Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/9fd003-06f7-45d8-a5dd-076bf02dcdd9/1/9uYF5Y4kuA1SdkvLpB-RE5BFbTI.roa
File: 9uYF5Y4kuA1SdkvLpB-RE5BFbTI.roa (raw, json)
Hash identifier: PxwJeVMg21B+ukIHGtf0rkp2ggH19GmeR63S8unquJ8=
Subject key identifier: F6:E6:05:E5:8E:24:B8:0D:52:76:4B:CB:A4:1F:91:13:90:45:6D:32
Certificate issuer: /CN=fb29cf23fc9ce6e2b8c39323d270ce52e8938702
Certificate serial: 58841A
Authority key identifier: FB:29:CF:23:FC:9C:E6:E2:B8:C3:93:23:D2:70:CE:52:E8:93:87:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-ynPI_yc5uK4w5Mj0nDOUuiThwI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/9fd003-06f7-45d8-a5dd-076bf02dcdd9/1/9uYF5Y4kuA1SdkvLpB-RE5BFbTI.roa
Signing time: Thu 19 May 2022 10:19:29 +0000
ROA not before: Thu 19 May 2022 10:19:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 217.28.130.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5800986 (0x58841a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fb29cf23fc9ce6e2b8c39323d270ce52e8938702
Validity
Not Before: May 19 10:19:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f6e605e58e24b80d52764bcba41f911390456d32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:1c:f0:aa:ee:9b:af:12:51:04:b0:92:34:f6:
96:56:de:27:db:a6:7c:bd:58:89:ff:5b:53:19:af:
95:bb:2d:ac:3c:39:62:63:65:20:43:d7:48:2a:20:
9d:53:5c:cd:a0:65:49:48:c7:67:ab:59:6d:b6:0b:
f2:26:c6:d2:84:0e:df:81:24:99:aa:a7:07:eb:77:
a9:c3:85:b6:de:e5:25:71:2e:db:af:18:73:9d:9a:
6a:07:06:c7:e9:b4:76:7b:eb:40:a1:41:bd:74:fe:
90:fc:e3:c7:32:9a:46:87:be:4c:94:80:ee:aa:90:
a9:0f:5f:ff:ce:cc:c2:b8:c0:37:5c:b6:f6:83:18:
3f:f0:25:5a:29:2f:eb:c7:2b:18:0f:2a:3e:1a:cf:
e0:e7:3a:77:60:15:3e:f9:ca:19:cb:2d:49:20:00:
2d:d7:d5:35:a1:38:57:3d:0d:e4:69:36:8e:9b:cd:
1f:2b:be:28:7f:7c:e3:6a:10:3b:37:77:e1:a5:bb:
34:5e:9f:09:0a:79:07:db:d0:41:f7:6b:fc:84:ac:
ce:a3:d6:78:56:b5:9f:f7:77:ba:36:aa:14:c5:47:
87:04:17:1c:5e:42:5b:5b:1c:71:5c:58:fc:61:f9:
b6:1f:8c:e0:65:ec:8f:4e:a1:ff:60:2f:a4:19:44:
1a:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:E6:05:E5:8E:24:B8:0D:52:76:4B:CB:A4:1F:91:13:90:45:6D:32
X509v3 Authority Key Identifier:
keyid:FB:29:CF:23:FC:9C:E6:E2:B8:C3:93:23:D2:70:CE:52:E8:93:87:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-ynPI_yc5uK4w5Mj0nDOUuiThwI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/9fd003-06f7-45d8-a5dd-076bf02dcdd9/1/9uYF5Y4kuA1SdkvLpB-RE5BFbTI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/9fd003-06f7-45d8-a5dd-076bf02dcdd9/1/1-ynPI_yc5uK4w5Mj0nDOUuiThwI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.28.130.0/24
Signature Algorithm: sha256WithRSAEncryption
76:27:2c:8e:4a:b3:6b:61:04:40:89:a9:8a:73:eb:4a:64:0c:
ee:58:cc:16:70:91:ac:08:65:06:ac:63:a7:4e:b7:14:5d:85:
0d:00:50:17:e4:a0:65:c2:35:2d:85:75:04:45:1d:83:06:a0:
c6:2e:8c:5e:56:c9:40:f7:41:ff:84:d0:aa:e1:77:5d:12:78:
48:ca:c0:8b:5e:d1:6e:da:21:f7:7d:f1:10:8d:69:cd:5b:21:
cb:10:d7:9d:5f:40:23:63:18:c2:64:1f:f2:f2:38:1f:84:52:
8e:34:9f:ad:18:82:de:75:c7:db:90:2a:23:76:00:ac:f1:e9:
56:2c:d0:24:20:d0:63:26:94:2f:19:12:75:72:f7:78:39:4d:
57:08:39:3f:7b:de:ed:09:98:53:60:6e:26:a1:4b:77:a8:41:
53:7c:7b:dc:65:43:96:6b:e3:7f:6c:5a:a3:43:39:f0:a7:59:
0e:01:28:62:1a:58:df:aa:59:4c:13:fb:1d:7d:46:cc:07:c9:
42:6e:75:3e:50:a9:98:d4:34:99:ed:4e:5c:e1:85:85:97:a7:
03:08:6c:6c:65:6c:5d:c0:61:52:2b:0f:88:1a:da:56:33:c9:
1e:42:5a:4b:09:40:43:55:ee:87:50:d6:56:2b:73:ca:98:45:
41:85:30:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 00:26:51 2025 by rpki-client