Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/f07c66-473d-435a-b693-c369c1d4c337/1/veOWoo4NsmmRH_-GNpGOxXK4MAw.roa
File: veOWoo4NsmmRH_-GNpGOxXK4MAw.roa (raw, json)
Hash identifier: CEWUIX4cLPjT/GbdV90bZJli1Zt6o7j98zzGqx8bOk8=
Subject key identifier: BD:E3:96:A2:8E:0D:B2:69:91:1F:FF:86:36:91:8E:C5:72:B8:30:0C
Certificate issuer: /CN=44fc887c977393575de6257e75fa99cde2037c6c
Certificate serial: 01911EDFBBF5AD85D384B8CEAB3BACC2AF11
Authority key identifier: 44:FC:88:7C:97:73:93:57:5D:E6:25:7E:75:FA:99:CD:E2:03:7C:6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RPyIfJdzk1dd5iV-dfqZzeIDfGw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/f07c66-473d-435a-b693-c369c1d4c337/1/veOWoo4NsmmRH_-GNpGOxXK4MAw.roa
Signing time: Sun 04 Aug 2024 19:31:04 +0000
ROA not before: Sun 04 Aug 2024 19:31:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 193.43.142.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:1e:df:bb:f5:ad:85:d3:84:b8:ce:ab:3b:ac:c2:af:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=44fc887c977393575de6257e75fa99cde2037c6c
Validity
Not Before: Aug 4 19:31:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bde396a28e0db269911fff8636918ec572b8300c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:fa:8b:a4:b0:81:99:3b:a7:5f:e0:9a:0c:9a:
87:88:ad:47:06:71:3b:1e:87:ce:93:10:81:fb:4f:
9d:a6:02:e9:7c:d9:6f:cd:51:72:91:9b:c0:5c:b9:
05:02:f4:08:70:ff:9d:d4:26:9f:bd:05:9c:9c:6e:
70:78:ae:18:43:e2:4e:d7:8c:4a:79:f3:96:c2:d0:
77:70:93:2d:39:2b:ad:e4:a2:83:6e:7e:23:f4:6a:
43:14:4e:03:97:b5:17:c0:c4:dd:7f:e3:49:09:3e:
b2:c4:1c:35:7d:e3:02:48:27:93:79:f2:ce:3d:8b:
cd:8f:9d:c9:11:e6:b1:ab:ac:09:b6:2e:f2:43:c4:
86:b6:f2:48:4a:71:2a:5a:70:25:6b:82:f5:aa:3f:
68:c4:8d:80:d2:7c:f1:b4:a9:39:13:c8:f8:46:af:
8e:f6:c7:9b:6b:32:0f:f0:4a:24:43:10:26:5d:b7:
cf:24:d6:0a:9b:6c:ea:0c:5d:f3:7b:8d:31:7e:e5:
78:cd:85:2b:bd:74:f4:e6:65:0f:04:ac:5a:81:86:
9a:e3:d3:78:54:15:12:d8:c4:4c:45:e3:be:b5:16:
c8:f2:0b:d9:32:a6:42:ad:26:db:a9:31:fb:26:e6:
27:82:7c:f5:3d:e0:26:00:7f:d3:2b:fd:3a:da:40:
60:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:E3:96:A2:8E:0D:B2:69:91:1F:FF:86:36:91:8E:C5:72:B8:30:0C
X509v3 Authority Key Identifier:
keyid:44:FC:88:7C:97:73:93:57:5D:E6:25:7E:75:FA:99:CD:E2:03:7C:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RPyIfJdzk1dd5iV-dfqZzeIDfGw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/f07c66-473d-435a-b693-c369c1d4c337/1/veOWoo4NsmmRH_-GNpGOxXK4MAw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/f07c66-473d-435a-b693-c369c1d4c337/1/RPyIfJdzk1dd5iV-dfqZzeIDfGw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.43.142.0/24
Signature Algorithm: sha256WithRSAEncryption
38:a8:5e:8f:73:77:a6:97:a1:0c:64:e6:6a:e9:34:68:7c:78:
f6:c0:e4:78:43:53:70:3e:0b:99:01:7d:28:14:ba:5d:5e:94:
16:a9:28:86:38:64:71:37:7c:3b:0d:c7:6c:55:a6:f1:15:b1:
99:4b:10:5f:de:27:e2:9a:51:b6:28:7b:9f:9c:c6:ab:c1:15:
71:2b:b2:97:05:ad:8f:cb:12:e8:c2:f8:2f:8c:c2:e8:db:6c:
a5:24:b0:3e:d2:d8:84:6c:a6:21:78:87:6f:25:eb:ac:29:9c:
e8:f2:c6:3f:1d:61:d9:cd:c4:28:d8:2b:63:d0:d7:09:0d:fb:
8c:1b:50:25:cf:5f:cd:4d:94:6f:d6:ba:1e:e4:7c:ab:12:34:
9c:89:ad:2f:3f:30:fb:45:7c:4e:9c:37:f5:37:8f:ad:8f:96:
7d:60:52:b5:4d:eb:17:99:c5:70:40:53:50:d3:cf:e9:c1:6f:
b8:9c:db:91:a0:08:7a:af:5f:39:b4:41:e2:6c:66:2f:f7:aa:
98:56:74:db:17:bf:a4:f3:b4:80:70:01:1d:4e:1a:89:8f:f1:
c9:36:89:df:9a:b7:41:dc:f7:12:52:6a:a5:e3:8d:09:37:b0:
06:a8:25:0d:a6:03:a4:bc:61:75:26:4d:d9:df:ac:2d:03:b1:
cd:2d:50:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:31:56 2025 by rpki-client