Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/42ac52-ba66-48a2-a07a-b636988ead4d/1/1YRct3CXimPO8SS5XKX7RWJ1v1Y.roa
File: 1YRct3CXimPO8SS5XKX7RWJ1v1Y.roa (raw, json)
Hash identifier: rGZssnCrJxX7Zh2a6oMhQ4eCjJxiYRuM0z6N33hWAE0=
Subject key identifier: D5:84:5C:B7:70:97:8A:63:CE:F1:24:B9:5C:A5:FB:45:62:75:BF:56
Certificate issuer: /CN=1f1d04807504dcbe1ab80ef84d86e514c57e7e8d
Certificate serial: 018572B40CCCEE53D17860E69EB29DF6C93F
Authority key identifier: 1F:1D:04:80:75:04:DC:BE:1A:B8:0E:F8:4D:86:E5:14:C5:7E:7E:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hx0EgHUE3L4auA74TYblFMV-fo0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/42ac52-ba66-48a2-a07a-b636988ead4d/1/1YRct3CXimPO8SS5XKX7RWJ1v1Y.roa
Signing time: Mon 02 Jan 2023 13:38:00 +0000
ROA not before: Mon 02 Jan 2023 13:38:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205960
IP address blocks: 193.239.151.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:b4:0c:cc:ee:53:d1:78:60:e6:9e:b2:9d:f6:c9:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f1d04807504dcbe1ab80ef84d86e514c57e7e8d
Validity
Not Before: Jan 2 13:38:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d5845cb770978a63cef124b95ca5fb456275bf56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:b6:3c:64:ba:01:22:ad:e0:79:10:93:a2:61:
45:72:04:61:43:dc:38:7d:05:6e:53:5b:90:ef:e6:
0e:73:68:52:d6:f8:d9:d7:0c:b8:a0:31:05:2f:4c:
ec:30:e6:31:1f:42:d6:e6:78:28:dd:a9:45:bf:53:
5f:f9:30:fa:1d:91:45:8f:b3:44:67:7f:7f:0e:bb:
0f:ce:25:9e:5e:f4:b8:3a:c9:b9:1e:2d:81:e5:dd:
5d:f7:59:fa:c5:c4:96:66:fa:6f:79:47:94:f2:71:
84:36:6b:6b:43:4b:ee:16:a9:e4:8c:67:66:ee:e8:
21:0d:95:83:44:71:e8:69:66:0f:1c:52:23:b8:b8:
63:fe:05:c6:3e:f3:bb:cb:57:c5:6b:6d:d4:46:8b:
84:4b:6a:62:3e:ab:b6:3f:79:de:39:43:22:10:47:
e1:d3:c8:27:c8:47:44:14:4f:01:c2:fa:34:44:87:
a3:8c:81:71:19:c7:40:ed:11:38:bf:3c:9f:1d:1c:
01:40:85:89:fd:97:c8:a8:8f:cf:d0:88:58:23:9c:
b4:09:3d:bd:e6:26:ca:c2:22:b3:ff:18:99:c7:21:
f0:d1:a3:3e:04:12:d5:18:90:ea:24:39:7d:a5:1f:
77:4d:c2:4c:37:3c:fa:5d:64:d4:9d:fe:94:b7:c9:
16:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:84:5C:B7:70:97:8A:63:CE:F1:24:B9:5C:A5:FB:45:62:75:BF:56
X509v3 Authority Key Identifier:
keyid:1F:1D:04:80:75:04:DC:BE:1A:B8:0E:F8:4D:86:E5:14:C5:7E:7E:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hx0EgHUE3L4auA74TYblFMV-fo0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/42ac52-ba66-48a2-a07a-b636988ead4d/1/1YRct3CXimPO8SS5XKX7RWJ1v1Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/42ac52-ba66-48a2-a07a-b636988ead4d/1/Hx0EgHUE3L4auA74TYblFMV-fo0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.239.151.0/24
