Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/42ac52-ba66-48a2-a07a-b636988ead4d/1/FqII1vdK1xWg-CE-USkMh1kXijs.roa
File: FqII1vdK1xWg-CE-USkMh1kXijs.roa (raw, json)
Hash identifier: Ibd7BAx7A3ktmUi2jJBRok8e5YEBQhfmjk56XFMxdho=
Subject key identifier: 16:A2:08:D6:F7:4A:D7:15:A0:F8:21:3E:51:29:0C:87:59:17:8A:3B
Certificate issuer: /CN=1f1d04807504dcbe1ab80ef84d86e514c57e7e8d
Certificate serial: 018572B40D4DA49F6522096FEBFD93C4C3FE
Authority key identifier: 1F:1D:04:80:75:04:DC:BE:1A:B8:0E:F8:4D:86:E5:14:C5:7E:7E:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hx0EgHUE3L4auA74TYblFMV-fo0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/42ac52-ba66-48a2-a07a-b636988ead4d/1/FqII1vdK1xWg-CE-USkMh1kXijs.roa
Signing time: Mon 02 Jan 2023 13:38:00 +0000
ROA not before: Mon 02 Jan 2023 13:38:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212921
IP address blocks: 193.239.150.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:b4:0d:4d:a4:9f:65:22:09:6f:eb:fd:93:c4:c3:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f1d04807504dcbe1ab80ef84d86e514c57e7e8d
Validity
Not Before: Jan 2 13:38:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=16a208d6f74ad715a0f8213e51290c8759178a3b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:f2:00:8e:a3:12:88:85:11:20:42:89:08:ba:
20:50:87:ed:bd:74:f5:82:d5:4b:5e:a4:8c:ee:ee:
04:26:d5:7a:35:55:af:ae:a0:11:03:a6:fd:fa:e5:
19:f9:11:23:77:3f:7d:31:ab:c8:9e:fa:29:93:6f:
38:a3:92:8a:3d:9c:e7:b8:5b:ad:ab:98:5f:6f:a5:
9f:83:0d:4a:90:8f:35:40:24:3b:ff:d7:79:89:45:
a0:29:a9:f6:02:cd:28:1f:be:a1:80:2d:29:6d:eb:
d9:fe:26:46:25:29:02:9e:6f:ba:cb:1f:25:2c:c0:
ed:42:ef:2c:91:91:6b:50:7d:41:dc:f5:a9:e3:64:
21:de:ab:9f:fc:5d:4d:19:8a:0a:74:d8:84:38:0e:
85:a9:da:ba:04:ff:3d:70:e1:ee:c7:45:d6:de:e9:
c2:27:82:db:4e:24:8e:6b:d4:2b:45:fe:70:89:f2:
de:31:24:ca:a0:76:d3:ec:89:5b:46:ab:da:cd:0f:
7b:ea:fe:c5:2c:1b:fe:11:bb:3a:1b:a7:9b:86:6e:
7b:20:aa:5c:e9:05:0d:ed:a0:d6:20:63:2c:df:3d:
53:27:ff:cd:5a:d8:c1:39:93:9e:db:ae:b9:b4:00:
66:49:44:ee:5d:d0:76:1d:2e:df:47:a4:af:c3:a1:
97:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:A2:08:D6:F7:4A:D7:15:A0:F8:21:3E:51:29:0C:87:59:17:8A:3B
X509v3 Authority Key Identifier:
keyid:1F:1D:04:80:75:04:DC:BE:1A:B8:0E:F8:4D:86:E5:14:C5:7E:7E:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hx0EgHUE3L4auA74TYblFMV-fo0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/42ac52-ba66-48a2-a07a-b636988ead4d/1/FqII1vdK1xWg-CE-USkMh1kXijs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/42ac52-ba66-48a2-a07a-b636988ead4d/1/Hx0EgHUE3L4auA74TYblFMV-fo0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.239.150.0/24
Signature Algorithm: sha256WithRSAEncryption
83:0d:f1:5d:f2:ab:f0:87:60:d1:b4:c9:c9:cf:9b:11:d3:99:
1d:04:d2:51:5b:c3:d9:6b:18:db:36:f1:0d:cf:a0:c7:cb:cb:
b4:49:5a:c2:9d:30:42:3a:75:f2:e5:23:3b:a6:df:70:ca:d2:
16:a9:99:4b:79:16:41:3d:12:6f:f0:87:bc:c1:2c:24:e1:c6:
49:a4:4c:99:e8:53:2b:42:47:b6:35:5e:93:54:6d:f3:6a:5c:
5f:6c:ba:62:81:c4:70:35:1a:3c:85:fe:1e:af:94:92:e8:64:
e4:c2:64:66:c4:14:51:0d:6a:db:ff:b9:8f:bc:fc:ac:35:2d:
f5:d0:51:37:23:95:23:d3:ad:62:69:bb:9a:1a:a0:1b:68:af:
38:eb:3c:f6:5e:56:5b:87:f4:31:51:db:a1:43:55:bc:23:b5:
87:39:4c:70:c1:a3:f7:3f:00:ce:e1:99:2f:13:d7:37:06:0e:
d9:2e:bf:4f:3a:85:a1:03:14:38:0f:44:cc:2a:7b:8f:e9:2b:
01:6b:47:8e:7e:87:c5:b6:3d:8c:18:f0:cc:19:0d:d4:d3:fb:
38:09:39:c4:c2:ab:72:b8:d1:f3:56:b7:4d:e7:3d:94:6c:5a:
31:b1:f9:5c:1b:fd:50:c4:1f:bb:85:28:61:37:44:0c:83:07:
0a:10:24:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 03:18:31 2025 by rpki-client