95:8e:e7:
98:73:47:d0:97:9b:1e:97:e1:23:13:a5:ba:4a:37:95:d3:d7:
e9:51:92:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:15:00 2025 by rpki-client