Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/193c71-c94a-416f-a186-416664f01a2c/1/d97DgPU89Hue3ve2zvVsmzJbzNQ.roa
File: d97DgPU89Hue3ve2zvVsmzJbzNQ.roa (raw, json)
Hash identifier: nJvUC21VG/WOwNTN5vviW04Px5x7BX7OT7g60xAv2VE=
Subject key identifier: 77:DE:C3:80:F5:3C:F4:7B:9E:DE:F7:B6:CE:F5:6C:9B:32:5B:CC:D4
Certificate issuer: /CN=fb1157e81b7c9e43360a1cb50a31401175921808
Certificate serial: 01856D13DE320A03511E3A81F602B0EBC346
Authority key identifier: FB:11:57:E8:1B:7C:9E:43:36:0A:1C:B5:0A:31:40:11:75:92:18:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-xFX6Bt8nkM2Chy1CjFAEXWSGAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/193c71-c94a-416f-a186-416664f01a2c/1/d97DgPU89Hue3ve2zvVsmzJbzNQ.roa
Signing time: Sun 01 Jan 2023 11:24:56 +0000
ROA not before: Sun 01 Jan 2023 11:24:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60721
IP address blocks: 193.108.59.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:13:de:32:0a:03:51:1e:3a:81:f6:02:b0:eb:c3:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fb1157e81b7c9e43360a1cb50a31401175921808
Validity
Not Before: Jan 1 11:24:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=77dec380f53cf47b9edef7b6cef56c9b325bccd4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:bb:93:96:65:8d:e4:05:4a:b3:1c:c3:bf:9b:
7d:a3:df:15:fd:16:65:34:45:cc:d6:9e:57:30:4e:
c9:b4:89:e4:7a:83:61:b8:2e:91:b5:61:9f:fb:c4:
cb:5e:fc:20:94:61:b5:f8:11:a4:66:80:db:fa:12:
c7:36:7d:44:5e:56:a9:b6:06:0a:85:65:dd:b4:ab:
0e:6e:09:06:92:77:75:d4:04:d3:59:e8:02:04:a4:
97:b2:54:66:a9:2b:c5:7f:03:9e:63:94:70:f3:ac:
ea:f7:b2:41:98:58:fa:5c:38:af:05:99:96:43:30:
8f:ac:f4:37:d1:0f:ee:2a:b8:32:ec:e1:21:e7:20:
89:f4:12:dc:36:36:d3:35:78:e5:3f:cc:58:71:5a:
91:81:26:7a:9d:82:9a:48:e8:77:01:09:91:5f:75:
9f:fd:d8:1d:a3:34:68:fe:61:32:bf:d9:57:ec:fb:
2f:44:e4:5e:d5:11:eb:77:36:30:94:e0:2b:b3:26:
51:da:f5:eb:0c:1e:af:94:f9:72:b1:89:b7:cf:a5:
fb:8b:88:ba:dc:a2:1e:f6:ca:9d:e0:bd:2c:33:ed:
e5:1a:fa:20:f7:6c:77:b7:6c:41:62:29:6c:82:e7:
ee:8c:16:88:46:75:2d:4c:ed:43:18:85:70:a8:a5:
0a:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:DE:C3:80:F5:3C:F4:7B:9E:DE:F7:B6:CE:F5:6C:9B:32:5B:CC:D4
X509v3 Authority Key Identifier:
keyid:FB:11:57:E8:1B:7C:9E:43:36:0A:1C:B5:0A:31:40:11:75:92:18:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-xFX6Bt8nkM2Chy1CjFAEXWSGAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/193c71-c94a-416f-a186-416664f01a2c/1/d97DgPU89Hue3ve2zvVsmzJbzNQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/193c71-c94a-416f-a186-416664f01a2c/1/1-xFX6Bt8nkM2Chy1CjFAEXWSGAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.108.59.0/24
Signature Algorithm: sha256WithRSAEncryption
d1:64:f6:bf:98:05:0c:dc:b9:4d:b2:2e:08:46:84:7f:89:ea:
b7:f2:7b:8e:c8:04:ef:0c:ea:5f:c7:a6:5c:13:17:5a:f6:c0:
6f:b3:f4:b5:3b:92:b3:e6:34:e6:df:47:c7:3d:5e:52:e7:da:
2a:02:a5:c0:80:56:a6:b4:ff:7c:2a:2d:fa:89:c4:c0:12:c4:
05:a5:87:ea:a0:31:f4:da:67:d5:9c:fd:ea:ae:5b:2a:a4:66:
34:5f:61:5a:5e:8c:fa:7c:12:3a:70:dd:6a:98:24:ce:e8:ce:
f0:49:70:f9:06:35:4e:e3:a6:a9:b4:51:80:cd:e8:fd:7f:0f:
29:31:de:f7:24:64:6b:e9:7b:48:a4:17:f5:c2:5d:4b:58:f9:
fe:23:69:9a:1e:4c:86:22:cc:63:2d:f4:73:09:b5:54:41:86:
fe:20:62:f6:c3:80:fe:31:f3:d0:b0:53:42:93:86:59:bd:d2:
6a:7e:43:08:78:d1:7e:21:ec:0a:d6:31:37:cb:8f:ed:8d:59:
5b:c4:71:09:9c:bf:f0:46:ef:c4:b3:dc:ba:02:aa:2f:27:39:
18:ba:4b:e9:67:f1:ec:49:36:61:bc:fd:bf:d1:f9:fa:65:e6:
b5:bf:4c:74:bf:e2:be:dd:53:b3:0d:df:1a:9d:05:a7:cc:00:
86:0a:5e:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:17:09 2025 by rpki-client