Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/633e77-c6c7-4b37-9938-05392cce3c1b/1/Cvd1O5KbEuApDYwbev-4ohUY_PE.roa
File: Cvd1O5KbEuApDYwbev-4ohUY_PE.roa (raw, json)
Hash identifier: sIdRmQiPBiw/bjFC5qiArcPJjSeXKY66fnqqwHSZIHg=
Subject key identifier: 0A:F7:75:3B:92:9B:12:E0:29:0D:8C:1B:7A:FF:B8:A2:15:18:FC:F1
Certificate issuer: /CN=0200dab85a4ee2f2f1769cef3862aff57e924c4a
Certificate serial: 0338D692
Authority key identifier: 02:00:DA:B8:5A:4E:E2:F2:F1:76:9C:EF:38:62:AF:F5:7E:92:4C:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AgDauFpO4vLxdpzvOGKv9X6STEo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/633e77-c6c7-4b37-9938-05392cce3c1b/1/Cvd1O5KbEuApDYwbev-4ohUY_PE.roa
Signing time: Thu 05 May 2022 18:08:34 +0000
ROA not before: Thu 05 May 2022 18:08:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 188.119.68.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54056594 (0x338d692)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0200dab85a4ee2f2f1769cef3862aff57e924c4a
Validity
Not Before: May 5 18:08:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0af7753b929b12e0290d8c1b7affb8a21518fcf1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:b4:98:a9:dd:e1:03:05:e6:e1:23:c5:f0:5b:
f5:62:16:d3:6d:c2:e1:1b:8a:e7:5f:c8:78:f5:97:
5c:18:de:4d:6f:ea:44:50:99:90:da:32:1a:04:8f:
b5:31:24:3f:46:c7:b9:7c:bb:f0:44:0f:ef:47:7a:
ac:a6:d9:5a:76:e5:26:91:1c:b5:11:4a:1b:7b:80:
9d:2c:fa:4b:77:b9:e7:0f:88:cf:c8:24:2a:15:67:
d8:7f:4c:85:57:9c:c0:f1:a0:ee:66:69:92:02:2a:
0b:f5:36:08:9b:9d:1b:5a:06:9b:f6:89:ab:d1:60:
67:ab:35:b2:7e:8a:3b:59:11:15:58:4d:80:82:24:
5a:b9:30:c9:60:62:81:fd:0e:01:9c:18:44:32:02:
33:03:c8:92:86:f3:37:3d:40:59:fa:ec:b6:cd:12:
47:74:c2:e3:95:cc:18:a9:41:20:df:d0:b0:94:8e:
1d:25:da:f7:dc:09:07:25:94:1e:29:27:62:2f:b3:
64:25:14:1d:07:34:f3:3a:d5:48:e6:4d:70:48:01:
24:ef:39:a7:fc:4a:c4:c6:2d:62:7d:05:e4:44:65:
a5:be:6d:4f:14:2a:fa:65:78:e7:cc:54:ec:98:1d:
3a:a8:c6:d6:87:67:08:c2:3e:bc:84:15:c0:27:7b:
0c:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:F7:75:3B:92:9B:12:E0:29:0D:8C:1B:7A:FF:B8:A2:15:18:FC:F1
X509v3 Authority Key Identifier:
keyid:02:00:DA:B8:5A:4E:E2:F2:F1:76:9C:EF:38:62:AF:F5:7E:92:4C:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AgDauFpO4vLxdpzvOGKv9X6STEo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/633e77-c6c7-4b37-9938-05392cce3c1b/1/Cvd1O5KbEuApDYwbev-4ohUY_PE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/633e77-c6c7-4b37-9938-05392cce3c1b/1/AgDauFpO4vLxdpzvOGKv9X6STEo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.119.68.0/22
Signature Algorithm: sha256WithRSAEncryption
37:9e:b2:0f:f6:a9:04:90:62:65:78:ce:e4:30:b1:2f:8f:f8:
bc:d3:b1:6f:a5:df:4e:d4:53:25:c0:72:af:fe:fc:14:a9:4e:
b5:2e:b7:4b:40:42:2b:f0:26:71:c5:2a:02:b0:53:07:2e:8e:
b6:a3:59:fb:f4:24:0f:65:b7:e6:16:63:85:df:54:28:df:df:
b3:75:95:1a:8c:2c:02:2c:da:53:78:29:be:63:76:1b:e5:af:
40:f5:33:2b:51:81:2a:d0:39:14:4a:ae:00:52:5c:5c:fd:78:
53:b5:3d:bd:0c:07:cf:77:c1:b7:43:c4:5b:a4:e0:bc:68:6c:
5d:a1:62:6d:51:aa:ce:4e:e0:98:dd:3b:4f:5c:45:be:65:06:
30:c2:06:0b:13:b8:27:bc:e4:77:0d:08:e3:60:a6:d5:5f:6c:
93:28:d9:f3:8b:5e:c3:d7:80:ce:2d:34:75:53:cc:01:25:77:
36:08:a0:69:33:30:56:b1:ee:84:cd:2a:b7:92:e8:cc:dc:83:
c1:de:0f:76:df:14:50:dd:b0:20:6b:d0:c2:39:b2:6b:a5:a9:
19:93:12:16:02:d4:d9:cb:fb:65:f1:2a:7b:e6:6d:f6:ed:fd:
93:a5:cf:6b:73:51:40:23:61:cf:2d:ec:59:b3:a0:a7:6a:fb:
3f:54:4f:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 20:45:27 2025 by rpki-client