Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/c5a9e3-6722-4b6a-be58-ada5c20e3f7b/1/40sboddzfjcTyvS21YffDOvto1E.roa
File: 40sboddzfjcTyvS21YffDOvto1E.roa (raw, json)
Hash identifier: 6w0+kvZ9KVebgUg+JzOWn9RPGP7OFeBaNISjWqcsTA8=
Subject key identifier: E3:4B:1B:A1:D7:73:7E:37:13:CA:F4:B6:D5:87:DF:0C:EB:ED:A3:51
Certificate issuer: /CN=1c7ad7754795ddd605f28838bb7cc359df7a266a
Certificate serial: 0187E724ABFCC1C82A0360883942639352E3
Authority key identifier: 1C:7A:D7:75:47:95:DD:D6:05:F2:88:38:BB:7C:C3:59:DF:7A:26:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HHrXdUeV3dYF8og4u3zDWd96Jmo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/c5a9e3-6722-4b6a-be58-ada5c20e3f7b/1/40sboddzfjcTyvS21YffDOvto1E.roa
Signing time: Thu 04 May 2023 14:22:32 +0000
ROA not before: Thu 04 May 2023 14:22:32 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57844
IP address blocks: 193.28.228.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:e7:24:ab:fc:c1:c8:2a:03:60:88:39:42:63:93:52:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c7ad7754795ddd605f28838bb7cc359df7a266a
Validity
Not Before: May 4 14:22:32 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e34b1ba1d7737e3713caf4b6d587df0cebeda351
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:34:83:99:b9:26:07:ae:fc:f3:f6:58:1b:70:
b5:b6:5b:9c:06:c9:ea:3e:a0:10:8a:62:23:d7:76:
44:94:7c:bd:46:25:80:58:b0:e4:39:11:42:aa:c6:
9b:5a:5d:f5:99:39:37:3c:1b:54:5f:d1:1f:ca:0c:
d4:a5:ab:e4:3c:7a:92:8c:d4:91:a8:89:70:1c:b5:
fb:54:88:0d:69:77:89:b4:86:5f:95:e0:96:e9:65:
46:93:6a:86:fc:1d:bb:e8:37:c0:96:ab:fa:33:ef:
cf:a5:34:95:4f:d5:80:c8:b1:f0:75:8e:aa:53:be:
e9:fa:b6:75:ba:4f:5a:da:93:aa:b4:96:04:1b:b2:
d4:a7:b0:34:98:cd:8f:3d:35:61:4e:06:27:e6:f7:
8a:fd:99:1b:9d:f9:50:f6:9f:ba:03:1c:48:32:63:
bc:ce:8f:92:b5:66:ed:48:06:19:33:e1:0e:d1:e4:
28:4d:6a:ca:a3:8d:3f:31:ef:1c:84:3b:66:b5:ae:
b9:c8:f5:c9:80:ec:ee:44:20:e7:fa:52:a6:e6:03:
df:de:c1:34:04:0e:d9:50:d3:5b:80:39:6d:33:f5:
3c:17:2f:58:12:57:dd:65:5f:46:12:ed:d0:1d:9f:
d2:41:2a:d8:d2:69:c2:eb:39:5e:1e:ec:81:61:63:
07:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:4B:1B:A1:D7:73:7E:37:13:CA:F4:B6:D5:87:DF:0C:EB:ED:A3:51
X509v3 Authority Key Identifier:
keyid:1C:7A:D7:75:47:95:DD:D6:05:F2:88:38:BB:7C:C3:59:DF:7A:26:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HHrXdUeV3dYF8og4u3zDWd96Jmo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/c5a9e3-6722-4b6a-be58-ada5c20e3f7b/1/40sboddzfjcTyvS21YffDOvto1E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/c5a9e3-6722-4b6a-be58-ada5c20e3f7b/1/HHrXdUeV3dYF8og4u3zDWd96Jmo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.28.228.0/24
Signature Algorithm: sha256WithRSAEncryption
68:6d:6f:2d:10:1d:3b:dd:cc:81:f4:52:7f:16:65:e6:d2:df:
cf:f2:a9:c9:a4:10:5b:21:f8:a6:8b:93:4d:bb:5c:36:c0:09:
05:8a:db:30:ca:db:2c:15:4f:ec:be:9d:f5:73:03:ee:e6:9c:
3f:b2:34:1b:54:cd:71:ca:2e:d6:7b:a8:1f:c6:d8:07:c6:77:
ad:f1:cf:e9:1d:76:5c:8c:00:d8:67:f2:d6:f9:6f:a6:c4:16:
e3:e8:16:3e:dc:12:b9:95:aa:44:1c:f4:c0:7b:93:e8:83:1c:
37:22:b5:32:b1:23:d7:08:69:82:b8:ab:46:94:aa:7c:26:0d:
aa:7e:60:19:41:3a:12:9d:f4:5d:63:71:00:36:98:28:11:5d:
fa:ec:57:8c:72:58:39:96:7c:8a:21:09:d4:26:90:a5:1f:a3:
9c:92:5d:73:0d:b4:31:b4:fb:7e:17:c6:be:27:15:95:16:9b:
de:48:c3:06:cf:f3:45:e1:30:00:8e:1c:87:2a:09:2e:2b:8e:
9b:9d:61:6a:52:2b:53:cb:0a:ad:ad:17:0c:69:2d:17:3b:d0:
49:14:18:43:d5:eb:92:36:38:c3:72:0e:a0:b5:32:79:cf:a0:
7c:bc:d8:f2:cb:24:ff:9f:4d:0d:1d:ac:d1:b1:01:3f:ea:db:
cc:01:f8:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 21:58:26 2025 by rpki-client