Signature Algorithm: sha256WithRSAEncryption
40:a6:7f:fc:8a:fd:fc:6e:b8:1c:f6:52:db:aa:c3:87:32:99:
df:a5:24:6e:68:a4:e9:cf:b2:0c:55:bd:0c:71:30:20:d6:24:
cc:16:fe:83:0f:8a:0b:45:80:30:af:59:67:a9:33:9c:ff:79:
97:9e:8c:1d:d0:93:69:04:34:5f:2e:59:05:0d:91:14:8d:a2:
5e:3a:3c:e5:65:42:10:38:c6:69:0f:87:3d:72:84:b9:1a:eb:
f7:ff:72:9d:e5:ef:95:71:a9:fc:17:19:2b:59:ee:05:21:a1:
4f:49:55:2b:7d:73:2b:b6:b4:53:c1:83:e2:23:f8:ae:07:e7:
25:80:bd:7a:02:89:db:40:11:48:22:ad:f9:d1:23:2a:86:12:
b1:e8:4b:99:9d:ac:74:d5:75:00:82:ee:60:eb:84:e2:bf:5f:
a3:4f:d2:b0:59:85:5f:01:c9:91:8b:20:ab:9d:f1:7b:38:53:
14:86:d7:30:b7:15:dd:1d:1c:54:76:ab:b3:65:f9:de:b3:ca:
83:40:a3:9e:43:0e:35:cb:05:67:1c:77:14:0a:19:42:5e:fa:
66:7e:25:fc:d6:34:fc:8b:25:4a:92:6b:96:d6:de:63:18:a0:
fb:d2:cd:1c:d3:c0:3c:91:a5:4a:87:69:55:ea:31:3f:5d:d7:
9e:07:26:5c
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVytAzM7lPReGDmnrKd9sk/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFmMWQwNDgwNzUwNGRjYmUxYWI4MGVmODRkODZlNTE0YzU3
ZTdlOGQwHhcNMjMwMTAyMTMzODAwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkNTg0NWNiNzcwOTc4YTYzY2VmMTI0Yjk1Y2E1ZmI0NTYyNzViZjU2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtrY8ZLoBIq3geRCTomFFcgRhQ9w4
fQVuU1uQ7+YOc2hS1vjZ1wy4oDEFL0zsMOYxH0LW5ngo3alFv1Nf+TD6HZFFj7NE
Z39/DrsPziWeXvS4Osm5Hi2B5d1d91n6xcSWZvpveUeU8nGENmtrQ0vuFqnkjGdm
7ughDZWDRHHoaWYPHFIjuLhj/gXGPvO7y1fFa23URouES2piPqu2P3neOUMiEEfh
08gnyEdEFE8Bwvo0RIejjIFxGcdA7RE4vzyfHRwBQIWJ/ZfIqI/P0IhYI5y0CT29
5ibKwiKz/xiZxyHw0aM+BBLVGJDqJDl9pR93TcJMNzz6XWTUnf6Ut8kWrwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNWEXLdwl4pjzvEkuVyl+0Vidb9WMB8GA1UdIwQY
MBaAFB8dBIB1BNy+GrgO+E2G5RTFfn6NMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSHgwRWdIVUUzTDRhdUE3NFRZYmxGTVYtZm8wLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYS80MmFjNTItYmE2Ni00OGEyLWEwN2Et
YjYzNjk4OGVhZDRkLzEvMVlSY3QzQ1hpbVBPOFNTNVhLWDdSV0oxdjFZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mYS80MmFjNTItYmE2Ni00OGEyLWEwN2EtYjYzNjk4OGVhZDRk
LzEvSHgwRWdIVUUzTDRhdUE3NFRZYmxGTVYtZm8wLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwe+XMA0G
CSqGSIb3DQEBCwUAA4IBAQBApn/8iv38brgc9lLbqsOHMpnfpSRuaKTpz7IMVb0M
cTAg1iTMFv6DD4oLRYAwr1lnqTOc/3mXnowd0JNpBDRfLlkFDZEUjaJeOjzlZUIQ
OMZpD4c9coS5Guv3/3Kd5e+Vcan8FxkrWe4FIaFPSVUrfXMrtrRTwYPiI/iuB+cl
gL16AonbQBFIIq350SMqhhKx6EuZnax01XUAgu5g64Tiv1+jT9KwWYVfAcmRiyCr
nfF7OFMUhtcwtxXdHRxUdquzZfnes8qDQKOeQw41ywVnHHcUChlCXvpmfiX81jT8
iyVKkmuW1t5jGKD70s0c08A8kaVKh2lV6jE/XdeeByZc
-----END CERTIFICATE-----
Generated at Thu Feb 20 03:17:51 2025 by rpki-client