Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/afba5b-8b9c-4cb4-8a2a-f14f3e3f340e/1/Til1xfSLfzSBIzBH7yZy9hjPAHU.roa
File: Til1xfSLfzSBIzBH7yZy9hjPAHU.roa (raw, json)
Hash identifier: ozXBXdGKUqZBcjLq6HHlsLS5zEU7c9WR5NRxj2AAgr4=
Subject key identifier: 4E:29:75:C5:F4:8B:7F:34:81:23:30:47:EF:26:72:F6:18:CF:00:75
Certificate issuer: /CN=89daadb981f7e93da4b19acf41079f9bbe1d672e
Certificate serial: 07C84AAC
Authority key identifier: 89:DA:AD:B9:81:F7:E9:3D:A4:B1:9A:CF:41:07:9F:9B:BE:1D:67:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/idqtuYH36T2ksZrPQQefm74dZy4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/afba5b-8b9c-4cb4-8a2a-f14f3e3f340e/1/Til1xfSLfzSBIzBH7yZy9hjPAHU.roa
Signing time: Sat 01 Jan 2022 13:07:11 +0000
ROA not before: Sat 01 Jan 2022 13:07:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15626
IP address blocks: 193.238.152.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 130566828 (0x7c84aac)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89daadb981f7e93da4b19acf41079f9bbe1d672e
Validity
Not Before: Jan 1 13:07:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4e2975c5f48b7f3481233047ef2672f618cf0075
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:d0:7d:a5:e2:8e:b6:8d:ff:ea:77:cd:e6:92:
ec:f4:41:4f:0d:19:7f:0f:84:91:9e:2d:8c:89:22:
9d:08:7d:bc:bc:6c:46:fb:8f:e2:79:f7:9a:41:4e:
bf:1f:e4:7c:d0:b2:d2:01:72:5f:03:2f:bd:5a:74:
c2:d6:4a:d5:81:90:eb:88:4e:5c:8c:3f:98:13:d4:
e9:4a:fb:45:79:a0:94:8c:4a:1b:94:80:48:84:b1:
62:a6:d2:2c:15:aa:2e:fe:00:6c:6c:55:b3:26:5a:
fc:21:dc:2a:bc:e3:ca:6e:fd:3f:cb:c9:dd:81:4a:
47:23:70:7f:d6:50:92:fa:c6:b1:8f:60:a2:c8:c0:
89:e1:a7:c2:97:7e:a9:12:fb:5e:7e:eb:b7:fc:c5:
84:fa:a6:fc:aa:d3:16:43:f5:33:67:43:5c:b8:e3:
3f:2a:a7:54:68:11:42:8a:10:b8:51:2b:88:3a:65:
89:8c:08:80:e1:03:e1:cb:13:22:9d:a2:25:8f:42:
d0:b1:b9:03:76:2d:95:ed:ca:3c:2b:54:bc:96:bd:
37:3c:0a:19:93:d8:1c:3f:57:d1:93:04:ca:44:94:
8b:4b:fe:54:eb:c2:92:d1:86:2c:8e:72:75:62:7d:
8e:6b:56:a3:56:61:80:82:15:a7:b1:bf:54:1a:2e:
3c:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:29:75:C5:F4:8B:7F:34:81:23:30:47:EF:26:72:F6:18:CF:00:75
X509v3 Authority Key Identifier:
keyid:89:DA:AD:B9:81:F7:E9:3D:A4:B1:9A:CF:41:07:9F:9B:BE:1D:67:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/idqtuYH36T2ksZrPQQefm74dZy4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/afba5b-8b9c-4cb4-8a2a-f14f3e3f340e/1/Til1xfSLfzSBIzBH7yZy9hjPAHU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/afba5b-8b9c-4cb4-8a2a-f14f3e3f340e/1/idqtuYH36T2ksZrPQQefm74dZy4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.238.152.0/23
Signature Algorithm: sha256WithRSAEncryption
9a:69:b0:6f:72:1d:4c:02:bb:ae:49:a2:61:bb:a7:03:4e:e4:
60:f4:ea:be:d2:62:e6:87:1d:e3:a0:88:76:92:fd:ec:df:53:
15:4f:76:c4:0b:f7:b7:2b:d3:6d:ee:f8:3f:3f:09:e4:05:be:
67:48:c7:3f:02:73:64:ea:00:96:c0:81:94:2a:c9:59:3f:1e:
4e:68:e2:df:30:c6:f5:38:92:45:76:46:41:02:62:0f:c5:d2:
ce:e5:af:fd:22:77:eb:db:23:f9:93:0d:2d:e8:78:3f:a4:47:
88:05:fe:e5:1a:d1:04:b5:5e:02:9b:9a:ed:94:68:3a:bc:2c:
f8:c5:81:e2:ac:a8:00:6e:0e:af:2b:7f:65:f1:69:1e:76:74:
89:58:0e:be:2b:2f:d0:f9:f0:c7:99:c0:97:89:9f:3a:bf:e6:
d3:df:00:71:f3:d9:de:ec:b8:f5:91:73:02:eb:ac:18:5c:2b:
5b:6e:c3:bb:85:e3:63:af:f5:ae:ea:6f:b7:cb:26:a8:93:bf:
3f:3d:81:d2:a7:d7:b1:80:38:1d:51:e8:5e:7f:d6:bd:fe:16:
e1:77:8e:e3:c0:15:79:ec:8b:90:aa:cf:1e:d8:f1:32:cd:46:
e6:6a:c6:e1:08:12:94:4b:9f:b2:e5:e2:13:18:ed:00:f8:c7:
05:c7:dc:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 02:47:59 2025 by rpki-client