Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/tn13D6SkXi7saoiuQLyxNrbjccQ.roa
File: tn13D6SkXi7saoiuQLyxNrbjccQ.roa (raw, json)
Hash identifier: dqOfI6j7fXlgGDnA6ielZ8KQyFYHUpk8Yy+AcC1WEbw=
Subject key identifier: B6:7D:77:0F:A4:A4:5E:2E:EC:6A:88:AE:40:BC:B1:36:B6:E3:71:C4
Certificate issuer: /CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Certificate serial: 0186E4671E4CC774998554D65DE2AFDA92D6
Authority key identifier: 21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/tn13D6SkXi7saoiuQLyxNrbjccQ.roa
Signing time: Wed 15 Mar 2023 08:33:28 +0000
ROA not before: Wed 15 Mar 2023 08:33:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57829
IP address blocks: 194.14.195.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:e4:67:1e:4c:c7:74:99:85:54:d6:5d:e2:af:da:92:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Validity
Not Before: Mar 15 08:33:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b67d770fa4a45e2eec6a88ae40bcb136b6e371c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:9f:59:16:f7:65:84:bd:00:dd:21:8c:1f:ce:
e2:19:ca:78:40:73:0f:ed:c6:c2:b5:eb:84:6c:21:
47:3f:3c:7f:64:c7:f9:a3:35:a7:ce:c8:4e:2a:52:
03:bb:3c:f3:a8:42:49:f1:29:d8:00:46:60:41:eb:
99:67:07:ea:0b:01:15:d0:ef:4b:da:e2:bd:dc:c2:
a0:bf:36:b5:f2:27:19:0f:ff:60:db:c0:90:56:de:
e5:18:84:41:49:5b:d0:a3:a7:48:96:ed:d3:65:ed:
21:ea:a6:b1:3e:6f:30:ce:11:98:00:d2:07:90:54:
99:96:e4:03:27:62:2a:29:01:65:ef:bd:62:f1:8a:
19:a8:51:47:3d:35:ae:3b:0a:70:c7:63:67:cb:7b:
10:92:58:d2:89:1e:97:13:48:56:5b:49:2a:42:1e:
ac:98:3b:5f:c3:c4:c9:a8:1c:0c:64:07:6e:00:82:
40:a0:7f:df:82:6f:e2:87:53:37:77:48:32:99:f8:
ce:9f:4d:44:5a:4a:1b:fe:83:23:c4:cb:c1:76:7c:
47:3d:e9:2f:c8:89:5c:a0:a9:5d:c6:ba:0e:ea:97:
2c:f2:c4:a3:b2:32:e8:fa:7a:d7:ff:c9:6b:0b:30:
ca:76:2a:18:e3:4e:aa:cf:9b:70:21:42:24:93:48:
08:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:7D:77:0F:A4:A4:5E:2E:EC:6A:88:AE:40:BC:B1:36:B6:E3:71:C4
X509v3 Authority Key Identifier:
keyid:21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/tn13D6SkXi7saoiuQLyxNrbjccQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.14.195.0/24
Signature Algorithm: sha256WithRSAEncryption
20:5a:2f:13:81:26:35:21:70:5c:df:11:cb:3c:3a:f5:06:d1:
37:fb:57:21:21:7c:26:85:d1:6e:87:ce:70:d1:cf:12:62:8e:
60:bb:b4:3d:e9:96:a3:b0:c3:90:85:6f:92:00:0c:eb:f2:81:
58:b4:d5:dc:7d:ef:06:87:4f:b5:7b:20:4c:7a:ee:08:54:3d:
5f:91:9c:29:95:5f:99:16:78:86:33:bd:c1:5b:1a:d8:ab:b2:
0e:0f:5b:87:b2:f9:0a:36:03:28:7c:1e:36:72:d5:81:8a:78:
6d:4a:ff:84:23:4e:53:09:82:89:39:fe:70:34:22:72:ec:57:
89:de:06:83:49:1e:6d:a1:1e:2a:c2:02:ce:35:08:fe:d3:37:
89:6a:d7:71:e7:16:5b:9d:01:84:73:87:6f:7f:b5:30:6b:4f:
94:82:73:37:62:2e:78:7c:6a:60:6c:2a:22:0c:a1:7d:2a:b6:
17:78:8a:59:e4:06:b6:ab:fa:54:ee:40:0a:6c:48:6b:97:4d:
e3:d4:26:a2:84:a7:7c:fe:c6:de:6d:86:ce:c9:20:f0:46:40:
c5:75:e2:11:97:e6:25:98:79:d5:f5:04:5e:44:30:8d:a4:f2:
f2:3d:cc:c8:7e:ac:d3:9b:55:45:e4:ad:50:fb:d4:f8:44:28:
c0:fd:fb:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:08:02 2025 by rpki-client