Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/1e98c2-2bae-4d14-9bcc-855e6072ef36/1/5NeOoapn75ixm7VHZmuvKsC_QDs.roa
File: 5NeOoapn75ixm7VHZmuvKsC_QDs.roa (raw, json)
Hash identifier: 3WndQTE3bRPtlj9SgENqiE9Rk/KegBG293BrI+OuYko=
Subject key identifier: E4:D7:8E:A1:AA:67:EF:98:B1:9B:B5:47:66:6B:AF:2A:C0:BF:40:3B
Certificate issuer: /CN=7ddd236d804d5aa9a2cab39cf51022ac05e0b183
Certificate serial: 018858340B2ECA2D0721892E450B7B25F1C0
Authority key identifier: 7D:DD:23:6D:80:4D:5A:A9:A2:CA:B3:9C:F5:10:22:AC:05:E0:B1:83
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fd0jbYBNWqmiyrOc9RAirAXgsYM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/1e98c2-2bae-4d14-9bcc-855e6072ef36/1/5NeOoapn75ixm7VHZmuvKsC_QDs.roa
Signing time: Fri 26 May 2023 13:16:25 +0000
ROA not before: Fri 26 May 2023 13:16:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8758
IP address blocks: 193.142.111.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:58:34:0b:2e:ca:2d:07:21:89:2e:45:0b:7b:25:f1:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ddd236d804d5aa9a2cab39cf51022ac05e0b183
Validity
Not Before: May 26 13:16:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e4d78ea1aa67ef98b19bb547666baf2ac0bf403b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:dc:9c:37:32:0b:1a:0c:7b:39:a8:df:0d:69:
c9:aa:a7:55:2e:0e:8c:20:4b:d8:c2:d7:c7:e3:60:
05:a4:f8:7e:ec:87:c5:56:13:8b:01:ea:2e:8c:22:
8f:a6:3c:f1:bb:89:c1:e5:ba:40:8b:d6:7c:ff:fd:
5a:cc:00:15:07:cd:dd:a9:d6:37:cc:1e:30:ee:f1:
c0:c0:e8:c4:a6:7f:9f:48:32:24:74:70:55:6e:7d:
1d:a2:db:f9:01:bb:68:73:fa:a5:08:50:23:3b:85:
6a:90:bf:3c:bf:04:05:34:38:4b:77:77:ca:f6:12:
91:35:15:0d:f6:69:07:87:bd:5b:4c:69:f7:bf:57:
ad:d3:09:7e:3a:2e:c1:32:94:7e:6c:0e:9f:0a:ee:
93:bd:72:a1:f8:7c:70:df:d4:8e:5a:62:fc:92:ee:
3c:77:99:1b:ea:38:67:8c:db:35:c1:ca:fb:12:2d:
96:3b:6c:00:f8:08:ec:0b:a0:ff:fe:44:bd:cd:bc:
8f:12:bd:cd:72:95:3f:08:dd:3c:ab:70:f2:73:91:
79:df:e9:ee:77:0d:66:89:81:a9:74:ae:12:7b:2d:
0c:1f:4c:c9:15:2b:54:52:54:ea:3c:6c:19:6a:6f:
55:43:f3:e7:42:69:09:0b:0b:b5:57:d5:ea:84:a1:
7b:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:D7:8E:A1:AA:67:EF:98:B1:9B:B5:47:66:6B:AF:2A:C0:BF:40:3B
X509v3 Authority Key Identifier:
keyid:7D:DD:23:6D:80:4D:5A:A9:A2:CA:B3:9C:F5:10:22:AC:05:E0:B1:83
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd0jbYBNWqmiyrOc9RAirAXgsYM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/1e98c2-2bae-4d14-9bcc-855e6072ef36/1/5NeOoapn75ixm7VHZmuvKsC_QDs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/1e98c2-2bae-4d14-9bcc-855e6072ef36/1/fd0jbYBNWqmiyrOc9RAirAXgsYM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.142.111.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:36:2e:3f:13:58:c8:38:1f:71:67:9a:56:db:a2:c0:de:7b:
b1:c0:70:90:3b:2d:a4:17:bc:50:25:b9:76:5c:b5:42:83:5b:
15:f4:c7:07:df:1b:2a:1f:c5:39:76:ec:a2:bc:09:05:b2:e3:
a3:01:bb:49:67:74:0d:ea:ca:3c:e0:3a:d9:dc:ed:32:4e:66:
64:a1:eb:85:ce:aa:4e:3d:62:37:1f:ef:52:d3:48:41:1c:65:
68:d5:db:28:b2:b4:27:3a:2d:43:b4:00:4a:bd:d8:6b:14:e1:
16:3c:81:32:25:7b:03:c2:48:e0:d8:33:c9:5d:61:3f:2a:86:
85:70:f1:ba:33:8b:bc:4c:56:16:70:75:04:95:60:cb:36:85:
08:3b:c2:c3:4e:65:a8:f4:6f:52:c0:0c:13:14:b9:fb:d8:4b:
93:91:59:a2:4d:63:85:7b:fa:56:53:d1:15:48:21:1b:95:3c:
71:7c:7c:a1:98:34:88:e8:20:b2:da:2c:0f:c2:45:e3:70:de:
45:0c:1c:6b:cb:f8:89:4e:4f:32:2d:13:c5:95:55:73:97:5a:
f5:4f:0f:fe:c3:2c:33:af:1d:a8:73:9f:b4:a0:3f:be:e8:64:
4c:45:fe:01:8d:be:1c:04:32:47:4a:ed:7a:e3:54:c5:2b:e3:
bf:c3:da:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 22:34:03 2025 by rpki-client