Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/11b1a0-22f2-40e7-a45f-cb95a286990d/1/vNvDGxLMHm8NCQRt9uiARbd2TUo.roa
File: vNvDGxLMHm8NCQRt9uiARbd2TUo.roa (raw, json)
Hash identifier: /MrP9/paHSTFb4Fi9CLmjrinG1TdkXsp7Y/et/kKkmw=
Subject key identifier: BC:DB:C3:1B:12:CC:1E:6F:0D:09:04:6D:F6:E8:80:45:B7:76:4D:4A
Certificate issuer: /CN=aa9318ec68abf7fea3bc9972bca3bde8a14cbd54
Certificate serial: 1CCCFD
Authority key identifier: AA:93:18:EC:68:AB:F7:FE:A3:BC:99:72:BC:A3:BD:E8:A1:4C:BD:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qpMY7Gir9_6jvJlyvKO96KFMvVQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/11b1a0-22f2-40e7-a45f-cb95a286990d/1/vNvDGxLMHm8NCQRt9uiARbd2TUo.roa
Signing time: Sat 01 Jan 2022 03:57:28 +0000
ROA not before: Sat 01 Jan 2022 03:57:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49453
IP address blocks: 193.163.207.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1887485 (0x1cccfd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa9318ec68abf7fea3bc9972bca3bde8a14cbd54
Validity
Not Before: Jan 1 03:57:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bcdbc31b12cc1e6f0d09046df6e88045b7764d4a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:f2:90:26:91:32:30:0e:51:ce:68:48:8e:d9:
30:c7:2c:47:e6:83:34:fb:e1:f8:f0:c4:bf:e1:71:
4f:31:af:e8:e2:48:d3:42:62:f4:c3:50:94:23:59:
b0:59:f8:72:83:78:e1:76:ad:5a:2b:42:0c:12:2c:
5c:96:96:4c:ae:f8:ad:dc:99:ef:ad:6f:9e:99:00:
e4:67:1a:40:46:b7:65:66:ec:d6:4e:66:f0:ee:09:
f0:96:dd:23:0d:bf:0e:01:d7:4d:2f:d7:09:93:42:
cf:fc:1f:70:d1:7e:43:aa:c6:b8:6c:74:c8:04:92:
a2:8e:21:fa:12:a4:29:57:ec:b7:13:63:71:1f:94:
59:79:26:ff:bd:2f:0d:0e:5f:ce:b6:c8:f0:5a:21:
2d:e0:c2:04:8d:c8:97:70:6f:2f:2b:c7:0f:48:d5:
ba:8c:a8:18:ba:83:2d:35:42:85:bf:18:c2:cc:28:
34:3a:1c:49:9c:6e:3c:d3:f6:26:cf:2f:12:75:13:
c7:e4:2f:5a:f9:aa:1d:85:9c:a5:09:f6:71:8d:a2:
21:2b:71:54:44:a0:5c:8c:93:ea:77:73:f2:7e:d2:
07:16:44:bd:15:41:43:29:21:2d:e1:6b:4e:d0:8c:
f6:06:f4:28:76:f3:08:b1:a6:fb:ed:6f:ab:67:ca:
bc:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:DB:C3:1B:12:CC:1E:6F:0D:09:04:6D:F6:E8:80:45:B7:76:4D:4A
X509v3 Authority Key Identifier:
keyid:AA:93:18:EC:68:AB:F7:FE:A3:BC:99:72:BC:A3:BD:E8:A1:4C:BD:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qpMY7Gir9_6jvJlyvKO96KFMvVQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/11b1a0-22f2-40e7-a45f-cb95a286990d/1/vNvDGxLMHm8NCQRt9uiARbd2TUo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/11b1a0-22f2-40e7-a45f-cb95a286990d/1/qpMY7Gir9_6jvJlyvKO96KFMvVQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.163.207.0/24
Signature Algorithm: sha256WithRSAEncryption
65:3f:2f:b4:bb:81:26:91:f5:6f:7e:13:90:7d:03:5e:de:7b:
b1:45:f2:1a:53:b4:15:74:1d:82:5b:1d:93:0d:51:39:d6:ae:
dd:68:12:2f:d8:fb:c3:66:60:4a:74:fc:de:1c:64:c2:8c:52:
23:b2:92:7c:5e:43:a6:74:c3:d5:12:a6:99:11:25:9d:49:e9:
fc:1c:73:8a:f9:8b:a6:66:1b:05:bf:7f:76:e7:b2:8b:d6:e4:
9a:40:e0:c8:94:b6:d3:5f:51:5b:1e:03:69:30:90:4b:0a:13:
79:7f:51:50:a4:ea:97:49:fa:46:0e:8f:39:0c:1c:bb:a4:03:
07:ec:a5:18:94:44:18:87:c6:38:32:42:a7:a1:5f:1e:eb:8d:
6e:7f:61:66:40:a5:f7:cd:e7:f3:26:fb:5c:9b:61:5d:79:ae:
cc:74:f2:31:c5:db:1c:33:a3:ed:bf:42:25:98:bb:40:f3:4f:
91:7c:d7:c1:7d:be:82:fe:d6:ea:88:c6:51:d7:ac:70:43:5a:
90:24:13:04:a2:05:73:a4:a2:19:6e:a5:b7:cc:7c:65:54:1b:
ca:0b:42:8f:64:93:48:91:f2:94:91:f1:0c:7d:db:f4:2f:38:
2f:e2:fd:40:ef:1a:1d:2e:57:bf:bb:4c:c4:8a:88:fc:95:86:
3f:ac:86:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:28:55 2025 by rpki-client