Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/83233c-898e-491d-958c-4fea624413e4/1/kTOLs92_ZYtjo5QEIA2C1xsoSe8.roa
File: kTOLs92_ZYtjo5QEIA2C1xsoSe8.roa (raw, json)
Hash identifier: q/ie8Rm1kIXgaOOJ4chqyjUk6IjRaCHNMh9YTVOepHY=
Subject key identifier: 91:33:8B:B3:DD:BF:65:8B:63:A3:94:04:20:0D:82:D7:1B:28:49:EF
Certificate issuer: /CN=00138af66eb4d557fa4b3939c6cbd961a9123560
Certificate serial: 03F26869
Authority key identifier: 00:13:8A:F6:6E:B4:D5:57:FA:4B:39:39:C6:CB:D9:61:A9:12:35:60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ABOK9m601Vf6Szk5xsvZYakSNWA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/83233c-898e-491d-958c-4fea624413e4/1/kTOLs92_ZYtjo5QEIA2C1xsoSe8.roa
Signing time: Sat 01 Jan 2022 03:53:18 +0000
ROA not before: Sat 01 Jan 2022 03:53:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 194.50.223.0/24 maxlen: 24
194.50.224.0/24 maxlen: 24
194.50.233.0/24 maxlen: 24
194.50.243.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66218089 (0x3f26869)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00138af66eb4d557fa4b3939c6cbd961a9123560
Validity
Not Before: Jan 1 03:53:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=91338bb3ddbf658b63a39404200d82d71b2849ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:d4:94:b3:46:57:9f:f2:e3:f2:47:6d:94:76:
a5:1e:ab:25:3a:0f:61:79:3f:4f:0e:8d:3a:26:e5:
d0:b7:f9:82:ec:71:7f:d7:f5:3d:64:05:18:76:9a:
e2:d9:f1:25:d9:07:71:05:ca:a4:71:e4:08:4a:f6:
94:01:a3:f5:14:15:a0:82:09:5e:61:d5:96:55:2c:
56:c1:42:c5:1c:4e:f6:21:07:b9:29:1a:6a:d0:a0:
1a:26:ac:40:51:79:5f:41:f4:a8:8d:20:89:5d:f3:
35:db:05:74:a8:18:ab:b7:c4:7e:73:55:76:43:c7:
50:9d:cd:e1:5f:8c:11:c1:ab:2a:e6:0c:e8:43:09:
a3:b9:94:d2:79:e6:d0:61:fb:dc:85:cb:65:25:45:
b0:6e:0a:49:2e:2d:c7:d6:10:86:e3:fe:dc:7f:0a:
32:b2:b7:fa:20:d4:c4:34:14:a9:00:1c:d6:c4:75:
62:fa:10:d4:82:14:9a:3e:c0:92:60:27:5c:a0:1d:
f0:9e:52:00:9e:df:b8:f7:8d:2c:28:62:63:af:90:
92:1d:0f:5c:a1:77:c5:c0:5b:60:fd:b4:d9:00:8e:
da:51:1e:66:54:9e:b1:8a:d7:d3:53:54:53:53:39:
f1:a6:17:46:5d:fe:4a:fb:2d:64:d7:02:b5:60:bd:
03:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:33:8B:B3:DD:BF:65:8B:63:A3:94:04:20:0D:82:D7:1B:28:49:EF
X509v3 Authority Key Identifier:
keyid:00:13:8A:F6:6E:B4:D5:57:FA:4B:39:39:C6:CB:D9:61:A9:12:35:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ABOK9m601Vf6Szk5xsvZYakSNWA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/83233c-898e-491d-958c-4fea624413e4/1/kTOLs92_ZYtjo5QEIA2C1xsoSe8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/83233c-898e-491d-958c-4fea624413e4/1/ABOK9m601Vf6Szk5xsvZYakSNWA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.50.223.0-194.50.224.255
194.50.233.0/24
194.50.243.0/24
Signature Algorithm: sha256WithRSAEncryption
28:4b:f5:70:17:42:94:2b:ac:64:2a:1d:4d:b1:68:d2:e2:5b:
7e:72:50:92:ca:73:39:d7:eb:8f:5e:44:11:a2:0f:ec:c0:f5:
f3:21:70:d9:22:8f:f5:5b:88:1a:2e:3a:a6:69:4b:76:ac:75:
df:e0:48:c8:1a:55:84:14:df:e0:b0:c4:b6:f2:4e:99:2d:ce:
dc:77:bc:22:2f:78:93:07:17:82:ba:0a:70:50:0c:20:db:9e:
fa:25:26:8e:15:48:85:34:57:61:2f:89:f6:1e:07:4d:17:6a:
12:fd:25:4a:cb:a4:fc:47:7e:32:4d:9d:0c:aa:3a:2e:38:7d:
75:43:ff:b2:b2:56:9d:c4:8f:93:53:6e:fe:8f:03:8c:d2:48:
1d:91:51:c2:c9:21:d9:2d:ca:24:98:95:78:66:01:19:4f:53:
03:58:ea:85:a1:28:e1:5b:ba:9a:16:b3:91:d9:23:17:67:a5:
e7:ae:31:c0:15:92:f8:81:97:36:ab:7c:cc:04:29:63:04:31:
4b:86:55:77:c2:b0:41:35:d4:05:32:11:ab:a2:bc:91:cf:03:
d5:45:81:6c:72:d3:c0:89:63:df:b8:a6:ae:4e:11:76:19:87:
66:59:17:96:15:08:7e:75:01:32:b3:a7:c3:63:ce:27:71:09:
09:23:5e:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:44:20 2025 by rpki-client