Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/hdD7eRJpxAM04M0ZUsa7GcTkPBU.roa
File: hdD7eRJpxAM04M0ZUsa7GcTkPBU.roa (raw, json)
Hash identifier: Qku1Oypg3JhGkYQ/nSaDL2ZitUSeKqj72FZXBa2/F7k=
Subject key identifier: 85:D0:FB:79:12:69:C4:03:34:E0:CD:19:52:C6:BB:19:C4:E4:3C:15
Certificate issuer: /CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Certificate serial: 018602127120D2C6EF42852DBF907F8D6440
Authority key identifier: 21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/hdD7eRJpxAM04M0ZUsa7GcTkPBU.roa
Signing time: Mon 30 Jan 2023 09:46:48 +0000
ROA not before: Mon 30 Jan 2023 09:46:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34946
IP address blocks: 193.183.126.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:02:12:71:20:d2:c6:ef:42:85:2d:bf:90:7f:8d:64:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Validity
Not Before: Jan 30 09:46:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=85d0fb791269c40334e0cd1952c6bb19c4e43c15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:86:e7:25:72:f3:7b:d2:5c:ab:27:11:c2:8e:
ee:2f:f0:d6:df:6a:d1:51:39:fe:c7:3c:85:10:71:
83:10:4e:62:be:0f:d8:f8:7e:b9:bb:0f:c2:2f:3f:
5a:91:44:66:06:f9:7c:4a:f8:f9:48:0f:ba:24:4e:
c5:a2:d6:8d:ec:fd:e8:c3:f4:26:71:d8:67:ea:2f:
99:94:32:a0:e6:8d:19:24:c5:39:41:f9:2a:eb:53:
bd:4f:84:23:2b:b2:38:77:84:03:70:44:59:ea:b7:
5d:d1:57:2b:d5:94:ba:88:fa:e1:6c:13:3c:75:aa:
08:3d:79:5c:31:5f:1d:52:c5:66:6b:99:84:eb:55:
6d:22:1d:45:01:fa:36:96:b7:39:1a:11:28:33:d6:
75:1a:09:34:91:4b:39:4c:90:a6:17:ba:89:a2:e4:
fe:c0:7b:e8:bf:07:f1:a2:89:91:44:c3:db:8e:bd:
43:63:71:c7:73:ef:11:96:a9:10:a8:6d:f4:26:8f:
b2:6f:eb:34:9e:10:00:8a:20:df:72:62:fe:f5:27:
44:99:56:4f:c9:7c:39:2f:81:77:24:89:3e:33:d3:
47:72:00:cb:43:24:e9:29:a3:eb:2e:73:d5:1a:47:
99:70:1e:2d:cf:75:36:09:eb:2c:dc:cd:91:1a:7d:
ed:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:D0:FB:79:12:69:C4:03:34:E0:CD:19:52:C6:BB:19:C4:E4:3C:15
X509v3 Authority Key Identifier:
keyid:21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/hdD7eRJpxAM04M0ZUsa7GcTkPBU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.183.126.0/23
Signature Algorithm: sha256WithRSAEncryption
77:0a:0a:84:5d:f0:45:16:bd:8a:ac:23:42:9c:54:3d:c5:61:
12:a0:4a:bf:0a:71:4d:6a:53:9d:a0:a7:dc:10:a9:24:b2:28:
ce:82:cf:ef:fb:d6:e5:1e:90:06:5a:68:f1:ce:a6:fc:dd:72:
9c:58:2c:42:96:d4:67:3d:83:13:f0:9a:c8:0d:5b:34:bd:66:
c5:c7:54:22:6f:11:a5:6d:9f:80:89:79:a4:f0:8b:4c:c5:17:
2d:ac:6a:3f:a9:09:f5:ac:f3:52:15:f8:c6:96:81:59:32:3d:
b4:87:21:6c:8a:f7:92:d9:23:37:32:38:41:e2:96:e5:ac:af:
ff:5a:20:e7:39:cc:0e:8a:e3:b9:d7:4d:1c:0f:50:4f:d4:a9:
80:b8:0a:40:28:6f:87:8b:40:83:c1:84:bf:bf:00:a8:1d:28:
7d:0b:06:42:4f:3f:3f:e0:a1:85:7e:1a:93:d8:3c:76:d5:55:
d4:fe:d7:a0:c7:f6:8f:ad:13:ef:20:db:52:59:c6:79:c9:2b:
d6:11:4a:4a:f9:1e:2a:d6:e6:93:8e:76:05:3a:46:d9:40:56:
b6:eb:3b:eb:2b:e3:bd:dc:50:2e:76:2d:67:3e:79:ff:b2:9e:
b6:47:36:5b:6f:b6:84:75:8e:05:19:b1:39:ec:2f:06:45:01:
38:86:8c:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:01:46 2025 by rpki-client