Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/tfgTro1_dSdfyNh4TlsWY5V0AxQ.roa
File: tfgTro1_dSdfyNh4TlsWY5V0AxQ.roa (raw, json)
Hash identifier: Fq27nMs1/qvSLGIboYTBIZDnd47LXnfodjxYBuwFUTk=
Subject key identifier: B5:F8:13:AE:8D:7F:75:27:5F:C8:D8:78:4E:5B:16:63:95:74:03:14
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 019026890E79F6B768F81159AC8AFD0F4740
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/tfgTro1_dSdfyNh4TlsWY5V0AxQ.roa
Signing time: Mon 17 Jun 2024 14:10:34 +0000
ROA not before: Mon 17 Jun 2024 14:10:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:26:89:0e:79:f6:b7:68:f8:11:59:ac:8a:fd:0f:47:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jun 17 14:10:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b5f813ae8d7f75275fc8d8784e5b166395740314
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:86:bc:82:aa:a1:6f:2a:a8:02:bf:93:c7:b7:
d8:68:e7:67:ad:f5:7e:69:18:e6:6a:58:3a:d7:0b:
3b:5f:52:6c:56:95:7a:ae:48:02:a2:b9:e7:74:3f:
dd:96:ea:1a:f1:b5:8f:7c:48:7c:01:04:fa:20:19:
2b:bf:e4:33:15:6c:76:2e:af:d9:c2:66:cd:f4:f1:
7a:93:3a:35:ff:6a:d6:2c:49:90:fe:39:9b:0c:e5:
f6:74:e4:c3:49:89:c3:7e:7d:c1:75:af:23:77:7d:
68:3b:8b:e9:d5:f1:cc:82:d2:1d:9d:61:bb:37:31:
93:96:b4:3f:14:18:f6:71:a8:d8:69:62:82:71:7f:
ff:ae:cc:b7:ae:4a:d8:0a:88:08:87:cb:62:36:0f:
78:45:45:5f:27:9a:62:52:af:fc:f0:4b:98:a4:04:
b6:da:d0:8d:c8:5f:93:05:77:5b:0a:ee:9d:23:5e:
4f:ec:9e:c0:f8:1b:63:eb:bb:64:32:54:75:ee:b8:
e2:8c:d3:61:94:10:0a:82:53:78:09:cf:3f:f2:db:
cd:ed:50:23:7d:c5:43:a1:a9:83:b0:dc:4e:95:d2:
b7:32:02:91:d8:38:69:4c:2c:62:7f:a7:61:87:b5:
34:a8:91:0e:89:6c:5e:a9:85:d9:a0:1e:8f:85:d6:
b4:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:F8:13:AE:8D:7F:75:27:5F:C8:D8:78:4E:5B:16:63:95:74:03:14
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/tfgTro1_dSdfyNh4TlsWY5V0AxQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
53:6a:52:da:64:44:8c:d3:98:1a:2b:6d:e4:6c:d2:84:05:60:
ea:65:90:06:59:8e:13:bf:e7:1c:25:71:08:34:32:eb:b7:83:
b7:e6:dd:6b:c7:fc:e3:56:f4:b6:3a:7f:65:7c:5e:76:9b:87:
b0:8d:18:a5:32:c8:3e:47:29:21:a9:ae:55:e9:03:85:60:ee:
05:5d:12:bc:01:92:ab:bf:ef:14:74:7f:42:71:96:10:31:9a:
4a:02:03:e4:e2:a8:30:b3:0b:91:1c:60:b6:b2:09:dc:a7:3d:
38:d7:72:e9:71:7b:4b:7d:ae:a6:97:08:de:85:b8:12:b4:25:
15:2c:6f:1e:e0:c3:fe:ab:98:b7:ab:fc:ae:ae:78:55:a3:75:
f6:4f:09:59:7e:21:65:09:47:ef:cf:9a:5d:e2:d6:11:97:64:
2d:11:22:6d:34:31:92:9e:28:95:c1:8f:61:c6:dc:cb:b7:05:
55:6b:ea:9b:26:95:72:a0:a1:7d:64:66:72:a7:a1:60:e2:13:
d8:95:92:51:8b:d7:07:d9:4d:f8:08:b7:22:40:88:35:be:4c:
52:32:12:d9:34:91:40:f3:ee:20:fa:95:ea:d0:ad:ae:0e:8d:
8c:ee:e6:03:d3:73:e0:3f:76:e7:5f:04:11:6c:a4:07:3c:aa:
be:2b:d3:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 14:02:02 2025 by rpki-client