Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/42ac52-ba66-48a2-a07a-b636988ead4d/1/qee5WcfKxYblMSQI-PBQWLiTXU0.roa
File: qee5WcfKxYblMSQI-PBQWLiTXU0.roa (raw, json)
Hash identifier: 997kN27foL6zEuDpp+2JIQQenHtQBd/+h+WWSVlbCrE=
Subject key identifier: A9:E7:B9:59:C7:CA:C5:86:E5:31:24:08:F8:F0:50:58:B8:93:5D:4D
Certificate issuer: /CN=1f1d04807504dcbe1ab80ef84d86e514c57e7e8d
Certificate serial: 018572B40C3888BA2BBE4B13430F3C560789
Authority key identifier: 1F:1D:04:80:75:04:DC:BE:1A:B8:0E:F8:4D:86:E5:14:C5:7E:7E:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hx0EgHUE3L4auA74TYblFMV-fo0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/42ac52-ba66-48a2-a07a-b636988ead4d/1/qee5WcfKxYblMSQI-PBQWLiTXU0.roa
Signing time: Mon 02 Jan 2023 13:38:00 +0000
ROA not before: Mon 02 Jan 2023 13:38:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 137427
IP address blocks: 193.239.151.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:b4:0c:38:88:ba:2b:be:4b:13:43:0f:3c:56:07:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f1d04807504dcbe1ab80ef84d86e514c57e7e8d
Validity
Not Before: Jan 2 13:38:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a9e7b959c7cac586e5312408f8f05058b8935d4d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:d5:1c:4a:8a:47:e4:b9:0c:3b:84:7c:52:b3:
86:a7:0b:6a:8f:9b:a1:09:0b:4a:98:b1:7d:09:7e:
ac:90:5f:c3:25:e1:41:45:87:f8:48:e7:5f:77:4e:
b8:6c:9b:94:94:6d:74:61:85:0c:2f:88:7a:a7:b7:
cb:55:38:98:82:02:c9:5d:09:ef:e7:a8:a9:60:d5:
ec:e1:ec:9e:e5:82:c7:04:2d:a3:2f:2c:0d:56:e8:
f1:74:d2:51:65:bb:69:dd:b2:24:bb:f5:29:32:15:
36:3e:7d:3a:84:d6:97:86:e1:e6:57:87:e5:e8:33:
11:a3:c4:21:e7:9b:de:d4:3a:46:04:38:ed:21:69:
7a:83:17:5f:68:4c:1d:3d:7d:94:f5:13:f9:54:da:
5b:60:fb:81:0e:87:1f:86:fe:eb:e8:8d:56:d1:ac:
34:d5:5c:6c:b8:61:02:6f:94:88:c0:1e:99:b8:1c:
5b:46:b6:c1:33:4d:09:c6:95:55:da:48:fd:bf:cb:
6d:0d:d3:98:10:3b:2d:9d:cf:c2:ad:fa:3a:1d:95:
83:47:ca:00:60:6b:d6:e4:58:c4:63:82:29:06:7d:
23:12:d6:bd:a1:62:4d:14:18:41:c3:fa:b5:92:0a:
88:10:fc:9b:cb:0d:f2:96:61:e7:42:3b:14:f6:31:
79:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:E7:B9:59:C7:CA:C5:86:E5:31:24:08:F8:F0:50:58:B8:93:5D:4D
X509v3 Authority Key Identifier:
keyid:1F:1D:04:80:75:04:DC:BE:1A:B8:0E:F8:4D:86:E5:14:C5:7E:7E:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hx0EgHUE3L4auA74TYblFMV-fo0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/42ac52-ba66-48a2-a07a-b636988ead4d/1/qee5WcfKxYblMSQI-PBQWLiTXU0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/42ac52-ba66-48a2-a07a-b636988ead4d/1/Hx0EgHUE3L4auA74TYblFMV-fo0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.239.151.0/24
Signature Algorithm: sha256WithRSAEncryption
57:54:3e:be:da:a0:91:ea:81:c3:98:da:79:93:b7:1e:e9:92:
1c:51:3e:a5:01:e3:f2:ec:26:b0:47:fb:d3:5e:ea:87:ad:6c:
4f:c8:80:de:64:26:9f:58:d1:83:2d:3f:ea:5f:70:f4:84:d5:
ea:c5:de:a1:0c:b1:14:28:e5:a2:aa:27:e2:6b:1c:ff:b2:53:
71:8c:4c:57:25:d0:22:2e:37:72:97:8e:77:36:34:5d:f7:b5:
8b:da:15:ab:1a:13:13:ba:e0:82:33:2c:b4:4e:fb:f9:6a:ed:
d6:14:0a:8c:3f:57:0c:6e:63:ef:8a:8b:5e:a9:30:25:f0:53:
10:d9:ef:3d:aa:88:6a:a1:ee:b3:54:d0:70:41:c5:d6:28:91:
c3:ac:03:a3:10:58:9c:b2:37:be:69:9e:d3:b3:38:22:76:ed:
63:8d:04:5c:00:cb:71:7f:a2:18:d3:80:2d:4a:94:5b:12:f2:
5e:bb:b3:c0:45:32:0a:22:59:38:10:58:bf:03:6e:91:97:0a:
41:0c:b0:f0:22:1c:51:22:9f:14:ae:08:16:2f:df:f6:4a:2e:
da:a5:ec:85:5a:d5:ec:e7:2c:d2:8f:e1:5e:13:b0:6e:7f:d7:
85:9a:dc:d7:a7:d8:a7:0f:f0:65:57:70:e9:4e:78:5e:e5:93:
21:c1:a9:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 02:52:59 2025 by rpki-client