Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/40bcd2-cd93-4922-a373-485b193db243/1/xJ9E9Y2L4RDStvCgBR5A_AWl5i4.roa
File: xJ9E9Y2L4RDStvCgBR5A_AWl5i4.roa (raw, json)
Hash identifier: iBmBMXFlzRNbybYYGxPDRZt/nU6SAnLzergS6s1RPik=
Subject key identifier: C4:9F:44:F5:8D:8B:E1:10:D2:B6:F0:A0:05:1E:40:FC:05:A5:E6:2E
Certificate issuer: /CN=119f2dcb336b725717c5f9902d4a60e98c04a86d
Certificate serial: 0185720C6E463FF9FB1D0EF8A6B47F9629F9
Authority key identifier: 11:9F:2D:CB:33:6B:72:57:17:C5:F9:90:2D:4A:60:E9:8C:04:A8:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EZ8tyzNrclcXxfmQLUpg6YwEqG0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/40bcd2-cd93-4922-a373-485b193db243/1/xJ9E9Y2L4RDStvCgBR5A_AWl5i4.roa
Signing time: Mon 02 Jan 2023 10:34:55 +0000
ROA not before: Mon 02 Jan 2023 10:34:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15395
IP address blocks: 193.138.122.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:0c:6e:46:3f:f9:fb:1d:0e:f8:a6:b4:7f:96:29:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=119f2dcb336b725717c5f9902d4a60e98c04a86d
Validity
Not Before: Jan 2 10:34:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c49f44f58d8be110d2b6f0a0051e40fc05a5e62e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:cd:6a:76:0e:91:3c:22:44:1a:97:28:3a:74:
d7:2d:20:63:7b:f4:af:ac:d5:1a:a2:1a:84:6c:db:
de:2e:34:0c:40:82:65:1d:89:2b:8d:24:ed:cc:a5:
2b:af:1d:dc:57:8e:5d:fa:06:e6:d5:05:aa:0f:39:
bb:c0:1b:84:7c:3d:2b:77:45:95:6f:e3:64:7a:43:
b5:90:71:a0:e1:ab:6c:0c:1d:c9:b5:46:70:27:08:
2b:0a:02:de:f1:21:05:8f:df:32:0e:69:63:9e:68:
d3:be:3c:1d:57:37:55:52:44:f2:c0:42:f2:80:be:
2e:97:ff:3c:39:b4:c6:a1:9f:be:16:18:64:56:15:
e7:f1:2f:af:41:1e:f9:b9:f2:37:01:52:80:51:e7:
b6:81:78:36:0e:0b:4e:ed:39:2d:13:59:4d:3e:9a:
76:ad:0b:dd:ea:f7:82:09:ab:f8:12:35:20:56:72:
63:40:35:15:5a:92:62:8d:48:fe:ad:85:f9:06:de:
d3:fc:f0:57:29:67:83:0a:c4:b5:0e:94:7a:a7:69:
c9:2c:4b:33:c5:16:4d:c8:7c:4d:34:fe:6d:ce:56:
35:78:f1:bb:34:f0:bf:f8:d7:91:eb:ee:bf:45:47:
a4:3f:b3:87:e4:7e:b3:cc:47:8c:6b:ed:1d:1c:0e:
b8:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:9F:44:F5:8D:8B:E1:10:D2:B6:F0:A0:05:1E:40:FC:05:A5:E6:2E
X509v3 Authority Key Identifier:
keyid:11:9F:2D:CB:33:6B:72:57:17:C5:F9:90:2D:4A:60:E9:8C:04:A8:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EZ8tyzNrclcXxfmQLUpg6YwEqG0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/40bcd2-cd93-4922-a373-485b193db243/1/xJ9E9Y2L4RDStvCgBR5A_AWl5i4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/40bcd2-cd93-4922-a373-485b193db243/1/EZ8tyzNrclcXxfmQLUpg6YwEqG0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.138.122.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:69:de:cb:85:ed:8e:29:21:46:dd:aa:43:b1:b3:07:67:21:
c6:ec:0b:1a:fd:42:0a:a7:78:38:91:fc:67:0e:40:a4:21:c0:
79:fa:2d:de:96:02:b9:2a:6d:4d:5c:75:da:da:b1:3d:16:ef:
7d:3f:4d:56:25:62:f8:64:52:e0:5e:a9:0e:ef:10:71:07:82:
6e:6a:c6:4d:68:47:e1:b2:d8:0a:5e:1c:1e:ef:a8:10:85:e9:
56:75:cb:a7:6f:12:12:7b:34:c1:12:3b:79:58:a1:1e:22:f8:
5a:9f:c5:4e:39:af:87:2b:dc:f6:70:21:ab:0a:fe:d0:4a:7e:
1a:e8:ed:02:ee:74:56:65:bd:7f:a6:3f:b3:ab:23:a2:29:a7:
c4:7a:03:74:41:24:41:f6:15:19:f6:69:68:3b:8a:25:35:13:
54:2c:45:57:1b:f8:79:e1:fb:07:6a:83:39:cd:8f:30:01:b3:
d1:cd:45:e7:fb:f2:48:c7:ef:62:89:58:52:dc:ec:cb:72:51:
2d:f9:d2:49:b0:76:4b:e7:b5:b8:34:99:4c:c3:e2:41:8d:59:
59:de:2a:cf:7c:cf:fa:f7:3e:96:3c:8d:3a:8e:63:31:3b:27:
88:e4:f9:09:d6:aa:b3:ac:3f:80:5c:a4:03:79:d7:14:bb:9c:
bc:03:d2:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:19:52 2025 by rpki-client