Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/c176a7-0a8d-457b-94a7-ffba8dc6d33c/1/o5i124tpm05ZCCTshMA0peohcSo.roa
File: o5i124tpm05ZCCTshMA0peohcSo.roa (raw, json)
Hash identifier: 6/Kai7D0chg169NZGpJTDcjT7zm7NkBGZIDstIMgVLs=
Subject key identifier: A3:98:B5:DB:8B:69:9B:4E:59:08:24:EC:84:C0:34:A5:EA:21:71:2A
Certificate issuer: /CN=c91bbcc5a4e5cf9a2d28e728dfbc130f688bb8dd
Certificate serial: 09D0987A
Authority key identifier: C9:1B:BC:C5:A4:E5:CF:9A:2D:28:E7:28:DF:BC:13:0F:68:8B:B8:DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yRu8xaTlz5otKOco37wTD2iLuN0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/c176a7-0a8d-457b-94a7-ffba8dc6d33c/1/o5i124tpm05ZCCTshMA0peohcSo.roa
Signing time: Sat 01 Jan 2022 09:55:52 +0000
ROA not before: Sat 01 Jan 2022 09:55:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35616
IP address blocks: 193.23.29.0/24 maxlen: 24
2a04:9ac1::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 164665466 (0x9d0987a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c91bbcc5a4e5cf9a2d28e728dfbc130f688bb8dd
Validity
Not Before: Jan 1 09:55:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a398b5db8b699b4e590824ec84c034a5ea21712a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:73:84:aa:63:8c:af:dd:b6:ca:3d:0a:0e:c0:
19:b0:20:cd:40:f4:88:f6:f0:3c:b6:97:e9:5f:af:
23:47:0c:00:a7:de:58:4a:14:2e:28:84:03:89:ef:
f4:2d:bf:6a:54:61:58:4a:5d:df:fc:fc:e5:af:f6:
b5:a1:e7:67:9e:db:35:4d:bb:5d:df:4c:2e:df:7d:
0b:a7:76:af:65:0c:21:1f:b9:89:23:09:4b:52:d9:
1b:25:20:a7:b7:7d:f6:fb:da:da:08:34:42:53:be:
74:73:5a:28:7d:5e:37:7e:c9:a7:53:81:c7:db:85:
50:ed:77:52:be:b4:37:89:0b:1f:db:3c:ec:63:c1:
fc:c8:9f:5d:d2:8d:00:00:f9:80:2a:08:c5:fb:4c:
4d:ec:87:e2:2d:4d:c5:79:02:32:ab:df:da:de:c2:
75:ca:bb:5a:c4:f4:d5:fc:0e:e4:93:94:06:6f:f4:
2e:bb:c3:c9:d4:48:f0:aa:a8:3a:4c:1c:d8:e6:0f:
a6:af:af:a3:a2:d6:63:34:d8:81:db:a3:9e:07:14:
4e:d1:f2:05:79:37:d6:e4:48:e1:e6:ae:cc:48:f3:
76:60:4e:7f:f9:a6:85:3f:5e:74:bb:0e:2b:a8:1a:
94:29:cd:96:c4:69:d8:df:0f:30:1a:fc:30:09:94:
27:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:98:B5:DB:8B:69:9B:4E:59:08:24:EC:84:C0:34:A5:EA:21:71:2A
X509v3 Authority Key Identifier:
keyid:C9:1B:BC:C5:A4:E5:CF:9A:2D:28:E7:28:DF:BC:13:0F:68:8B:B8:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yRu8xaTlz5otKOco37wTD2iLuN0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/c176a7-0a8d-457b-94a7-ffba8dc6d33c/1/o5i124tpm05ZCCTshMA0peohcSo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/c176a7-0a8d-457b-94a7-ffba8dc6d33c/1/yRu8xaTlz5otKOco37wTD2iLuN0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.23.29.0/24
IPv6:
2a04:9ac1::/32
Signature Algorithm: sha256WithRSAEncryption
01:ce:21:0f:c4:45:a6:24:63:8b:31:a5:62:a7:d9:23:ca:d4:
3c:d6:fb:69:cd:f6:f0:4a:cc:e0:88:1a:98:65:9a:dc:d2:75:
27:cd:97:ca:05:8e:70:4e:48:84:ec:79:8b:b0:b1:46:4c:50:
1b:54:50:15:20:cf:5f:e2:f0:d0:1e:e1:37:97:23:15:f9:db:
47:b6:17:16:0b:6a:c9:6e:e2:cf:7e:26:ec:46:d2:ae:b3:21:
76:1c:90:c4:a2:fc:45:2b:fc:01:e8:a1:b5:5d:54:3b:0d:79:
b1:af:79:c5:5f:82:e4:c3:1c:76:ca:05:76:00:29:b7:03:ee:
89:91:60:77:5c:17:48:5b:54:c8:e4:55:b4:fd:b3:ff:83:45:
fc:6f:26:6c:92:6e:3f:21:fe:d5:10:3e:96:9d:ac:ac:72:44:
24:3a:98:ec:fd:70:9b:0b:5f:a9:1a:65:dc:85:79:da:83:b5:
bc:6d:6b:4f:6c:ec:35:7a:81:e0:b4:d4:63:d9:c4:96:e0:a3:
76:8e:d9:ee:77:ef:0d:ce:96:19:75:d2:20:85:e1:c6:bf:39:
60:7f:cd:03:5e:4d:c1:83:db:c3:04:d6:5e:ea:01:bc:dc:b1:
f9:6b:5e:66:1d:6c:07:a7:7a:d5:b1:33:a0:71:ec:06:0c:97:
38:04:8d:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Feb 21 12:56:02 2025 by rpki-client