Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/2d8b1a-29a2-478f-a0b3-551c78a052e5/1/YnSCaMCaeagjqOrEFgVWoSNexpU.roa
File: YnSCaMCaeagjqOrEFgVWoSNexpU.roa (raw, json)
Hash identifier: Ofxb0dDlMS7PsKgiOU4QlTHyX92kHH93wgbnwJtFbns=
Subject key identifier: 62:74:82:68:C0:9A:79:A8:23:A8:EA:C4:16:05:56:A1:23:5E:C6:95
Certificate issuer: /CN=88ed6b04bd83dad71c299c795b3c1066bb6f3c5a
Certificate serial: 03351FB0
Authority key identifier: 88:ED:6B:04:BD:83:DA:D7:1C:29:9C:79:5B:3C:10:66:BB:6F:3C:5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iO1rBL2D2tccKZx5WzwQZrtvPFo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/2d8b1a-29a2-478f-a0b3-551c78a052e5/1/YnSCaMCaeagjqOrEFgVWoSNexpU.roa
Signing time: Thu 05 May 2022 18:15:59 +0000
ROA not before: Thu 05 May 2022 18:15:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 193.187.140.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 53813168 (0x3351fb0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88ed6b04bd83dad71c299c795b3c1066bb6f3c5a
Validity
Not Before: May 5 18:15:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=62748268c09a79a823a8eac4160556a1235ec695
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:f8:0f:de:9e:2d:40:7b:65:f1:bf:ae:62:e6:
9a:07:2f:c5:44:9a:9c:04:a5:ed:b5:7a:f3:5c:b3:
0c:be:e0:23:1e:e3:74:36:58:25:52:82:97:02:56:
9a:4f:d4:69:ab:f1:bc:f3:93:a0:c6:41:dc:5d:e0:
b2:e9:dd:4d:c0:cd:73:46:0e:8d:22:a6:6b:6b:03:
f9:a4:a8:a7:b4:d2:6d:39:95:e2:e5:c9:3b:9d:5b:
5e:90:c0:27:57:ef:72:e5:59:ea:cc:f2:45:87:54:
51:85:ed:f6:27:bc:56:c1:9a:79:57:1f:61:51:97:
2b:8f:88:5a:a1:96:3e:80:53:28:3c:f1:7b:2c:79:
0c:94:0f:56:04:0c:4a:f9:e4:c6:11:51:6e:ec:c1:
43:66:b8:f3:bc:07:c4:1c:7a:de:fc:51:9b:25:1a:
00:0f:2f:dd:3e:cc:d7:44:67:55:34:53:e6:43:a6:
6f:5f:ef:79:97:ef:82:d9:73:81:22:02:77:c1:58:
05:6c:32:77:79:8b:b7:f2:c5:95:18:be:5f:4e:dc:
48:70:0f:0f:d7:1c:8c:52:66:e4:96:c8:f2:84:bf:
39:2b:da:0e:09:ac:d8:a7:1f:62:b7:7f:51:8d:71:
cb:1f:5d:86:87:ff:f6:95:ec:e0:a5:cb:65:2a:28:
05:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:74:82:68:C0:9A:79:A8:23:A8:EA:C4:16:05:56:A1:23:5E:C6:95
X509v3 Authority Key Identifier:
keyid:88:ED:6B:04:BD:83:DA:D7:1C:29:9C:79:5B:3C:10:66:BB:6F:3C:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iO1rBL2D2tccKZx5WzwQZrtvPFo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/2d8b1a-29a2-478f-a0b3-551c78a052e5/1/YnSCaMCaeagjqOrEFgVWoSNexpU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/2d8b1a-29a2-478f-a0b3-551c78a052e5/1/iO1rBL2D2tccKZx5WzwQZrtvPFo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.187.140.0/22
Signature Algorithm: sha256WithRSAEncryption
e0:ba:d2:a6:e9:52:65:58:f2:95:06:3e:89:98:d3:1d:a0:d6:
2c:50:9f:36:c8:0d:fc:72:07:0f:5a:81:71:a8:7b:9d:c6:31:
b7:73:3a:1e:1b:2f:e2:d9:c2:ed:60:16:90:8d:28:23:96:05:
5e:31:40:db:61:1f:48:87:4b:9d:0b:e6:d2:7f:2d:4b:3c:ff:
5b:e9:a4:b7:02:0c:1c:d7:b3:ef:3a:8a:19:de:21:9b:5b:4e:
6b:f7:cd:b1:1e:7f:78:55:1c:de:2a:fd:ac:44:02:cf:30:f2:
2f:ab:87:d5:f9:bd:c5:f8:42:bc:1a:75:b5:68:9c:d7:d8:70:
14:3d:1d:c0:cb:d2:29:e8:52:6f:27:1b:5f:6a:8b:49:12:3a:
6f:00:cb:a7:8f:bf:6e:93:c7:28:cc:f3:37:ac:18:65:90:db:
84:2f:84:f2:ee:04:6a:f8:6d:c9:ec:e4:db:96:ca:40:d1:1a:
ca:74:56:f2:1d:b6:97:ea:ba:a0:0e:2b:67:4a:68:56:ab:0e:
6a:1f:bc:f2:01:e9:bf:3d:0b:bd:7b:e5:ee:f3:92:b0:be:60:
c0:24:f5:30:5b:cf:37:21:2a:51:68:67:a8:89:cb:cf:13:f5:
1b:88:8f:04:13:0a:93:10:0f:93:62:3e:94:ad:8e:19:ed:5a:
1b:6f:84:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:34 2023 by rpki-client on console.sobornost.net