Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/9fa83d-b2a3-45e4-8499-f525816402bd/1/jsEfMS0w59CxpN8XwAU_DUvFaSE.roa
File: jsEfMS0w59CxpN8XwAU_DUvFaSE.roa (raw, json)
Hash identifier: 4/W2gC33xSnVD8kMEPK1eeNQfpmGzFSffW48v/7pd60=
Subject key identifier: 8E:C1:1F:31:2D:30:E7:D0:B1:A4:DF:17:C0:05:3F:0D:4B:C5:69:21
Certificate issuer: /CN=ff82309a6814678ad72e3f31a4fe0272f40bd986
Certificate serial: 01899154E22ECA11901FF0DCD2834C439CE5
Authority key identifier: FF:82:30:9A:68:14:67:8A:D7:2E:3F:31:A4:FE:02:72:F4:0B:D9:86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_4IwmmgUZ4rXLj8xpP4CcvQL2YY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/9fa83d-b2a3-45e4-8499-f525816402bd/1/jsEfMS0w59CxpN8XwAU_DUvFaSE.roa
Signing time: Wed 26 Jul 2023 08:33:26 +0000
ROA not before: Wed 26 Jul 2023 08:33:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 193.36.162.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:91:54:e2:2e:ca:11:90:1f:f0:dc:d2:83:4c:43:9c:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ff82309a6814678ad72e3f31a4fe0272f40bd986
Validity
Not Before: Jul 26 08:33:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8ec11f312d30e7d0b1a4df17c0053f0d4bc56921
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:eb:7d:41:8c:ef:41:cb:24:e0:08:74:af:e5:
76:08:d7:a4:7d:5f:ad:9c:e3:64:5e:5d:2d:79:c7:
68:2c:cb:2a:4f:71:3d:37:ff:d8:1e:12:ee:0a:bc:
1d:54:d9:b1:25:93:20:6e:eb:54:32:de:cc:c7:e2:
ac:02:fd:9d:91:29:64:65:b6:6d:1e:aa:00:0e:9f:
8e:16:be:70:54:9f:b9:fc:65:ba:8d:ed:81:9f:76:
81:e7:31:db:c8:21:f5:46:20:0e:a8:8b:af:b1:04:
a0:99:12:e2:6b:f9:31:e6:b1:bd:8e:79:05:55:12:
6c:fa:62:37:18:38:7c:8e:04:e1:67:2d:92:a5:34:
1b:15:03:4a:b1:1e:70:e8:79:5d:2c:76:0a:c6:73:
6a:29:1a:74:83:53:73:f4:ca:f9:07:f6:bd:37:f9:
38:a0:95:29:0a:c3:7c:9e:f6:90:7e:fd:8b:30:44:
88:b4:d1:9f:28:20:b4:db:55:de:f7:79:ee:c6:27:
da:98:53:27:0f:f1:96:cf:65:e9:58:6e:5e:53:ba:
73:4d:fe:78:9a:63:fe:33:f6:bf:bb:35:cb:9b:36:
e2:fc:e7:93:f3:44:5a:af:0c:20:41:ce:4f:df:46:
4e:41:8c:42:34:6a:d8:9f:eb:fe:a7:b6:2d:33:c1:
69:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:C1:1F:31:2D:30:E7:D0:B1:A4:DF:17:C0:05:3F:0D:4B:C5:69:21
X509v3 Authority Key Identifier:
keyid:FF:82:30:9A:68:14:67:8A:D7:2E:3F:31:A4:FE:02:72:F4:0B:D9:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_4IwmmgUZ4rXLj8xpP4CcvQL2YY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/9fa83d-b2a3-45e4-8499-f525816402bd/1/jsEfMS0w59CxpN8XwAU_DUvFaSE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/9fa83d-b2a3-45e4-8499-f525816402bd/1/_4IwmmgUZ4rXLj8xpP4CcvQL2YY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.36.162.0/23
Signature Algorithm: sha256WithRSAEncryption
38:9b:85:f5:af:38:1e:ae:46:63:fa:b2:f3:37:2c:a7:76:8f:
a4:3e:65:8a:95:4f:86:ed:fc:b9:ab:da:e0:20:ec:a7:07:01:
83:cb:d9:71:9a:10:ff:f4:65:08:cf:c4:ee:a2:b0:4a:23:91:
4c:98:0f:d3:f2:29:77:b3:b6:0a:e1:6f:4a:0a:f8:b7:ca:8f:
ec:6a:16:0a:5c:d8:da:0a:ae:3e:b7:ef:b7:cf:a7:85:95:18:
c6:e8:07:87:f6:8e:0b:2d:9b:c3:de:31:af:1f:36:58:a8:67:
e0:46:7d:42:e0:8e:4e:c8:7d:8e:6b:2f:77:cb:62:cc:0c:3b:
95:fd:6f:16:4f:90:cf:13:80:0c:01:fb:d5:7d:6a:05:c3:1d:
29:f7:f1:7b:91:74:87:84:1b:5b:0e:b1:c6:cf:90:13:f2:01:
5b:4f:ed:9c:b8:0d:8a:b0:b3:71:d2:10:f5:41:9a:a8:39:ca:
2b:2c:f7:22:1a:d0:9e:54:f0:01:a7:db:73:0d:22:6b:a5:75:
dd:68:0e:5d:dc:d1:92:e3:31:d2:86:3f:50:cb:a9:35:e7:72:
8c:c4:29:34:36:bc:4a:5b:95:a2:fd:20:1b:a4:f2:5b:12:71:
a1:38:1c:07:31:ad:34:6e:1d:c1:38:59:52:17:11:bd:79:a5:
da:7b:d5:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:42:11 2025 by rpki-client