Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/31a95f-1b56-4db3-90b6-29c838f6278d/1/8cM0-3bbjaGzmdLVVtCgFDJ3Vn8.roa
File: 8cM0-3bbjaGzmdLVVtCgFDJ3Vn8.roa (raw, json)
Hash identifier: mbHPkfWr/AtAF/9qhRNUWktE+PDa105Ij3QHptS0ztY=
Subject key identifier: F1:C3:34:FB:76:DB:8D:A1:B3:99:D2:D5:56:D0:A0:14:32:77:56:7F
Certificate issuer: /CN=1e9f66ed6e695f1c0c482f682cce3f069f804ede
Certificate serial: 018805C977EACF11283E438FB873F578438D
Authority key identifier: 1E:9F:66:ED:6E:69:5F:1C:0C:48:2F:68:2C:CE:3F:06:9F:80:4E:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hp9m7W5pXxwMSC9oLM4_Bp-ATt4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/31a95f-1b56-4db3-90b6-29c838f6278d/1/8cM0-3bbjaGzmdLVVtCgFDJ3Vn8.roa
Signing time: Wed 10 May 2023 13:11:09 +0000
ROA not before: Wed 10 May 2023 13:11:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 5511
IP address blocks: 193.43.42.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:05:c9:77:ea:cf:11:28:3e:43:8f:b8:73:f5:78:43:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e9f66ed6e695f1c0c482f682cce3f069f804ede
Validity
Not Before: May 10 13:11:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f1c334fb76db8da1b399d2d556d0a0143277567f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:f9:b4:4b:ce:42:9c:c6:e9:ef:a5:85:5f:23:
a2:7e:e8:a8:1f:42:a5:55:e6:b9:db:78:6a:a4:fb:
85:7c:09:47:b8:50:16:98:e5:f5:bf:b7:b0:08:0b:
43:eb:a7:77:1f:57:1e:34:05:cb:94:bc:57:4c:70:
a8:90:7f:57:a1:7f:9d:ae:e6:67:95:72:1e:92:cd:
a7:3d:a7:c8:0d:8e:8e:ca:99:85:7a:7d:80:16:e5:
70:8b:28:7b:57:d1:c4:51:f1:9c:82:23:30:c5:32:
7a:98:19:81:10:87:43:b7:43:4e:01:2e:3d:4d:40:
6c:e2:3b:3d:2d:74:b4:df:74:dc:fd:c3:42:19:2f:
c5:5a:8e:27:63:e2:5e:e9:85:bd:e4:32:67:21:01:
68:c4:4e:a7:72:6e:8d:90:26:9a:85:c7:6f:ea:0d:
c5:75:56:f0:9b:56:84:db:8d:d2:1b:ed:10:77:3d:
f2:5a:97:f8:e3:31:90:a1:bc:da:5e:cf:a5:d7:f4:
90:31:20:be:0e:82:69:b4:eb:6a:b7:d3:54:a6:56:
b7:93:e8:4e:bb:22:11:05:fa:e2:02:9a:4b:a0:86:
6b:0e:48:0b:a3:88:b0:01:7d:48:45:40:22:0c:11:
b1:b4:48:44:7e:fa:8f:d6:47:d4:ca:fe:99:53:6d:
e4:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:C3:34:FB:76:DB:8D:A1:B3:99:D2:D5:56:D0:A0:14:32:77:56:7F
X509v3 Authority Key Identifier:
keyid:1E:9F:66:ED:6E:69:5F:1C:0C:48:2F:68:2C:CE:3F:06:9F:80:4E:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hp9m7W5pXxwMSC9oLM4_Bp-ATt4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/31a95f-1b56-4db3-90b6-29c838f6278d/1/8cM0-3bbjaGzmdLVVtCgFDJ3Vn8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/31a95f-1b56-4db3-90b6-29c838f6278d/1/Hp9m7W5pXxwMSC9oLM4_Bp-ATt4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.43.42.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:bb:6d:c1:e5:e1:09:d9:19:43:96:af:7b:b1:61:6e:51:d6:
99:4a:c4:72:9e:30:a2:4d:a5:8f:7f:be:27:e3:e1:ad:b3:d7:
a8:7e:9a:eb:d6:7e:94:a8:5f:09:54:72:32:eb:da:b5:af:90:
86:f5:2c:f2:67:e1:05:e2:97:c4:6f:aa:1d:17:be:2f:82:b2:
c4:b9:ca:9b:48:95:22:db:f6:b0:6a:99:6d:f4:bc:61:9e:9d:
95:71:66:0f:ca:c2:6a:5d:42:77:a3:24:44:9f:36:48:29:df:
fd:c7:68:4b:69:13:09:18:21:4a:fc:44:55:62:12:72:bf:34:
db:6b:56:51:a9:fb:4d:a2:b3:d2:97:b7:49:1d:83:36:cf:c2:
3f:c2:96:f5:d6:b3:81:11:df:36:a5:39:4a:2b:db:1d:41:3e:
51:62:ba:ac:5e:e4:a7:35:b5:82:ae:71:b2:e5:dd:76:a8:52:
c5:cb:e7:07:67:db:ca:37:9e:37:01:2a:c6:50:4a:d8:2d:50:
a5:a7:f7:4d:c2:c1:b7:d6:26:fb:0c:c6:29:d9:eb:71:2c:37:
1c:82:20:be:7b:24:b0:2c:67:84:40:e7:ba:b4:ae:43:aa:db:
d0:6b:c6:7f:34:d9:99:0f:99:7d:cb:f7:8f:a0:74:40:eb:7d:
19:d5:6a:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:25 2023 by rpki-client on console.sobornost.net