Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/49c3e1-1f7f-4e58-b02b-88592043026f/1/frEKOhcbQctgsigZQzwqFtego-Y.roa
File: frEKOhcbQctgsigZQzwqFtego-Y.roa (raw, json)
Hash identifier: xE28Pf7e2tg9rwZHsgfF1c4IznzJYtsAlKNxzWsLlHQ=
Subject key identifier: 7E:B1:0A:3A:17:1B:41:CB:60:B2:28:19:43:3C:2A:16:D7:A0:A3:E6
Certificate issuer: /CN=28c203d65df2d65bdbcf3c883442ddab55a3bcde
Certificate serial: 018CC7933693113E8A8BF2D733722AF4D230
Authority key identifier: 28:C2:03:D6:5D:F2:D6:5B:DB:CF:3C:88:34:42:DD:AB:55:A3:BC:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KMID1l3y1lvbzzyINELdq1WjvN4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/49c3e1-1f7f-4e58-b02b-88592043026f/1/frEKOhcbQctgsigZQzwqFtego-Y.roa
Signing time: Tue 02 Jan 2024 00:29:22 +0000
ROA not before: Tue 02 Jan 2024 00:29:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 21382
IP address blocks: 193.189.158.0/24 maxlen: 24
193.189.157.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:93:36:93:11:3e:8a:8b:f2:d7:33:72:2a:f4:d2:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28c203d65df2d65bdbcf3c883442ddab55a3bcde
Validity
Not Before: Jan 2 00:29:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7eb10a3a171b41cb60b22819433c2a16d7a0a3e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:d9:84:bb:bf:96:4e:11:07:4d:3a:4f:5e:ac:
20:54:48:f4:7d:98:16:ce:2e:7d:91:bd:91:9b:48:
2f:78:24:5f:00:68:18:ba:07:19:fb:8b:e0:b8:0e:
ba:39:ee:a0:af:7e:6b:1b:22:93:bc:69:3e:26:3d:
3f:b2:59:93:1c:6c:83:08:70:02:ea:23:e3:47:a3:
31:39:a0:f1:46:14:80:cf:32:e1:22:5a:21:df:bf:
af:3b:7d:df:16:c3:2e:36:a2:61:00:d9:59:f3:d1:
2a:e6:ac:b0:52:e1:2b:e6:ee:48:f2:cb:18:8c:fe:
2a:ba:0a:4e:04:21:e4:b6:e2:d7:7e:b8:b6:3e:2c:
da:3d:36:bb:ee:27:ba:65:68:5b:27:8b:dc:ef:b7:
44:52:82:04:9c:e3:ce:bb:f3:9e:db:24:cd:96:68:
7d:e6:ad:30:32:e7:0d:72:e3:15:00:eb:0d:40:ed:
97:ee:03:10:f6:de:54:2d:85:a2:d6:5e:bf:7b:3a:
f8:9f:86:ed:cc:0a:c2:6d:0e:37:01:87:2c:11:a3:
58:57:e6:4c:ec:95:5d:6c:a2:33:ec:26:87:52:ae:
c6:23:4a:fe:a4:21:60:bf:09:49:4c:d0:17:cd:6d:
7d:83:6c:97:12:e8:5f:ac:12:49:bf:60:91:a6:c7:
ad:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:B1:0A:3A:17:1B:41:CB:60:B2:28:19:43:3C:2A:16:D7:A0:A3:E6
X509v3 Authority Key Identifier:
keyid:28:C2:03:D6:5D:F2:D6:5B:DB:CF:3C:88:34:42:DD:AB:55:A3:BC:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KMID1l3y1lvbzzyINELdq1WjvN4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/49c3e1-1f7f-4e58-b02b-88592043026f/1/frEKOhcbQctgsigZQzwqFtego-Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/49c3e1-1f7f-4e58-b02b-88592043026f/1/KMID1l3y1lvbzzyINELdq1WjvN4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.189.157.0-193.189.158.255
Signature Algorithm: sha256WithRSAEncryption
3b:d3:0c:05:1f:50:9e:b2:0e:3f:ca:d1:55:66:1f:9b:ce:8c:
3c:49:7e:dc:f7:42:a8:82:c3:52:b6:18:dc:d9:e0:b6:75:c6:
98:66:bb:0e:a1:0b:22:ce:fe:1c:12:55:39:26:6d:49:6b:9e:
a9:cc:fb:9f:28:6e:be:a6:87:07:46:87:cb:4f:cb:1f:6f:6a:
83:25:12:47:3a:c5:da:22:c6:a2:66:ce:3c:5a:83:9d:4d:13:
1c:2b:65:59:52:15:a7:9b:4a:5e:1d:c5:1e:cb:a6:88:9a:ad:
77:b4:2c:52:5e:1d:44:3e:d7:d8:69:f4:6d:ec:5e:91:b0:93:
08:ed:d2:9d:9e:12:82:28:24:0e:8b:ea:1e:b2:96:2b:e6:d7:
81:9f:ad:9e:86:7b:f5:c2:fd:b5:3a:40:06:3b:65:37:02:f3:
3c:92:c8:8c:d4:8d:3a:a8:ee:c4:da:34:8c:84:56:95:66:1a:
3a:33:6c:6e:b9:ca:50:7c:6c:e5:43:f8:a2:44:dd:5c:92:b8:
88:08:2a:54:2d:15:df:05:00:f7:45:a7:23:11:45:88:05:56:
6a:0d:bf:00:34:05:88:7b:29:45:16:48:53:07:d5:23:d4:69:
23:65:7a:12:f4:76:fa:d2:11:0d:ad:1e:c9:41:f7:c2:7d:64:
bf:a9:a2:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:30:32 2024 by rpki-client on console.sobornost.net