Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/H7lTiycDK1IGxSDvwtLTUJyC7B4.roa
File: H7lTiycDK1IGxSDvwtLTUJyC7B4.roa (raw, json)
Hash identifier: M4xb3lpq46BL/ENp6T1wxkwca6tTm/9rpKkYU7YS2iE=
Subject key identifier: 1F:B9:53:8B:27:03:2B:52:06:C5:20:EF:C2:D2:D3:50:9C:82:EC:1E
Certificate issuer: /CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Certificate serial: 42942969
Authority key identifier: 21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/H7lTiycDK1IGxSDvwtLTUJyC7B4.roa
Signing time: Sat 01 Jan 2022 14:03:31 +0000
ROA not before: Sat 01 Jan 2022 14:03:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209454
IP address blocks: 194.132.58.0/24 maxlen: 24
193.181.26.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1117006185 (0x42942969)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Validity
Not Before: Jan 1 14:03:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1fb9538b27032b5206c520efc2d2d3509c82ec1e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:c0:5f:29:71:8b:5c:88:78:04:c2:53:8a:da:
0e:20:c5:53:ac:7c:93:4e:de:2d:07:37:fa:59:04:
dc:bb:2d:3a:b1:dc:ee:2d:3c:b4:b2:59:f4:60:25:
84:ce:7e:6d:c5:c3:cf:69:05:35:82:0f:57:9b:12:
2b:9e:43:bf:80:17:8c:62:9d:49:f7:3b:da:95:c2:
d5:88:28:e6:0c:1b:7d:3d:cd:52:82:64:3d:17:b1:
f3:ec:ab:20:9a:d2:82:5c:6f:a1:44:16:08:ac:1a:
81:77:8e:39:d6:f7:04:c9:7b:28:c9:4e:2c:09:66:
e1:d2:4f:51:33:49:19:28:ed:f2:73:39:1c:9b:18:
8e:4a:7c:ab:ff:7c:fa:c9:87:93:4c:d9:2b:97:56:
f3:be:85:9b:ef:ca:80:66:0a:3f:9d:15:11:08:46:
e5:1b:ee:44:93:31:77:dc:99:9d:58:32:c4:15:72:
f8:2b:38:54:bf:20:73:0b:cb:d8:10:97:b3:ae:3c:
8a:d5:7f:b6:ec:5e:2e:b5:37:15:e6:fe:2d:b9:e3:
ed:02:b0:96:cc:79:72:58:51:39:43:26:5e:d3:fa:
03:0f:f8:2d:fc:d9:15:f2:aa:12:f3:d6:68:b9:53:
c9:1d:2b:04:6a:8e:41:01:a0:67:bf:77:8c:06:78:
8d:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:B9:53:8B:27:03:2B:52:06:C5:20:EF:C2:D2:D3:50:9C:82:EC:1E
X509v3 Authority Key Identifier:
keyid:21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/H7lTiycDK1IGxSDvwtLTUJyC7B4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.181.26.0/24
194.132.58.0/24
Signature Algorithm: sha256WithRSAEncryption
10:e9:84:5f:96:fc:74:bf:62:93:1a:50:0d:3a:98:aa:0f:7c:
04:4c:95:8b:78:2b:96:f3:7f:80:2b:fb:30:04:7b:27:a6:72:
19:bd:8f:93:af:21:5c:35:56:06:71:0e:22:f2:76:e6:46:f0:
19:d3:28:38:5f:22:59:de:83:3e:a5:15:af:a2:0a:38:1f:d0:
ee:f6:73:c1:48:cc:5d:6f:73:ad:ad:59:0c:61:b0:8f:fb:9e:
ee:2c:b2:65:b1:d5:d5:e4:93:5a:a1:57:8d:57:db:f0:b0:dd:
f3:33:09:6e:31:35:fe:d2:3a:96:f1:ab:be:ca:99:ea:94:fb:
02:66:0b:9f:39:ae:0a:c3:b3:3d:00:52:a3:e5:41:c7:63:76:
fe:1d:1a:2e:28:fa:4a:4e:13:d6:d7:b7:57:4f:4d:b1:31:43:
23:05:b4:30:a2:c2:df:5c:fd:07:73:be:b1:17:58:2f:91:16:
91:2f:3e:06:0d:80:a0:d6:1c:31:11:9c:9c:0d:9a:2b:00:d1:
0a:a9:27:77:39:90:60:ee:12:f0:77:7c:fa:d9:5b:9b:db:99:
0c:97:b7:f5:a8:9f:6e:e6:92:a6:55:72:fb:98:45:36:4f:3e:
39:f3:77:cb:32:73:f5:f1:1e:13:05:8a:e1:93:7c:77:2c:dc:
4c:b0:96:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:04:51 2025 by rpki-client