Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/574984-3689-4283-b133-2a5fcac44778/1/IH-lk7TUgDHcPySbjFstikcd350.roa
File: IH-lk7TUgDHcPySbjFstikcd350.roa (raw, json)
Hash identifier: EpNxMj4GTVIRJyKBYLTlLKVTA5U099Cz21E8tha7KUw=
Subject key identifier: 20:7F:A5:93:B4:D4:80:31:DC:3F:24:9B:8C:5B:2D:8A:47:1D:DF:9D
Certificate issuer: /CN=452bd94deef72106794399c8b37190c958837a1a
Certificate serial: 0183A07EC571B8D1B08D216E77A4A3D682E0
Authority key identifier: 45:2B:D9:4D:EE:F7:21:06:79:43:99:C8:B3:71:90:C9:58:83:7A:1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RSvZTe73IQZ5Q5nIs3GQyViDeho.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/574984-3689-4283-b133-2a5fcac44778/1/IH-lk7TUgDHcPySbjFstikcd350.roa
Signing time: Tue 04 Oct 2022 00:56:46 +0000
ROA not before: Tue 04 Oct 2022 00:56:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210703
IP address blocks: 193.35.226.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:a0:7e:c5:71:b8:d1:b0:8d:21:6e:77:a4:a3:d6:82:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=452bd94deef72106794399c8b37190c958837a1a
Validity
Not Before: Oct 4 00:56:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=207fa593b4d48031dc3f249b8c5b2d8a471ddf9d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:07:ca:66:8b:b4:2b:5a:d9:9d:df:0e:dc:bc:
13:80:c8:87:74:70:71:35:d4:45:04:6b:9e:13:af:
6e:a1:e4:7a:7c:e5:51:98:67:93:bf:db:da:5a:ec:
44:74:d6:bb:53:1d:c6:b6:77:3e:77:9f:08:0b:14:
6e:9a:33:6b:c3:7b:b7:04:1b:54:53:2a:da:68:b4:
c9:cb:78:60:a2:aa:25:a4:d6:3d:7b:66:a7:e3:e8:
3d:66:bc:c0:c5:2e:db:56:ba:dd:da:f1:a4:71:a6:
87:19:81:3c:3b:ac:89:0a:a5:3b:5d:cc:f3:e5:55:
11:90:2e:51:5a:a9:6b:2e:7b:b2:dc:3d:1c:b7:eb:
c7:e6:46:c9:66:90:7a:9c:33:37:2f:7e:06:5e:08:
ba:55:29:ea:57:07:89:ab:4a:b4:03:17:41:c4:24:
f0:35:3f:41:b0:8b:0e:b1:48:7c:33:6f:6f:26:be:
76:79:52:a8:d0:d8:87:25:78:81:3c:69:21:78:16:
33:2d:82:1b:00:ff:eb:aa:a0:92:72:a3:99:48:07:
aa:89:68:ac:bf:48:f9:76:c6:02:04:70:a3:4f:1a:
94:7c:58:17:26:23:1d:de:71:09:3e:18:7c:48:ec:
1d:24:48:f8:62:2e:13:df:37:8a:f0:d5:16:1b:3b:
d0:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:7F:A5:93:B4:D4:80:31:DC:3F:24:9B:8C:5B:2D:8A:47:1D:DF:9D
X509v3 Authority Key Identifier:
keyid:45:2B:D9:4D:EE:F7:21:06:79:43:99:C8:B3:71:90:C9:58:83:7A:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RSvZTe73IQZ5Q5nIs3GQyViDeho.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/574984-3689-4283-b133-2a5fcac44778/1/IH-lk7TUgDHcPySbjFstikcd350.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/574984-3689-4283-b133-2a5fcac44778/1/RSvZTe73IQZ5Q5nIs3GQyViDeho.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.35.226.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:91:49:37:47:92:60:e4:5e:5e:50:af:ef:58:82:a5:dd:84:
ce:04:13:dc:93:6d:07:70:e5:c4:b3:8f:c3:aa:00:6e:4f:2c:
dd:23:34:72:8c:e3:bf:aa:fb:cb:33:ba:eb:31:e2:91:bf:7b:
4d:55:15:c9:92:9d:5e:8b:48:29:68:9e:7d:5e:33:bf:bf:9c:
db:c2:9f:6b:77:2c:4d:78:4d:12:70:bd:f3:98:06:1f:67:c9:
52:82:33:a4:5c:19:05:b3:d0:5e:46:45:06:a7:a5:ce:41:7a:
ab:43:18:53:69:4e:9e:e3:39:14:c5:4b:d1:e4:c3:10:e8:12:
64:41:80:04:59:11:2a:c8:d3:60:0c:bd:a7:8c:a3:97:0b:3a:
e4:e4:72:ca:16:54:22:d6:d8:af:ad:d8:e6:16:31:7a:c6:e4:
fe:90:84:29:94:8c:48:c7:87:ab:2d:13:34:4a:d9:a3:5a:07:
63:b4:09:71:f0:f8:a5:f7:13:1b:51:6e:75:13:e9:5f:25:fc:
c8:05:a5:2f:21:9d:ff:03:41:ad:61:8d:b1:0c:5e:70:7d:1b:
91:d7:6f:2f:2d:f8:32:81:75:c2:ba:e1:cf:13:ac:31:3a:52:
b6:ba:f3:64:00:53:30:fe:2e:ba:29:6f:b3:8e:2d:78:3d:c0:
27:59:ba:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 23 11:00:19 2025 by rpki-client