Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/4b3bcd-5082-4b67-ac90-a3604ee68e3e/1/LoYXqIjZeCQQYLMA1xzQr_7t59E.roa
File: LoYXqIjZeCQQYLMA1xzQr_7t59E.roa (raw, json)
Hash identifier: iemPVy/c/zQzzRNVwTG5BJQfH/dRO0795xofHgP0M50=
Subject key identifier: 2E:86:17:A8:88:D9:78:24:10:60:B3:00:D7:1C:D0:AF:FE:ED:E7:D1
Certificate issuer: /CN=ca99b3e8ba82d0d48f170c6ffd8e9daa3aa223d4
Certificate serial: 061AFB0C
Authority key identifier: CA:99:B3:E8:BA:82:D0:D4:8F:17:0C:6F:FD:8E:9D:AA:3A:A2:23:D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ypmz6LqC0NSPFwxv_Y6dqjqiI9Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/4b3bcd-5082-4b67-ac90-a3604ee68e3e/1/LoYXqIjZeCQQYLMA1xzQr_7t59E.roa
Signing time: Sat 01 Jan 2022 10:54:17 +0000
ROA not before: Sat 01 Jan 2022 10:54:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3356
IP address blocks: 193.148.92.0/24 maxlen: 24
193.148.93.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 102431500 (0x61afb0c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca99b3e8ba82d0d48f170c6ffd8e9daa3aa223d4
Validity
Not Before: Jan 1 10:54:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2e8617a888d978241060b300d71cd0affeede7d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:14:59:8e:ba:10:4c:10:c5:36:f8:59:a9:2e:
cd:13:97:86:f0:20:e3:77:5f:ee:02:77:6a:de:a4:
a1:ee:0b:4e:dc:7d:ac:de:26:29:7a:02:16:1c:a7:
f2:b1:6b:c2:68:8e:1e:52:40:06:23:93:5e:40:2b:
d2:04:55:3f:fa:ef:7d:2e:74:64:0b:e5:3c:6c:b6:
f4:1e:59:97:d1:0b:b7:44:0a:9d:1f:73:fc:b4:36:
64:1a:de:3f:83:f2:30:60:7f:62:62:6c:b3:08:c2:
7f:af:15:df:93:77:74:5c:9b:39:4f:c0:8a:9c:03:
a2:5a:73:80:2c:f8:a2:ff:3b:15:d3:89:dd:19:92:
98:08:71:f1:8a:eb:83:05:0a:80:bb:0f:da:41:5b:
8a:b4:4c:92:f3:a3:8a:fb:c6:b8:50:31:bd:3b:32:
ba:5d:f0:2e:7f:e9:9c:01:74:a7:3b:ce:27:38:82:
2a:4c:0c:ac:50:5e:96:a4:8e:51:11:97:33:f8:05:
e6:c9:5b:a2:3d:f2:44:00:85:4d:d5:26:a4:83:f2:
1d:12:32:85:ec:51:df:4e:4b:7e:06:02:c9:d0:ba:
d4:f8:79:66:32:e4:dd:9a:32:5e:f9:c8:d2:42:66:
af:48:d3:be:7e:4e:e6:23:90:f9:3c:a0:65:33:3d:
9c:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:86:17:A8:88:D9:78:24:10:60:B3:00:D7:1C:D0:AF:FE:ED:E7:D1
X509v3 Authority Key Identifier:
keyid:CA:99:B3:E8:BA:82:D0:D4:8F:17:0C:6F:FD:8E:9D:AA:3A:A2:23:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ypmz6LqC0NSPFwxv_Y6dqjqiI9Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/4b3bcd-5082-4b67-ac90-a3604ee68e3e/1/LoYXqIjZeCQQYLMA1xzQr_7t59E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/4b3bcd-5082-4b67-ac90-a3604ee68e3e/1/ypmz6LqC0NSPFwxv_Y6dqjqiI9Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.148.92.0/23
Signature Algorithm: sha256WithRSAEncryption
07:77:54:20:ca:5c:51:3b:ba:84:ed:80:34:51:5d:3e:14:da:
e2:fe:a9:f5:fc:fb:a4:e5:18:d2:ac:a7:54:03:2e:da:18:2e:
20:54:9c:7b:dc:b1:1c:17:5b:69:1d:e5:8f:56:63:02:dc:88:
d2:8b:5c:f6:9a:81:40:c2:15:77:d2:9b:0b:1e:fd:79:7d:7c:
43:73:a7:22:fb:51:a2:91:81:c6:79:bc:13:a7:2f:c4:67:0f:
06:10:c4:2e:88:a6:bc:ae:61:c8:28:28:af:37:bb:da:5e:af:
4b:49:04:9a:f6:59:5a:c6:f9:3c:27:22:7d:9c:bd:15:91:9e:
cb:34:4f:42:69:e1:45:25:12:a4:88:b9:ce:70:b4:5d:93:07:
16:fe:72:97:98:51:4e:f7:bc:ea:97:32:a6:dc:30:70:a0:f3:
07:2a:91:a8:7a:4a:38:51:1a:e0:d2:34:fb:f5:be:70:cd:06:
fc:8a:2d:46:2a:43:1a:24:41:1b:fa:28:94:bc:d2:d1:8b:e5:
8a:e5:89:e2:c4:b0:00:a5:5e:e6:b7:fe:9b:bd:5a:2e:39:fb:
52:46:6f:2d:3e:94:16:40:80:92:2e:69:a0:8d:b8:08:f0:34:
ef:12:3c:35:5f:75:63:4a:db:a0:3a:f5:cb:24:e9:9e:d9:b4:
fb:85:5b:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:43 2024 by rpki-client on console-ams.rpki-client.org