Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/4ac7e0-7b52-41ce-a3c2-4afe3ca5f1a5/1/fYpXvKMxnQmV9RSTCKlvEsNI1bE.roa
File: fYpXvKMxnQmV9RSTCKlvEsNI1bE.roa (raw, json)
Hash identifier: KXcEmnbF+jxnypwHHNYz+IWx3aHGdM/f7I0Oi+C3j30=
Subject key identifier: 7D:8A:57:BC:A3:31:9D:09:95:F5:14:93:08:A9:6F:12:C3:48:D5:B1
Certificate issuer: /CN=a16f2a8162a75524ff52783f8132c33007da4d98
Certificate serial: 01919E4493AE7875C631BF52B83B6436C230
Authority key identifier: A1:6F:2A:81:62:A7:55:24:FF:52:78:3F:81:32:C3:30:07:DA:4D:98
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oW8qgWKnVST_Ung_gTLDMAfaTZg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/4ac7e0-7b52-41ce-a3c2-4afe3ca5f1a5/1/fYpXvKMxnQmV9RSTCKlvEsNI1bE.roa
Signing time: Thu 29 Aug 2024 13:12:59 +0000
ROA not before: Thu 29 Aug 2024 13:12:59 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 1299
IP address blocks: 193.17.86.0/23 maxlen: 24
193.17.176.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:9e:44:93:ae:78:75:c6:31:bf:52:b8:3b:64:36:c2:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a16f2a8162a75524ff52783f8132c33007da4d98
Validity
Not Before: Aug 29 13:12:59 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7d8a57bca3319d0995f5149308a96f12c348d5b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:a7:47:22:fb:f4:44:8c:e7:4d:5a:22:28:74:
5b:87:aa:43:65:4e:29:0a:0c:22:00:5a:25:40:65:
cc:05:be:43:dd:43:79:4c:d1:bd:63:d8:f7:a1:89:
56:08:f1:b5:f0:a0:b1:3d:db:ff:ae:ba:8a:89:24:
90:53:f7:0c:49:c8:62:57:27:2a:30:28:75:71:05:
c7:35:84:7e:e3:2a:db:0a:b4:8c:3f:01:b4:f4:7c:
5c:70:dc:07:10:ca:d7:98:20:91:db:21:27:f7:fa:
16:27:cf:bb:49:d3:de:da:f7:f4:dd:a7:8e:75:d0:
e0:7d:db:39:43:df:55:54:fa:61:6c:83:09:5c:e1:
9e:ad:4f:0f:a6:32:87:2b:17:18:71:f9:f5:b4:99:
4e:65:ef:1a:8d:e4:1c:89:06:e1:d7:47:b2:fa:90:
f7:ee:86:ad:06:7a:93:33:f3:62:6d:34:4c:0a:56:
00:de:47:c0:26:d2:6f:3a:77:f4:22:ed:91:e0:c2:
73:4f:62:69:c6:ae:c8:98:95:98:d5:9a:c3:6e:f2:
60:7e:44:e4:83:38:07:5f:15:db:e8:2d:50:f6:7e:
3f:8f:27:51:57:a6:e5:bb:ef:43:23:a1:e2:f2:cc:
0a:e2:1a:7a:8b:c7:1b:ef:b2:5c:ac:0c:7d:f2:59:
39:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:8A:57:BC:A3:31:9D:09:95:F5:14:93:08:A9:6F:12:C3:48:D5:B1
X509v3 Authority Key Identifier:
keyid:A1:6F:2A:81:62:A7:55:24:FF:52:78:3F:81:32:C3:30:07:DA:4D:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oW8qgWKnVST_Ung_gTLDMAfaTZg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/4ac7e0-7b52-41ce-a3c2-4afe3ca5f1a5/1/fYpXvKMxnQmV9RSTCKlvEsNI1bE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/4ac7e0-7b52-41ce-a3c2-4afe3ca5f1a5/1/oW8qgWKnVST_Ung_gTLDMAfaTZg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.17.86.0/23
193.17.176.0/23
Signature Algorithm: sha256WithRSAEncryption
9e:14:72:b9:22:51:20:68:61:a1:7a:b4:1f:a4:04:06:02:e2:
e3:cd:10:10:57:1b:a8:ab:c3:91:1d:9e:88:d0:da:41:bb:7a:
e1:b7:8e:12:30:7e:f6:a3:b5:c6:ae:b9:2d:00:a2:86:17:df:
6f:0a:9c:9e:f3:65:ad:31:76:a4:84:aa:bf:bd:05:10:6e:ac:
67:d4:7a:f0:d7:a9:7a:ac:e1:8d:9b:03:3d:8b:db:33:f9:60:
6b:7f:1e:9f:ce:8f:61:bf:50:ee:8b:f0:86:e2:c9:95:52:54:
8d:5e:bf:aa:76:e1:69:6f:3a:5c:4f:dd:fd:51:ea:fc:be:6e:
3a:d3:98:da:69:63:86:6a:dd:be:6b:3c:42:8f:bc:65:ce:43:
79:25:63:e1:ca:65:78:a0:ee:11:d2:e6:c6:a1:e9:94:80:25:
31:b2:45:00:be:fb:d3:50:fe:bf:50:33:85:69:6a:bd:41:5c:
28:4a:83:d5:28:91:48:eb:d3:d6:57:ac:3a:31:e0:86:b2:cb:
c0:81:6a:f9:09:4e:8f:1e:46:4c:58:db:80:fd:3f:ae:5d:34:
58:fe:72:ac:bc:78:f9:e9:98:ad:00:64:6e:98:92:b8:3d:4d:
25:e3:2b:33:5b:df:a3:3c:9a:d9:b3:58:62:a5:c6:18:45:18:
7d:0a:84:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 15:14:12 2025 by rpki-client