Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/91af66-d394-42fa-a0c6-b16cb4dfadd3/1/lsf62TV-lCfQRSfhYEIBK36sUKw.roa
File: lsf62TV-lCfQRSfhYEIBK36sUKw.roa (raw, json)
Hash identifier: eU2anNmcUpmTSaPUPasxFcTWdkjoJX0749wapbIFrIk=
Subject key identifier: 96:C7:FA:D9:35:7E:94:27:D0:45:27:E1:60:42:01:2B:7E:AC:50:AC
Certificate issuer: /CN=827603a93bca31b018f511f6d4b0b7546e963362
Certificate serial: 07F3EC04
Authority key identifier: 82:76:03:A9:3B:CA:31:B0:18:F5:11:F6:D4:B0:B7:54:6E:96:33:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gnYDqTvKMbAY9RH21LC3VG6WM2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/91af66-d394-42fa-a0c6-b16cb4dfadd3/1/lsf62TV-lCfQRSfhYEIBK36sUKw.roa
Signing time: Sat 01 Jan 2022 01:01:37 +0000
ROA not before: Sat 01 Jan 2022 01:01:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211415
IP address blocks: 194.31.180.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 133426180 (0x7f3ec04)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=827603a93bca31b018f511f6d4b0b7546e963362
Validity
Not Before: Jan 1 01:01:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=96c7fad9357e9427d04527e16042012b7eac50ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:de:01:d8:89:b5:e2:be:40:ef:9a:69:f7:2b:
19:f1:51:80:50:35:5d:f6:c6:d3:4d:f4:01:11:8f:
f0:26:f1:7f:ae:80:73:bd:10:03:59:bb:b1:ce:f7:
75:82:d8:d7:c2:13:47:bf:b0:ce:b6:47:62:f6:bf:
c1:d6:9f:ce:e6:2c:51:73:a8:5d:07:95:31:f6:90:
f4:33:60:d3:3a:93:07:75:b0:5b:f4:4a:c2:ee:c4:
f0:16:64:b4:ce:15:ad:98:1b:21:20:35:da:d7:29:
3e:b0:28:1d:d5:60:0c:d2:6b:f7:61:66:78:dc:c6:
31:fb:b4:ad:89:ea:0e:08:03:52:86:4f:1d:0c:37:
b5:2c:88:44:66:f0:aa:98:b2:71:e4:50:ed:0b:7e:
41:77:2e:86:9b:2f:d1:43:74:d1:fd:92:fa:97:10:
c3:7b:39:f2:fc:34:29:9f:ba:d3:0d:a2:55:7e:58:
7d:4f:fb:fb:33:b1:76:4e:7f:37:85:88:29:86:d8:
70:5a:1a:6f:a1:29:32:d8:d2:6c:0c:6c:f6:56:e0:
11:20:34:26:a7:a6:ab:48:21:ea:6e:c5:d2:6a:dd:
da:26:59:39:28:67:d3:d8:1d:b9:69:50:09:4d:19:
a7:54:99:c2:05:14:9d:d3:33:b8:0f:aa:9f:c9:04:
5a:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:C7:FA:D9:35:7E:94:27:D0:45:27:E1:60:42:01:2B:7E:AC:50:AC
X509v3 Authority Key Identifier:
keyid:82:76:03:A9:3B:CA:31:B0:18:F5:11:F6:D4:B0:B7:54:6E:96:33:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gnYDqTvKMbAY9RH21LC3VG6WM2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/91af66-d394-42fa-a0c6-b16cb4dfadd3/1/lsf62TV-lCfQRSfhYEIBK36sUKw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/91af66-d394-42fa-a0c6-b16cb4dfadd3/1/gnYDqTvKMbAY9RH21LC3VG6WM2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.31.180.0/22
Signature Algorithm: sha256WithRSAEncryption
15:c6:fd:c1:63:fa:42:ce:4c:4f:53:0f:f1:c7:f7:e7:45:ba:
d3:6a:79:46:8b:e0:3e:37:8a:ed:db:ba:9b:dc:bc:e1:ec:80:
0f:34:3c:de:0d:3b:f0:2e:8b:10:c2:00:d8:3a:f3:88:c8:e3:
2a:dc:3e:65:d4:1f:76:f3:bb:c3:d5:9d:a7:ed:9a:fc:48:25:
be:76:7e:29:56:92:87:a4:fd:ed:0b:64:90:55:6e:00:d3:a4:
e6:a6:50:c1:2b:ea:dc:00:7b:69:d1:7e:63:11:99:3d:08:12:
4e:5e:c6:4c:7e:59:57:f0:b1:99:e1:cd:90:6a:bb:4b:60:29:
17:7e:bb:82:e8:7d:ca:9d:cb:a1:d4:7c:11:d6:b4:ef:3f:6a:
1a:74:0d:2b:e7:03:e5:a9:6b:14:6d:37:eb:8e:88:25:96:00:
9f:ce:79:92:0e:75:17:88:56:c6:04:07:7b:ed:8d:c1:a8:79:
ff:82:26:c5:5b:0f:95:7c:fb:50:04:78:81:38:96:fa:54:a9:
a7:bd:bb:bd:31:93:e5:83:c0:97:ad:77:d7:f2:48:ac:04:d8:
38:fd:f6:3f:a9:ed:95:78:77:25:b9:0d:a6:4b:00:86:15:16:
64:4e:cf:6e:01:16:c4:21:d3:e4:f9:27:e1:5f:94:1b:db:61:
28:27:04:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:45:23 2025 by rpki-client