Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/42ac52-ba66-48a2-a07a-b636988ead4d/1/W0Q0pg6OeOOUh5ysJMLGokdNyc0.roa
File: W0Q0pg6OeOOUh5ysJMLGokdNyc0.roa (raw, json)
Hash identifier: XYBbgDcUTEH3Xk3UStjAi5DPNfaruAB7QkxMLNbXMhU=
Subject key identifier: 5B:44:34:A6:0E:8E:78:E3:94:87:9C:AC:24:C2:C6:A2:47:4D:C9:CD
Certificate issuer: /CN=1f1d04807504dcbe1ab80ef84d86e514c57e7e8d
Certificate serial: 01BA0C15
Authority key identifier: 1F:1D:04:80:75:04:DC:BE:1A:B8:0E:F8:4D:86:E5:14:C5:7E:7E:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hx0EgHUE3L4auA74TYblFMV-fo0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/42ac52-ba66-48a2-a07a-b636988ead4d/1/W0Q0pg6OeOOUh5ysJMLGokdNyc0.roa
Signing time: Mon 13 Jun 2022 05:49:05 +0000
ROA not before: Mon 13 Jun 2022 05:49:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 137427
IP address blocks: 193.239.151.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 28970005 (0x1ba0c15)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f1d04807504dcbe1ab80ef84d86e514c57e7e8d
Validity
Not Before: Jun 13 05:49:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5b4434a60e8e78e394879cac24c2c6a2474dc9cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:fb:3c:d9:2f:cc:f1:5f:04:82:7a:d8:b3:e3:
bd:61:9e:32:8e:f2:c4:13:9a:e0:f9:19:82:04:17:
47:ad:4f:46:46:95:e1:1c:89:7f:76:e2:51:bb:a4:
28:90:0f:a9:3e:b7:32:e5:ea:58:e8:ec:b1:21:b2:
40:34:d6:a8:ab:75:ec:e5:80:c6:a6:12:00:36:37:
84:06:d1:89:5c:ee:07:4e:eb:03:d1:cb:cd:d4:43:
b3:c0:2a:4a:07:6f:7f:b7:ed:7e:94:2a:9a:2b:c9:
95:30:fb:0a:5b:36:22:84:7c:39:7a:e5:4c:1d:11:
5d:92:a3:9e:09:d5:ca:3c:22:63:a2:0c:12:30:6c:
ab:11:06:0f:1c:29:45:c3:9e:56:61:6b:39:a8:57:
7c:ae:28:eb:9d:47:40:46:bf:27:51:8b:0f:ba:57:
6f:1c:7b:74:c7:1f:cc:37:e8:7d:a0:7c:1a:c4:2e:
65:6c:e8:3f:84:ca:30:ac:d6:2a:3d:3f:d9:b5:14:
b2:aa:5d:f1:8d:4c:c2:78:51:c6:07:82:23:69:f2:
76:70:36:ac:30:60:6f:e6:43:1d:a7:28:e7:67:e6:
80:c5:4d:bf:d0:f2:95:5a:b8:bc:65:a9:cd:fc:50:
87:9c:c3:bf:09:3d:8c:af:f5:08:cf:c5:1c:27:3c:
65:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:44:34:A6:0E:8E:78:E3:94:87:9C:AC:24:C2:C6:A2:47:4D:C9:CD
X509v3 Authority Key Identifier:
keyid:1F:1D:04:80:75:04:DC:BE:1A:B8:0E:F8:4D:86:E5:14:C5:7E:7E:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hx0EgHUE3L4auA74TYblFMV-fo0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/42ac52-ba66-48a2-a07a-b636988ead4d/1/W0Q0pg6OeOOUh5ysJMLGokdNyc0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/42ac52-ba66-48a2-a07a-b636988ead4d/1/Hx0EgHUE3L4auA74TYblFMV-fo0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.239.151.0/24
Signature Algorithm: sha256WithRSAEncryption
53:8e:8e:58:4a:c9:83:a6:5a:bb:89:c2:1f:b3:2b:9b:72:83:
1d:58:e0:fc:b5:62:eb:d4:c9:40:75:07:01:ef:16:bc:91:8d:
7a:62:30:22:16:86:91:29:41:e6:8a:bb:8a:46:57:37:22:3f:
3e:1c:26:31:ab:a6:a5:5a:11:8c:f8:99:91:8d:0f:de:94:2e:
f0:74:5b:17:eb:73:39:75:c8:de:fa:f7:3f:af:1b:54:94:a1:
ee:33:59:c4:38:8c:fa:5f:f7:ca:94:57:c0:97:7e:8c:b3:e1:
0f:33:6b:bb:39:86:70:76:59:6e:40:fd:db:f4:2d:04:55:12:
6d:34:71:ba:cd:39:7a:62:b2:96:d2:e7:52:f7:af:4f:3a:49:
de:0b:60:02:d7:ed:f5:58:e3:ba:e5:6d:0e:3c:f8:ba:da:49:
3a:f6:84:6b:aa:04:77:03:2b:fe:3c:20:60:50:c0:c2:59:c1:
d3:a0:72:22:d6:bd:8d:b9:b1:81:94:cd:49:9b:bc:e6:76:c2:
5d:4d:ab:8e:6d:2f:67:33:47:3d:40:ec:ea:07:ee:6e:60:23:
68:4d:eb:e9:84:c5:5b:01:04:79:46:ef:3a:ab:67:15:df:49:
da:e5:8b:7c:e3:d0:66:0c:5c:11:34:79:3a:11:e9:4e:98:db:
17:57:75:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 02:57:58 2025 by rpki-client