Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/e9284b-142e-4765-81a2-04f7851b021e/1/zkTTO6ZnFHaOo-DxT-HOug1ZioM.roa
File: zkTTO6ZnFHaOo-DxT-HOug1ZioM.roa (raw, json)
Hash identifier: /HHJZ9+F7NeYursRZ2Aqm7hfWlXxzY9BfVKfkHdmusA=
Subject key identifier: CE:44:D3:3B:A6:67:14:76:8E:A3:E0:F1:4F:E1:CE:BA:0D:59:8A:83
Certificate issuer: /CN=bda2c2a399c30a339306388f3a65dc0e434ece99
Certificate serial: 08D729A0
Authority key identifier: BD:A2:C2:A3:99:C3:0A:33:93:06:38:8F:3A:65:DC:0E:43:4E:CE:99
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vaLCo5nDCjOTBjiPOmXcDkNOzpk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/e9284b-142e-4765-81a2-04f7851b021e/1/zkTTO6ZnFHaOo-DxT-HOug1ZioM.roa
Signing time: Sat 01 Jan 2022 08:04:12 +0000
ROA not before: Sat 01 Jan 2022 08:04:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31463
IP address blocks: 193.104.233.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 148318624 (0x8d729a0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bda2c2a399c30a339306388f3a65dc0e434ece99
Validity
Not Before: Jan 1 08:04:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ce44d33ba66714768ea3e0f14fe1ceba0d598a83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:f0:9e:e9:34:9b:38:65:0b:cf:d7:24:2a:62:
3a:ee:88:bd:bc:15:70:3e:c2:fe:dc:07:34:d4:cb:
b4:0b:a7:44:b5:f0:c4:16:0b:e4:e3:ec:32:3d:e7:
67:d7:49:11:3f:5b:0a:73:80:9f:71:6e:92:f5:2d:
35:d9:e4:a9:fa:91:26:a9:b1:fd:27:c2:67:92:8f:
a0:11:dd:46:cb:75:77:86:b9:63:51:46:01:4a:91:
4c:e3:dd:9f:38:05:7a:ed:75:2c:77:28:38:80:50:
10:59:98:ab:5f:36:6a:41:89:eb:8d:47:ad:f7:f0:
26:f1:0a:8b:8a:ef:9f:55:69:e5:0a:85:8e:2b:c7:
f1:9c:15:0a:5e:04:a0:bc:fd:83:c0:c8:4e:39:a4:
53:d5:f6:29:42:fa:c4:5e:66:b3:54:31:41:df:ac:
db:53:af:e4:8d:a1:6a:97:c5:89:af:41:81:f4:e4:
1d:23:37:f8:75:36:ea:c3:59:f5:4f:1e:22:e0:b1:
70:a5:b0:6f:ea:ac:e6:11:d0:a5:0a:e7:d3:77:1b:
c3:db:1e:2b:25:ee:fd:7c:60:3f:9d:9b:7a:e8:cb:
ca:a3:7a:8e:6a:c9:ad:73:60:0c:4d:4f:d2:25:32:
fa:c7:98:3e:b7:3b:cd:9f:3a:c7:72:27:0b:6f:eb:
38:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:44:D3:3B:A6:67:14:76:8E:A3:E0:F1:4F:E1:CE:BA:0D:59:8A:83
X509v3 Authority Key Identifier:
keyid:BD:A2:C2:A3:99:C3:0A:33:93:06:38:8F:3A:65:DC:0E:43:4E:CE:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vaLCo5nDCjOTBjiPOmXcDkNOzpk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/e9284b-142e-4765-81a2-04f7851b021e/1/zkTTO6ZnFHaOo-DxT-HOug1ZioM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/e9284b-142e-4765-81a2-04f7851b021e/1/vaLCo5nDCjOTBjiPOmXcDkNOzpk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.104.233.0/24
Signature Algorithm: sha256WithRSAEncryption
b4:eb:ae:f0:32:96:bf:a0:cd:43:31:2f:d1:c8:31:0a:e4:1d:
cf:51:b4:1f:8e:e9:0e:a1:c1:40:bc:ac:97:67:6b:69:05:16:
45:71:74:12:ae:ad:26:df:04:03:1a:3f:b1:3e:fe:4e:d2:2e:
77:b0:06:ba:b2:ec:cd:2e:cd:c6:38:ef:95:5c:aa:f5:5e:72:
7a:6e:d4:d7:57:1a:7c:9f:fc:08:4c:aa:43:3d:46:fe:85:c4:
d4:94:94:97:26:d5:22:6f:5c:56:93:97:92:98:77:f1:b0:23:
03:87:d7:cb:bd:e0:06:4e:ce:1b:41:54:04:66:58:b8:8a:3b:
12:7f:67:5a:1b:43:53:e8:1e:13:14:0d:1b:3f:e8:0c:21:d1:
8c:63:d6:3e:a9:d8:e4:fe:36:b1:5e:93:21:e3:c5:d5:34:0a:
1c:04:74:24:a3:dc:37:0d:c7:b7:9d:fb:dd:08:88:5a:f4:45:
7a:eb:9b:71:14:a7:b6:b1:53:f4:e8:91:59:ff:80:c4:c7:2c:
04:ca:b7:ca:96:bb:83:a5:00:06:53:07:00:97:ec:1e:6a:30:
e9:fb:75:77:73:19:17:60:6c:a4:74:84:11:92:f6:f8:99:c3:
11:c7:9a:41:30:53:9c:38:34:25:28:aa:82:0b:62:46:f1:e5:
43:05:65:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:13:32 2025 by rpki-client