Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/fUv05W_9PsXMlGZG3mw6crPgWWE.roa
File: fUv05W_9PsXMlGZG3mw6crPgWWE.roa (raw, json)
Hash identifier: NnURI5opcIJ5R/ZEm2JXsh3HjsUqDf5WO/tyKqQPFsk=
Subject key identifier: 7D:4B:F4:E5:6F:FD:3E:C5:CC:94:66:46:DE:6C:3A:72:B3:E0:59:61
Certificate issuer: /CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Certificate serial: 0188772FF78A5649B4A6E43664749D02BF69
Authority key identifier: 21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/fUv05W_9PsXMlGZG3mw6crPgWWE.roa
Signing time: Thu 01 Jun 2023 13:40:12 +0000
ROA not before: Thu 01 Jun 2023 13:40:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57630
IP address blocks: 194.71.0.0/23 maxlen: 23
193.234.94.0/24 maxlen: 24
192.71.0.0/24 maxlen: 24
194.103.16.0/23 maxlen: 24
193.234.116.0/22 maxlen: 22
193.183.20.0/24 maxlen: 24
193.181.34.0/24 maxlen: 24
194.103.197.0/24 maxlen: 24
194.103.95.0/24 maxlen: 24
193.234.205.0/24 maxlen: 24
194.14.57.0/24 maxlen: 24
193.234.3.0/24 maxlen: 24
192.165.3.0/24 maxlen: 24
194.103.145.0/24 maxlen: 24
194.132.166.0/24 maxlen: 24
194.132.164.0/24 maxlen: 24
193.183.49.0/24 maxlen: 24
193.234.144.0/24 maxlen: 24
192.165.134.0/23 maxlen: 23
194.132.186.0/24 maxlen: 24
193.183.59.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:77:2f:f7:8a:56:49:b4:a6:e4:36:64:74:9d:02:bf:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Validity
Not Before: Jun 1 13:40:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7d4bf4e56ffd3ec5cc946646de6c3a72b3e05961
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:6b:35:7c:20:dc:bb:c2:bd:f5:ab:3f:a3:99:
6c:97:48:27:97:7a:c9:4f:c8:e6:91:85:35:12:ca:
6e:67:18:c1:df:6c:bc:0e:bf:53:43:42:b3:39:17:
c7:21:2e:88:7c:e7:85:06:8a:37:8a:71:92:c8:18:
66:b6:64:45:66:2f:85:8e:4c:08:a2:5d:37:3a:5b:
44:91:7b:14:af:7e:fe:86:1d:d8:47:62:67:87:f7:
5c:56:95:67:de:36:04:a8:64:d9:4b:5f:1c:3f:77:
a2:0d:38:ca:98:25:86:37:e7:94:02:2e:5a:75:7d:
17:66:44:1f:02:8f:8e:95:51:7b:a6:17:99:ce:b4:
06:1d:d2:6c:62:d7:f2:0e:da:6d:5f:d0:a6:ba:00:
77:c9:c5:44:61:b4:20:83:68:e7:af:0a:8d:e8:8f:
9b:1e:3a:58:8a:e3:31:40:f0:b5:78:8f:ae:57:a4:
9d:51:6c:a2:dd:e8:4c:e9:57:bb:51:7e:7a:68:12:
63:2e:43:ad:ce:62:d8:57:69:51:3b:2c:d4:5b:36:
38:0d:cd:b9:55:be:67:37:b4:41:11:7e:de:1e:fe:
4b:6a:64:a3:77:3f:ab:0b:08:64:bd:4c:63:30:b0:
37:3a:6a:b0:56:80:2b:95:35:f8:f9:12:de:9a:c6:
62:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:4B:F4:E5:6F:FD:3E:C5:CC:94:66:46:DE:6C:3A:72:B3:E0:59:61
X509v3 Authority Key Identifier:
keyid:21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/fUv05W_9PsXMlGZG3mw6crPgWWE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.71.0.0/24
192.165.3.0/24
192.165.134.0/23
193.181.34.0/24
193.183.20.0/24
193.183.49.0/24
193.183.59.0/24
193.234.3.0/24
193.234.94.0/24
193.234.116.0/22
193.234.144.0/24
193.234.205.0/24
194.14.57.0/24
194.71.0.0/23
194.103.16.0/23
194.103.95.0/24
194.103.145.0/24
194.103.197.0/24
194.132.164.0/24
194.132.166.0/24
194.132.186.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:6e:e2:86:05:57:39:9a:e1:44:32:37:1b:b9:fe:be:ab:5a:
69:ab:94:68:78:0a:b5:eb:71:52:3e:bd:84:ae:74:2b:a4:69:
82:3c:05:00:85:f1:92:3d:69:83:f4:3e:47:6a:35:1b:7c:9b:
97:73:c6:87:cc:44:57:6a:ba:ce:be:f2:43:13:16:13:36:d6:
86:df:8d:05:8a:45:3c:ca:17:97:2b:35:24:b9:00:10:6c:8f:
07:fa:5d:3f:dd:ff:9c:fd:40:be:7f:fb:1c:21:31:4a:74:e4:
00:52:6d:cf:89:05:09:71:e8:75:c8:66:b4:0c:59:40:f6:e9:
43:71:69:c2:b9:5b:cf:e4:fc:a0:f7:fc:b2:d1:7a:7f:be:15:
ea:c5:e7:28:2e:98:79:a0:f6:05:5b:c0:e1:11:fb:53:7a:28:
71:ca:06:ce:10:16:7a:5c:6a:84:d8:fe:25:3f:6a:cb:ff:63:
19:aa:54:b6:a2:cc:b2:5b:6b:58:61:9f:1b:3b:cb:b4:b2:59:
65:6d:96:7d:cf:14:30:0e:b1:96:a7:82:ea:2a:a4:07:aa:05:
2d:39:0a:e8:5c:09:76:b7:d9:56:67:05:64:ad:cf:73:27:56:
99:39:b8:e6:1c:ad:80:d8:dc:23:a6:8d:b6:9a:47:53:90:d8:
b1:e6:27:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:04:41 2025 by rpki-client