Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/42ac52-ba66-48a2-a07a-b636988ead4d/1/B0Loyuj5CYCSoaszLzmdP0PP05k.roa
File: B0Loyuj5CYCSoaszLzmdP0PP05k.roa (raw, json)
Hash identifier: 1Se9nvsh/K3LGQV5/SJAAE87rOYJiWvhPwxTNFLDTIQ=
Subject key identifier: 07:42:E8:CA:E8:F9:09:80:92:A1:AB:33:2F:39:9D:3F:43:CF:D3:99
Certificate issuer: /CN=1f1d04807504dcbe1ab80ef84d86e514c57e7e8d
Certificate serial: 018572B40B23A544DD3A3F293333636D9B35
Authority key identifier: 1F:1D:04:80:75:04:DC:BE:1A:B8:0E:F8:4D:86:E5:14:C5:7E:7E:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hx0EgHUE3L4auA74TYblFMV-fo0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/42ac52-ba66-48a2-a07a-b636988ead4d/1/B0Loyuj5CYCSoaszLzmdP0PP05k.roa
Signing time: Mon 02 Jan 2023 13:37:59 +0000
ROA not before: Mon 02 Jan 2023 13:37:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 136526
IP address blocks: 193.239.150.0/24 maxlen: 24
193.239.154.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:b4:0b:23:a5:44:dd:3a:3f:29:33:33:63:6d:9b:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f1d04807504dcbe1ab80ef84d86e514c57e7e8d
Validity
Not Before: Jan 2 13:37:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0742e8cae8f9098092a1ab332f399d3f43cfd399
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:0c:1c:40:36:37:1d:a1:99:b8:d0:e5:42:21:
13:87:79:b8:4f:64:55:ea:f9:d1:ea:9e:46:0d:a4:
f3:f3:97:ef:84:5f:33:1d:00:eb:26:e1:9a:1f:c8:
e4:c2:b1:ee:25:46:8e:c5:6f:f8:8d:d0:96:17:19:
bb:55:14:19:1d:1e:02:a4:6f:a8:54:bb:62:9c:46:
9b:ba:67:2c:e5:9f:66:f8:2b:ef:94:cd:6f:39:d0:
de:08:8c:dd:6a:0e:50:bc:a0:29:17:bf:40:3d:2a:
5b:fe:12:5d:f2:04:35:eb:5b:df:9c:14:dc:f0:9c:
6f:d2:d3:df:dc:0a:d8:d4:f5:e4:13:c1:69:cd:0a:
c1:d8:30:d6:21:55:82:81:c9:0d:7d:70:df:a7:b1:
6d:1a:10:26:60:ce:3c:77:d8:24:36:35:17:87:70:
4d:33:83:94:98:1a:8e:58:b8:d2:76:74:7a:24:ea:
0f:c1:7e:8e:0a:2b:2c:92:54:cd:f9:2a:01:8f:7e:
b0:3e:83:47:74:ab:b9:fd:82:78:1b:3e:bb:4f:2f:
9b:12:3c:cc:14:c3:53:42:9f:18:a5:41:bf:b7:c5:
74:ac:3e:bc:ae:6f:81:2c:1e:89:0e:7a:36:d9:2d:
bb:ab:66:18:b2:6d:15:0e:6c:2e:c7:7c:42:16:d0:
3a:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:42:E8:CA:E8:F9:09:80:92:A1:AB:33:2F:39:9D:3F:43:CF:D3:99
X509v3 Authority Key Identifier:
keyid:1F:1D:04:80:75:04:DC:BE:1A:B8:0E:F8:4D:86:E5:14:C5:7E:7E:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hx0EgHUE3L4auA74TYblFMV-fo0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/42ac52-ba66-48a2-a07a-b636988ead4d/1/B0Loyuj5CYCSoaszLzmdP0PP05k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/42ac52-ba66-48a2-a07a-b636988ead4d/1/Hx0EgHUE3L4auA74TYblFMV-fo0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.239.150.0/24
193.239.154.0/24
Signature Algorithm: sha256WithRSAEncryption
01:f9:0e:1c:80:b8:aa:8b:92:ab:95:77:19:8a:7c:d2:c5:61:
c5:de:c5:a3:83:31:f6:b8:50:65:b1:12:20:f5:9f:ff:9f:28:
52:65:f8:a4:ac:7a:c8:46:d9:ba:9b:0e:44:c5:3a:9a:d5:5c:
9c:c8:64:30:d0:8b:b4:bd:3b:b2:e0:80:a5:fa:98:47:d7:46:
88:03:7c:71:7d:86:fa:7e:87:ea:ac:78:3b:95:ca:6d:29:6e:
ba:6a:20:4f:07:1f:21:37:09:72:ab:dc:1e:c2:e8:b8:18:f5:
7b:8f:4b:c2:b9:a6:a9:44:f1:f6:da:97:ab:57:29:33:e5:30:
3d:f2:de:3e:24:07:93:0a:05:f4:aa:08:23:fc:c8:aa:c6:a2:
76:c5:89:3b:3b:93:25:e3:d6:bf:d1:e5:b9:34:12:d1:bc:7f:
1d:d4:a6:8f:7f:f1:e9:a3:54:e8:ef:cf:1e:cb:fa:a9:e5:4e:
3c:bb:68:96:0c:40:45:57:99:e2:df:41:8a:35:19:82:54:60:
e4:3c:a9:2a:93:e6:d3:35:1b:05:17:01:f9:1b:68:ed:ab:7f:
e0:36:af:37:8e:ef:8d:f1:e5:b9:e4:63:2d:96:a4:a9:ee:f7:
8a:41:ce:9a:f6:d7:d5:c9:42:95:59:33:01:eb:39:ec:43:d1:
34:b7:bd:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 03:27:13 2025 by rpki-client