Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/7e3bce-4c30-402d-9692-dbc79d708ff3/1/HDl9_auEdIMAtW5Vgp9PlrZ-ncA.roa
File: HDl9_auEdIMAtW5Vgp9PlrZ-ncA.roa (raw, json)
Hash identifier: XdufU6Syv6lNAmyQ6eCOlWjFJdwORbVLVmmmgTVe8Mo=
Subject key identifier: 1C:39:7D:FD:AB:84:74:83:00:B5:6E:55:82:9F:4F:96:B6:7E:9D:C0
Certificate issuer: /CN=c7308faa4710efe23d2d844b4f0dcb0accc44ceb
Certificate serial: 018964C053117E76F8779F81336A3C26A0B8
Authority key identifier: C7:30:8F:AA:47:10:EF:E2:3D:2D:84:4B:4F:0D:CB:0A:CC:C4:4C:EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xzCPqkcQ7-I9LYRLTw3LCszETOs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/7e3bce-4c30-402d-9692-dbc79d708ff3/1/HDl9_auEdIMAtW5Vgp9PlrZ-ncA.roa
Signing time: Mon 17 Jul 2023 16:47:52 +0000
ROA not before: Mon 17 Jul 2023 16:47:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62240
IP address blocks: 194.26.233.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:64:c0:53:11:7e:76:f8:77:9f:81:33:6a:3c:26:a0:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c7308faa4710efe23d2d844b4f0dcb0accc44ceb
Validity
Not Before: Jul 17 16:47:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1c397dfdab84748300b56e55829f4f96b67e9dc0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:61:25:92:32:c7:df:22:e7:c6:f9:72:50:58:
e9:d8:72:16:3a:78:74:e8:3e:f0:d6:fd:71:95:88:
5a:58:00:c6:91:84:05:f2:77:62:3d:09:18:0b:4b:
0b:e9:2e:85:b5:70:56:0f:71:4d:f6:e4:d4:c1:3e:
07:5b:50:e9:4c:01:e6:cb:39:1b:19:59:da:72:28:
36:7b:3c:a9:08:fe:02:a7:c3:fa:85:2b:9c:d2:ee:
6e:44:d8:58:45:2e:3b:e6:f4:c1:5c:6c:3a:d7:41:
a0:4f:24:1f:8b:1c:c8:33:41:35:d5:2b:83:ec:69:
2b:dd:10:06:fc:a5:21:27:37:ce:87:87:5f:7c:fe:
0c:4e:fb:29:5b:b2:02:12:62:5f:92:3c:e1:1d:fa:
7e:dd:91:92:9f:ea:eb:98:b8:d0:90:06:f8:1a:a4:
94:44:bc:e3:f6:64:a7:dc:14:8f:02:9c:75:47:e4:
4f:f8:66:b2:85:f8:52:1c:e2:98:61:8a:0c:51:9e:
cb:d2:c2:81:f4:45:70:35:a8:0b:52:a8:e6:11:61:
15:71:cc:80:21:6c:fa:e5:d5:e9:06:06:33:af:ea:
3e:2c:0f:62:b5:a0:04:25:32:26:b3:77:3d:ef:63:
92:d1:29:c7:14:2a:de:a3:db:39:5d:0a:50:75:81:
09:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:39:7D:FD:AB:84:74:83:00:B5:6E:55:82:9F:4F:96:B6:7E:9D:C0
X509v3 Authority Key Identifier:
keyid:C7:30:8F:AA:47:10:EF:E2:3D:2D:84:4B:4F:0D:CB:0A:CC:C4:4C:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xzCPqkcQ7-I9LYRLTw3LCszETOs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/7e3bce-4c30-402d-9692-dbc79d708ff3/1/HDl9_auEdIMAtW5Vgp9PlrZ-ncA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/7e3bce-4c30-402d-9692-dbc79d708ff3/1/xzCPqkcQ7-I9LYRLTw3LCszETOs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.26.233.0/24
Signature Algorithm: sha256WithRSAEncryption
83:fe:31:81:70:a9:22:04:fc:41:6a:8b:6f:aa:05:9d:99:a5:
94:bd:81:93:8f:ea:7e:31:73:ea:f9:00:27:62:3f:1e:f2:31:
d7:fc:e7:fb:b6:8d:80:49:38:6a:81:28:fd:30:a3:3b:7e:cf:
a2:c0:56:f2:20:21:12:d9:f8:01:25:9c:1b:f8:df:b5:ad:39:
dc:cb:bd:93:f4:38:e0:2d:96:e6:01:6d:51:71:62:9f:fe:60:
93:62:b7:9b:39:5d:e7:68:79:d0:34:8e:44:ce:8a:92:3d:e1:
b1:ef:d0:0b:61:92:6e:0a:be:86:7b:8d:66:a9:ab:27:55:26:
cc:76:31:7a:a5:50:9a:bd:2b:25:38:bb:0a:4f:2f:03:26:e3:
43:78:6a:ad:56:d1:e8:9a:ca:52:04:d4:e1:99:60:31:5d:8d:
19:38:03:dc:17:dc:62:6c:c1:a1:e2:aa:91:c1:d4:11:11:36:
46:1a:da:90:e1:0c:02:13:78:56:38:87:e6:93:07:a3:3c:dc:
a8:50:55:a9:84:af:b7:c8:df:e0:34:51:73:3c:9f:00:bc:9f:
90:71:a5:94:eb:7e:81:8a:49:d1:dc:4d:af:f8:75:d8:26:35:
f0:3a:0f:cc:af:61:9e:6c:2f:bd:33:91:0c:52:7b:3b:f6:5e:
8b:72:d6:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 09:38:55 2025 by rpki-client