Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/097111-3098-4cf7-ac0f-9f7e0f862f1e/1/IYrz6Mf48ktsvVu22vwVS5zXuIU.roa
File: IYrz6Mf48ktsvVu22vwVS5zXuIU.roa (raw, json)
Hash identifier: HkLjb3ITipzTMFOhgPU21NFCFSDi5VPeLjYyFqXpwLE=
Subject key identifier: 21:8A:F3:E8:C7:F8:F2:4B:6C:BD:5B:B6:DA:FC:15:4B:9C:D7:B8:85
Certificate issuer: /CN=0d4ee193b301665b56f6780f225fd44d144093af
Certificate serial: 018C674CF6A670756C2CCE54FF399871C6AE
Authority key identifier: 0D:4E:E1:93:B3:01:66:5B:56:F6:78:0F:22:5F:D4:4D:14:40:93:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DU7hk7MBZltW9ngPIl_UTRRAk68.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/097111-3098-4cf7-ac0f-9f7e0f862f1e/1/IYrz6Mf48ktsvVu22vwVS5zXuIU.roa
Signing time: Thu 14 Dec 2023 07:49:06 +0000
ROA not before: Thu 14 Dec 2023 07:49:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12833
IP address blocks: 193.236.100.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:67:4c:f6:a6:70:75:6c:2c:ce:54:ff:39:98:71:c6:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d4ee193b301665b56f6780f225fd44d144093af
Validity
Not Before: Dec 14 07:49:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=218af3e8c7f8f24b6cbd5bb6dafc154b9cd7b885
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:8a:bf:1e:2a:e0:8b:4a:dc:fe:55:d8:cf:34:
c2:2c:99:fb:c6:0e:a1:1b:ab:3d:6b:ae:62:17:52:
2e:aa:c1:73:fa:25:40:56:9f:cb:8e:db:86:97:a4:
45:0e:dc:92:67:52:48:7e:7d:08:fd:dd:c9:c2:12:
2b:26:0f:e6:90:70:f5:7b:1e:61:05:00:ed:6b:80:
0e:67:69:cd:35:51:65:1d:a4:31:36:87:0d:02:27:
a1:f4:c9:16:08:89:96:50:c5:b3:08:42:db:83:81:
44:46:2d:35:4c:9e:c1:2b:52:db:c9:94:22:a5:e1:
bf:aa:20:1d:31:54:9f:59:6c:92:d3:57:f8:e5:4f:
11:03:89:3f:03:1d:27:1e:ce:a8:2e:d1:c5:cb:2c:
e5:dd:5b:05:eb:24:9a:9e:0b:ba:fd:29:a9:6f:a2:
a7:ac:8f:04:4b:f2:18:98:ed:73:83:25:ab:74:1c:
0b:ed:8f:c3:ab:22:d4:1e:66:92:e2:a2:46:ab:a0:
55:b5:f2:58:59:c8:0e:ad:ef:7e:fa:94:49:d9:f1:
a2:ff:61:93:12:e7:8a:2a:9d:14:45:b4:db:55:8c:
22:b8:e9:90:7b:34:ac:1d:d7:b7:d3:e1:d5:06:bb:
dd:b7:e4:a1:20:e2:d3:17:20:f3:aa:90:e6:72:fe:
16:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:8A:F3:E8:C7:F8:F2:4B:6C:BD:5B:B6:DA:FC:15:4B:9C:D7:B8:85
X509v3 Authority Key Identifier:
keyid:0D:4E:E1:93:B3:01:66:5B:56:F6:78:0F:22:5F:D4:4D:14:40:93:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DU7hk7MBZltW9ngPIl_UTRRAk68.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/097111-3098-4cf7-ac0f-9f7e0f862f1e/1/IYrz6Mf48ktsvVu22vwVS5zXuIU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/097111-3098-4cf7-ac0f-9f7e0f862f1e/1/DU7hk7MBZltW9ngPIl_UTRRAk68.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.236.100.0/23
Signature Algorithm: sha256WithRSAEncryption
50:43:a9:0a:53:0b:51:45:4c:5b:25:e1:4b:87:6a:b9:c8:47:
1b:f8:d6:db:6a:04:b5:6b:51:96:94:77:15:f0:0f:23:d2:98:
49:81:d1:32:56:c7:cc:a5:b3:2c:4c:57:ea:56:d3:09:c1:5b:
f9:eb:6a:98:46:3a:25:42:89:f6:cc:66:03:bc:b6:69:c2:b1:
8d:f0:4e:75:34:6d:9d:60:18:4a:57:4a:7c:a6:42:8e:40:4f:
2d:42:9d:f9:6f:10:92:b6:73:f0:f0:f9:51:89:e5:93:d6:69:
21:d9:d2:80:80:13:a1:c9:be:d0:c4:60:50:be:e8:d6:e9:7b:
2d:99:e9:f3:56:98:a1:a7:6a:3c:d6:b9:ba:b3:07:3f:9b:e4:
cb:e5:c2:52:5f:63:7f:02:61:d0:5d:f6:50:9e:bb:a3:70:25:
06:65:9d:62:e4:4a:2f:09:6b:c3:1b:d4:69:1a:c7:4f:6f:f6:
95:81:54:df:d2:c0:76:e2:6a:72:bd:ec:67:f2:7f:90:24:e6:
3b:e0:a2:bf:f7:37:72:80:e6:48:51:7f:56:45:c3:5a:43:76:
89:b1:3f:84:1d:5f:ee:f6:80:0f:53:4f:68:f3:26:cf:31:02:
4b:13:4c:67:da:07:40:7a:eb:5c:e0:b8:f0:f0:b7:f0:eb:48:
e0:90:3f:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 01:22:43 2025 by rpki-client