Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/511ae5-2b40-48a4-93fb-cc14252c0fa1/1/SnClBd6AW_K6BBmgaIDKf14ve3M.roa
File: SnClBd6AW_K6BBmgaIDKf14ve3M.roa (raw, json)
Hash identifier: iG9y6yM7sNeFoHHoV5kcyQTLBgDrq0l6/A3RTIiuuIk=
Subject key identifier: 4A:70:A5:05:DE:80:5B:F2:BA:04:19:A0:68:80:CA:7F:5E:2F:7B:73
Certificate issuer: /CN=4bdaf157f33b5fde210899a954834dc726d34a6b
Certificate serial: 10EC98C6
Authority key identifier: 4B:DA:F1:57:F3:3B:5F:DE:21:08:99:A9:54:83:4D:C7:26:D3:4A:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S9rxV_M7X94hCJmpVINNxybTSms.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/511ae5-2b40-48a4-93fb-cc14252c0fa1/1/SnClBd6AW_K6BBmgaIDKf14ve3M.roa
Signing time: Sat 01 Jan 2022 01:56:41 +0000
ROA not before: Sat 01 Jan 2022 01:56:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3212
IP address blocks: 193.111.220.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 283941062 (0x10ec98c6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4bdaf157f33b5fde210899a954834dc726d34a6b
Validity
Not Before: Jan 1 01:56:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4a70a505de805bf2ba0419a06880ca7f5e2f7b73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:7c:cc:93:50:39:a9:b0:0d:13:85:2b:51:6e:
cd:2d:3c:4b:ca:5d:04:97:9e:f8:19:0a:47:44:a4:
a8:af:6f:3d:e0:2e:35:44:bb:41:eb:c0:bb:99:63:
89:ce:0f:cc:4f:e9:5f:62:09:7f:aa:c8:44:4d:85:
4c:66:f5:8f:f9:1b:a0:f4:9e:03:61:34:ab:34:74:
2e:f5:8a:9f:16:46:c7:6a:4d:40:cd:c5:fd:58:89:
8a:ff:5e:c4:55:12:2f:ad:da:6a:42:01:59:e1:d1:
34:fe:d3:67:cf:69:7b:85:21:f6:62:3d:a5:f1:b6:
6a:df:70:af:e7:3c:bd:95:51:c5:9e:47:84:8a:66:
a3:89:08:05:da:96:ba:bf:66:fd:90:3a:31:af:c3:
98:88:49:11:2e:4f:65:3a:68:ee:a7:c4:2f:69:fd:
6f:a4:95:e0:c8:0c:a2:c5:92:99:60:3b:50:08:06:
92:00:78:bc:06:71:24:25:d7:32:a7:cc:4a:8c:47:
9c:de:06:a7:5f:87:89:6e:a6:b3:05:3f:2a:80:88:
31:08:7a:8b:8d:ee:4a:e5:7c:ee:7f:5a:e5:70:f4:
54:1f:ee:1c:67:e0:cb:34:bb:a2:aa:5a:0b:c6:99:
a0:a1:8a:dd:10:2b:20:e7:5d:7e:22:b4:8a:b4:87:
93:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:70:A5:05:DE:80:5B:F2:BA:04:19:A0:68:80:CA:7F:5E:2F:7B:73
X509v3 Authority Key Identifier:
keyid:4B:DA:F1:57:F3:3B:5F:DE:21:08:99:A9:54:83:4D:C7:26:D3:4A:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S9rxV_M7X94hCJmpVINNxybTSms.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/511ae5-2b40-48a4-93fb-cc14252c0fa1/1/SnClBd6AW_K6BBmgaIDKf14ve3M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/511ae5-2b40-48a4-93fb-cc14252c0fa1/1/S9rxV_M7X94hCJmpVINNxybTSms.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.111.220.0/22
Signature Algorithm: sha256WithRSAEncryption
72:62:c5:2a:b0:03:4c:6f:3b:f4:f5:4e:ce:3e:fa:ec:6a:6b:
66:88:08:92:48:77:5f:c5:de:a3:96:a8:55:21:4c:f9:22:c3:
69:90:e9:f8:31:37:7b:99:1b:c9:85:d2:c8:b4:3f:d6:d0:73:
38:e3:74:72:26:7d:ea:43:4b:f9:8b:40:4f:eb:e2:5b:5a:4c:
8a:39:1a:05:86:01:8b:a7:bd:27:e8:49:03:82:93:c7:b9:df:
4e:4b:19:a4:84:4b:b5:11:d9:ef:2c:ed:50:0e:1f:ea:30:d8:
67:cc:ba:40:2d:2e:43:cd:c5:5b:3d:ea:c0:a9:c8:97:2a:6b:
6b:20:f7:69:97:10:35:90:da:65:21:f1:84:c5:4f:72:98:c4:
1e:3b:ed:e9:50:37:d9:76:89:47:20:10:1c:4b:cf:da:b6:6f:
d3:bd:79:f7:2b:c5:7f:77:13:6e:ea:04:47:c5:7a:7b:23:82:
1b:ed:03:1c:34:11:75:f2:62:09:1b:ac:ca:a8:69:90:94:01:
8d:9e:bc:c1:f5:b5:f8:76:bc:72:eb:17:d1:26:f9:ed:a4:5b:
30:26:1d:d6:62:52:ce:a2:93:fc:b0:96:9d:2a:12:f9:d7:24:
65:6c:a8:8c:2f:fc:1e:ed:1a:9d:1b:a1:8f:f1:4f:71:1f:0b:
b2:b7:0e:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:45:12 2025 by rpki-client