Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/f07c66-473d-435a-b693-c369c1d4c337/1/XrlxxiMzvLAhoj8Z8c25AutWt0o.roa
File: XrlxxiMzvLAhoj8Z8c25AutWt0o.roa (raw, json)
Hash identifier: uxKKKD1tUw6d0SNCQuprYT7T3oEPMqYn61BHF2oGXL4=
Subject key identifier: 5E:B9:71:C6:23:33:BC:B0:21:A2:3F:19:F1:CD:B9:02:EB:56:B7:4A
Certificate issuer: /CN=44fc887c977393575de6257e75fa99cde2037c6c
Certificate serial: 01911EDFBCEC0D95F7BBF56DF9115D51F915
Authority key identifier: 44:FC:88:7C:97:73:93:57:5D:E6:25:7E:75:FA:99:CD:E2:03:7C:6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RPyIfJdzk1dd5iV-dfqZzeIDfGw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/f07c66-473d-435a-b693-c369c1d4c337/1/XrlxxiMzvLAhoj8Z8c25AutWt0o.roa
Signing time: Sun 04 Aug 2024 19:31:04 +0000
ROA not before: Sun 04 Aug 2024 19:31:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 7029
IP address blocks: 193.43.138.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:1e:df:bc:ec:0d:95:f7:bb:f5:6d:f9:11:5d:51:f9:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=44fc887c977393575de6257e75fa99cde2037c6c
Validity
Not Before: Aug 4 19:31:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5eb971c62333bcb021a23f19f1cdb902eb56b74a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:51:dd:76:76:aa:0e:72:be:35:f8:e2:9e:89:
91:eb:94:eb:52:ed:88:d6:43:cd:29:7f:a7:f8:31:
77:01:fd:e4:ac:f8:5c:c9:0c:4c:2b:60:48:02:68:
57:2d:f4:5b:98:9f:0f:de:32:42:a0:a9:36:c6:a9:
96:c7:c7:e8:cf:ba:71:1e:da:a4:96:ba:bc:d7:8d:
57:35:c8:20:7b:00:bf:9d:d1:76:bc:14:f1:39:09:
b0:6b:e1:69:41:91:f3:77:e1:58:fd:61:ac:bd:8b:
c6:cd:b4:a5:7b:80:13:de:bf:17:ba:24:1a:ad:d5:
6f:55:eb:ee:07:46:76:de:da:63:04:52:0c:54:06:
4a:bc:9b:57:7f:03:9c:b6:45:23:6b:1a:3b:ab:bc:
e3:42:90:a2:ae:1f:3a:b7:04:c7:e7:cb:69:30:3c:
b4:d5:66:70:6c:f4:ec:49:44:91:2a:04:34:56:3c:
e1:db:84:bd:02:c8:af:45:f9:c9:65:94:ea:28:07:
2b:ba:39:95:53:0e:5f:8a:d0:b0:96:5d:2b:27:de:
f7:8e:c2:78:16:0c:79:68:a8:34:7c:2a:ec:72:99:
00:46:61:9e:35:87:83:a0:47:7f:a1:2e:70:2f:24:
75:a8:3c:41:bc:7d:c3:0f:6c:0a:57:33:1d:b4:c7:
cf:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:B9:71:C6:23:33:BC:B0:21:A2:3F:19:F1:CD:B9:02:EB:56:B7:4A
X509v3 Authority Key Identifier:
keyid:44:FC:88:7C:97:73:93:57:5D:E6:25:7E:75:FA:99:CD:E2:03:7C:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RPyIfJdzk1dd5iV-dfqZzeIDfGw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/f07c66-473d-435a-b693-c369c1d4c337/1/XrlxxiMzvLAhoj8Z8c25AutWt0o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/f07c66-473d-435a-b693-c369c1d4c337/1/RPyIfJdzk1dd5iV-dfqZzeIDfGw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.43.138.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:2f:4c:4d:00:60:a6:7f:db:6b:14:37:96:89:04:1f:16:69:
c5:77:39:4c:c7:f9:14:ca:7b:2f:32:81:04:61:d5:09:7c:2b:
b6:fc:06:4a:a6:53:c1:b0:83:d0:db:9d:bc:19:72:b9:c0:0e:
b0:6f:77:9f:16:70:90:f1:37:98:b9:9b:16:2e:dc:85:e5:84:
a7:b3:5d:d6:25:5f:46:55:26:11:07:1b:4c:34:7f:a5:f3:3d:
77:c8:fd:af:e4:4a:89:01:66:34:61:7a:2a:36:c3:b5:7e:e4:
cf:6e:ba:30:a9:68:22:4e:f1:d8:bc:20:9a:cf:9a:1e:eb:e9:
af:62:c2:dd:cb:f6:1b:b1:55:e4:01:7c:81:2a:3d:09:29:f1:
d9:5b:bd:c0:25:97:a2:76:1b:f1:49:cc:e4:9e:b4:eb:f9:1c:
2e:72:64:b8:75:a1:d6:f2:fb:d1:64:30:64:ee:2e:82:24:52:
8a:ce:4d:b5:39:09:b9:2c:ae:49:a7:fd:c7:de:d2:5d:34:ac:
44:ba:3e:af:0d:e4:e9:62:a8:e9:5d:6b:66:b7:44:b9:af:74:
83:80:57:a8:90:7b:b6:e7:dd:16:ba:e5:1b:d0:50:e8:57:44:
08:5b:c2:76:59:31:9e:d5:f6:ed:c0:aa:e5:ed:f8:25:dd:8a:
ee:f3:b7:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:42:48 2025 by rpki-client