Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/b9230f-fbf1-4272-b217-156204897e89/1/jUhLoTpH3sf6bEjjecXvPYm1VMU.roa
File: jUhLoTpH3sf6bEjjecXvPYm1VMU.roa (raw, json)
Hash identifier: s20+qVarTv+dfQOmEm/O1aFXefYC2WyTmRT8bBTUE1k=
Subject key identifier: 8D:48:4B:A1:3A:47:DE:C7:FA:6C:48:E3:79:C5:EF:3D:89:B5:54:C5
Certificate issuer: /CN=4ad35bad87fbbc23e4dda0bcaf2e329a14432e58
Certificate serial: 01857321F83DFE46E7A8FA7FC5807B462837
Authority key identifier: 4A:D3:5B:AD:87:FB:BC:23:E4:DD:A0:BC:AF:2E:32:9A:14:43:2E:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/StNbrYf7vCPk3aC8ry4ymhRDLlg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/b9230f-fbf1-4272-b217-156204897e89/1/jUhLoTpH3sf6bEjjecXvPYm1VMU.roa
Signing time: Mon 02 Jan 2023 15:38:04 +0000
ROA not before: Mon 02 Jan 2023 15:38:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14576
IP address blocks: 193.202.16.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:21:f8:3d:fe:46:e7:a8:fa:7f:c5:80:7b:46:28:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ad35bad87fbbc23e4dda0bcaf2e329a14432e58
Validity
Not Before: Jan 2 15:38:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8d484ba13a47dec7fa6c48e379c5ef3d89b554c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:cf:ba:f0:6a:bd:c2:8f:c8:75:f1:83:6a:0a:
81:30:39:57:66:da:3a:53:49:be:a9:67:9f:23:ed:
a4:42:81:5e:e4:cc:61:e5:ed:34:45:54:22:e6:63:
2c:24:35:a2:98:be:b8:1f:13:b2:39:e3:b2:2b:5a:
e6:8f:91:c7:1b:df:eb:d5:1c:58:82:ee:fa:e9:0c:
c6:32:48:a7:13:e0:8d:95:e1:39:44:62:77:8f:b5:
73:53:0e:61:a1:62:9c:8d:19:b6:09:28:a8:ce:14:
15:48:7b:92:e9:08:8b:16:34:f9:48:81:bd:9e:5d:
30:b1:c1:45:c6:ee:4a:01:a4:d5:3a:b9:a0:84:66:
10:d2:b7:93:17:97:23:4a:2e:2a:36:86:c9:40:c8:
4a:8a:d9:7e:1d:db:7e:d9:6d:5b:c3:8f:ba:aa:64:
cb:60:cf:62:2b:97:9c:80:29:8e:23:6a:22:f8:d4:
2e:fe:f7:25:94:58:a5:ca:94:a6:33:92:13:a5:93:
a4:04:46:3c:f7:21:de:e5:bc:7b:4d:fe:14:34:8d:
8c:9a:29:ec:e1:96:0a:a2:1b:7b:7b:36:14:15:4c:
f3:13:9e:dd:d3:9c:91:4d:77:48:d8:1d:87:fe:79:
8d:0c:31:e7:6d:bd:9e:7c:1f:52:e8:2e:89:8b:47:
3b:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:48:4B:A1:3A:47:DE:C7:FA:6C:48:E3:79:C5:EF:3D:89:B5:54:C5
X509v3 Authority Key Identifier:
keyid:4A:D3:5B:AD:87:FB:BC:23:E4:DD:A0:BC:AF:2E:32:9A:14:43:2E:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/StNbrYf7vCPk3aC8ry4ymhRDLlg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/b9230f-fbf1-4272-b217-156204897e89/1/jUhLoTpH3sf6bEjjecXvPYm1VMU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/b9230f-fbf1-4272-b217-156204897e89/1/StNbrYf7vCPk3aC8ry4ymhRDLlg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.202.16.0/24
Signature Algorithm: sha256WithRSAEncryption
96:8a:c2:91:59:45:c5:91:58:9e:51:d8:55:1e:23:aa:41:5a:
8c:8f:fe:3e:1d:3e:bc:ff:2c:fc:f2:53:1a:40:1d:09:c6:d0:
9e:ec:d9:2b:83:e6:fa:f5:aa:0b:75:88:86:fb:db:a6:c1:f9:
35:9c:91:d3:33:ad:29:88:d1:33:d6:e4:40:1a:66:90:d8:64:
fa:34:a3:c3:0f:d1:29:ea:b6:0c:94:9e:f2:19:20:bb:a4:02:
37:d2:03:60:7f:e1:ed:a4:57:1e:94:14:73:43:1e:7c:d6:59:
04:14:c0:ab:f7:7e:78:02:cd:91:4f:c8:0f:e7:cf:e2:98:1c:
94:87:36:2e:89:35:6e:80:21:76:49:c7:78:29:ca:7c:2e:ff:
db:59:88:4b:e8:1d:4e:39:35:e7:05:f6:34:84:d2:32:f5:d0:
3f:88:8a:b4:28:ab:e3:98:47:ac:8d:6e:e1:95:68:ff:42:ee:
47:70:6b:cd:76:f9:14:23:78:0b:35:85:b2:13:70:97:7b:be:
7d:ff:67:e1:03:ce:7c:97:16:e7:be:50:2b:10:ea:ee:75:74:
cf:53:20:2d:7e:8e:98:d3:cf:f5:84:ff:97:10:a5:18:e8:46:
2f:15:6f:7b:3d:d8:2e:0f:8e:45:32:79:49:c5:a1:f7:19:20:
df:1d:2f:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 06:28:58 2025 by rpki-client