Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/b90cd1-cab6-4959-9fd2-2b6e2b1d6ba5/1/CyiFx_mWeNgmYlyYSrI8Ih-FC44.roa
File: CyiFx_mWeNgmYlyYSrI8Ih-FC44.roa (raw, json)
Hash identifier: h9fTChrw3ubjo8FOvUVDhf+09CzfiY2d3mWjYiV6KFA=
Subject key identifier: 0B:28:85:C7:F9:96:78:D8:26:62:5C:98:4A:B2:3C:22:1F:85:0B:8E
Certificate issuer: /CN=99530e14e8ed8fbc7ab4a9399c5ae2f19ee9f803
Certificate serial: 01856DC1CD56C73B05B84EBB84DDC442CC13
Authority key identifier: 99:53:0E:14:E8:ED:8F:BC:7A:B4:A9:39:9C:5A:E2:F1:9E:E9:F8:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mVMOFOjtj7x6tKk5nFri8Z7p-AM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/b90cd1-cab6-4959-9fd2-2b6e2b1d6ba5/1/CyiFx_mWeNgmYlyYSrI8Ih-FC44.roa
Signing time: Sun 01 Jan 2023 14:34:55 +0000
ROA not before: Sun 01 Jan 2023 14:34:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208485
IP address blocks: 193.162.133.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:c1:cd:56:c7:3b:05:b8:4e:bb:84:dd:c4:42:cc:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=99530e14e8ed8fbc7ab4a9399c5ae2f19ee9f803
Validity
Not Before: Jan 1 14:34:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0b2885c7f99678d826625c984ab23c221f850b8e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:7c:34:48:cd:29:57:3f:01:c8:7e:f4:98:f4:
93:bb:f8:8f:b6:5a:ba:8f:83:2e:cb:5c:30:14:64:
ea:15:7c:18:9d:66:f7:f9:bd:73:ff:dd:e9:5b:60:
a6:f9:40:09:56:86:05:33:ab:22:65:a1:f7:c7:97:
3a:f2:44:e8:15:9a:9a:a6:15:7b:03:80:c4:b3:bb:
71:1f:c6:c1:54:d0:00:ef:90:82:13:4b:8b:a6:6a:
da:0a:87:20:88:7b:dd:ec:cb:c1:4b:3f:f8:f0:8f:
0c:44:e8:63:fe:a8:7d:54:b2:bd:a3:66:b9:b8:fc:
74:d9:28:bf:0a:e9:c1:11:3b:7b:6e:a1:5b:0b:00:
be:c7:81:24:3c:ca:31:17:a7:d1:bc:9a:9c:18:2b:
51:96:8b:82:bb:1c:63:65:f0:e9:64:aa:26:d3:b9:
c9:8f:92:b9:22:db:5c:97:a9:af:52:cc:b4:c1:22:
2d:b3:3d:60:81:e8:47:78:ad:e4:5e:59:ee:49:8b:
d9:7a:47:d7:06:29:35:f4:b3:f8:bb:7e:71:a0:9e:
d3:2e:07:fa:3f:97:87:cc:17:02:46:64:4e:1f:21:
a2:cb:f0:22:9c:3f:69:ee:11:93:fe:6d:c6:2a:99:
e6:e7:cc:33:35:07:b6:70:e8:fc:c8:b8:08:d8:78:
26:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:28:85:C7:F9:96:78:D8:26:62:5C:98:4A:B2:3C:22:1F:85:0B:8E
X509v3 Authority Key Identifier:
keyid:99:53:0E:14:E8:ED:8F:BC:7A:B4:A9:39:9C:5A:E2:F1:9E:E9:F8:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mVMOFOjtj7x6tKk5nFri8Z7p-AM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/b90cd1-cab6-4959-9fd2-2b6e2b1d6ba5/1/CyiFx_mWeNgmYlyYSrI8Ih-FC44.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/b90cd1-cab6-4959-9fd2-2b6e2b1d6ba5/1/mVMOFOjtj7x6tKk5nFri8Z7p-AM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.162.133.0/24
Signature Algorithm: sha256WithRSAEncryption
59:ac:a4:bd:77:c5:7e:9a:69:13:a0:e1:6e:91:7f:a9:5b:11:
0a:be:39:95:e0:11:2a:ea:5e:e6:ed:0f:95:9f:bc:f3:93:07:
f9:03:f6:b1:6a:3a:76:c2:b3:41:94:05:97:0c:c0:cb:af:41:
d7:b7:73:e1:fe:4a:08:5c:8e:de:ae:96:25:7e:9d:c8:a1:94:
f2:f7:2a:12:e8:bb:13:50:80:7b:ba:d6:a9:82:30:b6:36:df:
5c:11:38:75:6b:17:63:cd:6b:7d:5c:a4:b7:0e:45:39:93:43:
cf:33:c9:7d:98:64:d9:7f:d6:0b:a1:33:9c:42:5b:2d:94:ce:
a7:d9:0a:ee:a4:51:d0:d2:7b:9e:d6:c1:b2:8d:7d:a8:1a:64:
f7:f1:14:9b:48:bc:7a:9f:04:77:c1:99:21:bb:d6:50:3b:8c:
80:da:5d:f0:84:b4:59:70:2f:f1:22:99:64:eb:42:8f:f2:db:
82:09:7c:1e:20:70:2b:4b:40:78:d6:38:0d:10:e9:e7:12:2a:
fd:cb:1d:3a:09:3b:bb:fc:af:8a:a6:a0:f1:fc:3b:f3:e5:cb:
00:65:c0:f6:05:fb:5f:50:9e:c4:eb:af:20:73:cd:96:e2:bb:
88:6d:b6:2f:4f:45:28:37:94:7c:3d:10:0d:2b:b0:79:8f:9c:
21:34:36:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:17:58 2025 by rpki-client