Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/eb239a-33c8-4dbd-bc96-3259496e7c5f/1/tinWpyEwhe-sE0BhWpwcEBURGso.roa
File: tinWpyEwhe-sE0BhWpwcEBURGso.roa (raw, json)
Hash identifier: DjloDSk6VbcgVCL/qDVxcmT70voCdSLxvohpcc9EJek=
Subject key identifier: B6:29:D6:A7:21:30:85:EF:AC:13:40:61:5A:9C:1C:10:15:11:1A:CA
Certificate issuer: /CN=624039399017fa093dc8d503799f6ca403f0bd05
Certificate serial: 0589A8D2
Authority key identifier: 62:40:39:39:90:17:FA:09:3D:C8:D5:03:79:9F:6C:A4:03:F0:BD:05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YkA5OZAX-gk9yNUDeZ9spAPwvQU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/eb239a-33c8-4dbd-bc96-3259496e7c5f/1/tinWpyEwhe-sE0BhWpwcEBURGso.roa
Signing time: Fri 03 Jun 2022 18:03:20 +0000
ROA not before: Fri 03 Jun 2022 18:03:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211237
IP address blocks: 194.31.195.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 92907730 (0x589a8d2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=624039399017fa093dc8d503799f6ca403f0bd05
Validity
Not Before: Jun 3 18:03:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b629d6a7213085efac1340615a9c1c1015111aca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:93:6b:33:39:ab:f9:c6:2c:a3:9a:57:bb:c5:
1d:00:58:29:ba:2a:e7:c6:82:88:d0:61:38:24:bd:
84:cb:ad:06:6f:2e:85:88:da:71:cf:52:4a:4e:c4:
c6:c6:13:9d:94:73:73:d4:49:f6:21:fb:15:db:aa:
a9:9f:a8:41:e0:ab:ee:e0:e4:7a:ea:70:36:38:dc:
e7:9e:d5:83:35:86:26:28:cd:07:0d:6f:5a:41:53:
3a:ba:18:4d:b9:a9:a4:1d:7d:bf:f8:f9:86:49:2c:
68:31:1e:4a:eb:d1:52:41:3b:6a:9e:aa:cd:9c:49:
0f:50:a0:a3:6c:42:3a:e9:79:8e:5a:c8:35:ea:b9:
f2:ab:ec:e6:fb:b2:2b:fb:72:ea:b6:ea:ff:ce:6b:
85:df:eb:10:3f:35:23:33:58:14:df:59:2d:d6:aa:
08:d6:57:85:e5:8c:ee:85:1e:e5:65:0d:96:1e:70:
f9:7a:fe:26:d0:d8:53:29:f8:56:98:10:ce:cf:47:
d3:a6:ac:2b:0e:38:0c:9a:a0:ba:25:a1:0a:0d:a2:
4d:aa:d1:c4:94:cd:5c:24:da:6d:bc:3f:d1:63:a3:
43:27:fb:7b:56:b9:4f:83:b6:6d:b6:1d:11:93:b4:
37:61:a9:77:38:0c:ad:97:88:1f:12:af:01:63:0d:
fc:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:29:D6:A7:21:30:85:EF:AC:13:40:61:5A:9C:1C:10:15:11:1A:CA
X509v3 Authority Key Identifier:
keyid:62:40:39:39:90:17:FA:09:3D:C8:D5:03:79:9F:6C:A4:03:F0:BD:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YkA5OZAX-gk9yNUDeZ9spAPwvQU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/eb239a-33c8-4dbd-bc96-3259496e7c5f/1/tinWpyEwhe-sE0BhWpwcEBURGso.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/eb239a-33c8-4dbd-bc96-3259496e7c5f/1/YkA5OZAX-gk9yNUDeZ9spAPwvQU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.31.195.0/24
Signature Algorithm: sha256WithRSAEncryption
82:f9:99:1a:04:09:e7:1a:c0:90:b3:41:ed:8a:93:ee:02:dd:
7e:5b:26:94:09:0d:5a:27:7c:59:5d:68:2f:32:a3:b4:f2:6c:
44:d4:f0:89:fc:6d:b7:89:95:ca:ba:6d:40:b8:6b:9e:90:cd:
d7:f7:8c:e1:c3:d3:e0:65:85:9f:35:35:e8:3e:7b:88:e6:c7:
33:8d:b7:da:31:27:26:12:ac:f6:8d:1a:e3:9d:a6:29:46:dc:
60:63:37:2a:67:c5:17:e1:74:96:be:7f:b0:54:a1:08:e3:ff:
70:ec:b7:0e:a1:bb:84:a5:42:03:24:8c:98:e9:09:1e:57:a8:
ce:c3:e8:a3:2c:da:97:b6:cf:eb:04:ce:17:40:49:87:67:ff:
08:6b:9b:10:6a:12:57:55:a7:c0:68:00:bf:24:82:8d:6c:ed:
18:21:a4:ff:8e:db:e6:1c:43:76:88:28:38:c7:95:4b:51:c4:
44:a1:07:56:d0:a9:1e:4f:6c:10:5a:ea:81:24:27:78:03:1a:
99:23:bd:31:85:a1:b2:19:aa:2b:27:c9:12:fd:1b:b9:9b:4a:
0e:8f:61:51:a4:26:f6:0b:de:11:36:c9:04:50:30:ae:e4:29:
9c:d6:c9:3d:4b:7d:14:18:ed:91:ec:1b:85:f5:67:32:09:df:
20:97:86:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:52:21 2025 by rpki-client