Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/aeea10-7208-4d5c-85b9-9e35089fa78f/1/fWXApXGgNTk2OVHHQ5Y6kFNM7-E.roa
File: fWXApXGgNTk2OVHHQ5Y6kFNM7-E.roa (raw, json)
Hash identifier: beW5nIfBBTe82+l1P/SLJ/wXAdgIfdSbeSvv023QlP8=
Subject key identifier: 7D:65:C0:A5:71:A0:35:39:36:39:51:C7:43:96:3A:90:53:4C:EF:E1
Certificate issuer: /CN=727b4876a2d11058c2e6a779fceac5f04083b4c2
Certificate serial: D947A1
Authority key identifier: 72:7B:48:76:A2:D1:10:58:C2:E6:A7:79:FC:EA:C5:F0:40:83:B4:C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cntIdqLREFjC5qd5_OrF8ECDtMI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/aeea10-7208-4d5c-85b9-9e35089fa78f/1/fWXApXGgNTk2OVHHQ5Y6kFNM7-E.roa
Signing time: Tue 01 Feb 2022 09:55:44 +0000
ROA not before: Tue 01 Feb 2022 09:55:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57271
IP address blocks: 194.61.120.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14239649 (0xd947a1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=727b4876a2d11058c2e6a779fceac5f04083b4c2
Validity
Not Before: Feb 1 09:55:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7d65c0a571a03539363951c743963a90534cefe1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:bc:5f:a2:57:0f:98:c9:72:d4:86:05:71:81:
d7:7d:84:99:23:11:be:86:30:1c:2b:92:73:88:f5:
90:1c:a2:5c:63:60:0e:2d:73:71:8d:48:34:a6:82:
f1:6a:7f:b1:97:52:55:96:53:53:c0:b1:db:32:91:
11:d9:44:41:d6:cc:b5:00:3b:38:ce:53:47:a4:8c:
8b:ff:9e:a5:be:02:d7:59:69:63:44:24:1b:5c:95:
29:31:50:b9:e2:cf:ce:70:7b:00:14:46:d0:60:4d:
0f:60:99:ff:c5:3d:19:1e:51:a5:27:cf:3b:ec:ae:
db:d9:b8:0c:b0:65:f4:ca:d5:a4:66:24:c4:83:63:
e5:88:dc:4d:ff:6a:6a:0f:d6:dc:12:66:6b:7d:e8:
95:ff:8c:c8:bf:94:35:a3:88:b1:7a:e2:2b:5d:e0:
28:4b:e8:a9:ab:23:d1:51:f5:0b:87:7e:4c:75:31:
a1:f4:69:e4:df:b9:14:38:ef:3b:b0:07:f4:07:96:
c6:54:c9:76:bf:3b:f1:16:ba:7d:48:9d:52:c2:4c:
03:aa:04:f7:b2:6e:12:32:5e:e1:f0:ab:c2:2c:b9:
cd:9e:af:ab:dd:77:29:3e:8a:62:47:01:89:33:6c:
9c:1f:c0:f7:0b:84:63:84:6e:a9:5e:07:d4:b2:c3:
e1:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:65:C0:A5:71:A0:35:39:36:39:51:C7:43:96:3A:90:53:4C:EF:E1
X509v3 Authority Key Identifier:
keyid:72:7B:48:76:A2:D1:10:58:C2:E6:A7:79:FC:EA:C5:F0:40:83:B4:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cntIdqLREFjC5qd5_OrF8ECDtMI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/aeea10-7208-4d5c-85b9-9e35089fa78f/1/fWXApXGgNTk2OVHHQ5Y6kFNM7-E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/aeea10-7208-4d5c-85b9-9e35089fa78f/1/cntIdqLREFjC5qd5_OrF8ECDtMI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.61.120.0/23
Signature Algorithm: sha256WithRSAEncryption
9f:11:62:46:f8:11:50:1f:b6:65:54:ef:3c:2b:3f:7b:89:81:
a9:5f:c4:38:bb:54:ab:24:ca:b2:a7:b0:9f:d1:f1:7d:12:55:
94:5c:c8:5c:08:57:cd:9d:2d:49:e4:0f:84:fc:e2:ea:d1:c6:
d9:73:14:b3:aa:64:62:cc:2f:01:35:22:6e:8e:0f:72:5a:67:
a4:7e:17:72:50:19:6b:66:fe:66:be:2b:9d:5c:7c:a8:83:cf:
06:c5:6b:94:fc:1e:20:97:05:11:04:f6:ec:f9:97:bf:6e:fd:
3b:b6:2b:b8:dc:04:4d:87:35:66:f3:19:b0:d5:e1:31:ad:10:
d1:17:90:99:7d:e0:90:c1:11:b1:e4:46:9e:03:65:15:ec:13:
2c:d9:6a:e6:bd:54:44:da:d3:d9:a4:66:05:a0:5a:20:2e:ab:
66:89:5c:4e:86:fd:0b:94:22:b3:34:94:6d:22:85:f3:8f:74:
59:b8:0a:1f:3c:a5:34:b2:09:93:ae:d6:85:3f:0b:b4:9e:ed:
67:23:15:72:fa:f2:03:34:cf:85:c3:47:d3:4e:52:bc:56:0d:
3b:2e:28:b3:00:3a:68:86:ca:41:77:31:f7:9f:fa:23:89:04:
b5:c8:16:65:b8:66:e8:54:9d:78:be:38:e1:0f:61:90:a5:4f:
98:e1:41:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 01:24:45 2025 by rpki-client