Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/d281cd-ef77-4b0a-bd0c-6f87b96de0db/1/Hs3w-NYm4eV3fZ2hevvsNVyrzDg.roa
File: Hs3w-NYm4eV3fZ2hevvsNVyrzDg.roa (raw, json)
Hash identifier: TCri0t2otQiKOIrFaXejMvdrBeHnCtJ3lFB+Fw8m3i0=
Subject key identifier: 1E:CD:F0:F8:D6:26:E1:E5:77:7D:9D:A1:7A:FB:EC:35:5C:AB:CC:38
Certificate issuer: /CN=b15e52fc773614a56fb83d8c883f9d7f913db87b
Certificate serial: 0A7DD9EC
Authority key identifier: B1:5E:52:FC:77:36:14:A5:6F:B8:3D:8C:88:3F:9D:7F:91:3D:B8:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sV5S_Hc2FKVvuD2MiD-df5E9uHs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/d281cd-ef77-4b0a-bd0c-6f87b96de0db/1/Hs3w-NYm4eV3fZ2hevvsNVyrzDg.roa
Signing time: Mon 14 Feb 2022 15:11:40 +0000
ROA not before: Mon 14 Feb 2022 15:11:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31400
IP address blocks: 194.187.164.0/22 maxlen: 32
194.143.134.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 176019948 (0xa7dd9ec)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b15e52fc773614a56fb83d8c883f9d7f913db87b
Validity
Not Before: Feb 14 15:11:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1ecdf0f8d626e1e5777d9da17afbec355cabcc38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:55:bd:47:af:ae:15:26:22:63:a6:35:79:7d:
dc:b3:29:3e:09:55:a9:93:11:28:aa:de:08:2d:e1:
03:fc:4d:bf:14:5c:03:ed:d6:1b:7f:5a:36:c1:74:
a7:9c:18:97:f7:d4:5f:1a:4b:86:57:f2:5f:ab:3b:
7b:fa:1b:dd:23:be:7b:73:6e:2c:ad:bd:bb:ef:4a:
17:70:0b:06:a3:2e:9c:da:1f:e2:9a:5d:87:08:e9:
f4:01:14:77:dc:55:66:10:3f:12:12:be:f0:3e:84:
93:fe:50:50:ba:41:28:b1:4a:27:67:61:13:e7:45:
e6:32:17:52:cd:3d:ad:48:c4:aa:45:54:c7:b6:ce:
16:c4:6c:1a:02:58:cf:32:1d:82:2e:7b:92:a5:5d:
97:df:d5:7c:01:f1:60:c6:ea:f1:7d:9d:ea:95:87:
d8:89:8e:b6:69:02:51:86:aa:cc:e3:ff:a4:c0:c2:
c4:44:10:a3:fa:03:99:c8:db:b8:77:8e:67:ba:96:
80:5e:be:b5:15:4b:a4:c5:d2:94:60:2a:92:a1:90:
2a:6b:b1:26:c1:86:7e:34:c5:a2:5c:57:36:fa:6b:
11:3a:9d:a2:70:8a:46:1e:9a:48:91:a9:eb:ab:30:
31:67:24:3d:38:04:88:fa:47:42:01:e6:7d:d6:a6:
ca:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:CD:F0:F8:D6:26:E1:E5:77:7D:9D:A1:7A:FB:EC:35:5C:AB:CC:38
X509v3 Authority Key Identifier:
keyid:B1:5E:52:FC:77:36:14:A5:6F:B8:3D:8C:88:3F:9D:7F:91:3D:B8:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sV5S_Hc2FKVvuD2MiD-df5E9uHs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/d281cd-ef77-4b0a-bd0c-6f87b96de0db/1/Hs3w-NYm4eV3fZ2hevvsNVyrzDg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/d281cd-ef77-4b0a-bd0c-6f87b96de0db/1/sV5S_Hc2FKVvuD2MiD-df5E9uHs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.143.134.0/23
194.187.164.0/22
Signature Algorithm: sha256WithRSAEncryption
c3:b8:fe:0e:cd:e3:40:94:2f:e6:02:32:93:54:1b:f3:da:4f:
fd:db:fc:f6:4f:73:5e:fc:b7:46:7f:6e:d3:4d:ac:a2:38:62:
08:4b:13:8e:6e:77:1d:c9:52:e8:d4:45:15:64:72:88:ff:05:
d5:b9:e4:58:c4:ff:32:88:34:21:b4:db:a6:57:af:ad:13:28:
79:60:59:79:02:6d:db:65:35:20:f7:c8:1f:b3:11:89:ec:1c:
46:8b:6a:ca:24:85:d7:d7:db:0d:cd:7a:de:c4:9e:a2:2b:e7:
da:c6:ab:55:ca:88:3f:cd:fa:f5:cd:21:79:5e:f9:40:84:b3:
48:32:95:f0:b9:26:e9:19:a9:23:52:2e:7e:bb:67:29:26:bb:
75:77:55:62:d9:cc:71:dc:65:f0:52:a4:2e:71:36:d8:cb:06:
28:5a:83:a2:ba:a0:bd:57:b3:65:93:d1:a8:6a:83:e3:26:c7:
78:a2:78:7c:a5:fd:6e:1d:8f:df:19:54:37:fa:25:89:35:53:
18:ab:c6:98:03:9a:70:81:4e:4d:3f:dc:d7:fc:18:10:69:87:
67:cd:21:c0:a6:3b:06:84:e3:8b:80:c8:99:dd:fa:66:b6:4d:
4e:ef:85:c8:6a:19:c5:79:d3:90:b3:af:73:bb:67:a1:08:37:
29:5a:65:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:06 2023 by rpki-client on console-fra.rpki-client.org