Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/633e77-c6c7-4b37-9938-05392cce3c1b/1/NLDLV6eLCVahTJij5O2bUQ0-PpQ.roa
File: NLDLV6eLCVahTJij5O2bUQ0-PpQ.roa (raw, json)
Hash identifier: zuZCw8QWBdc3++x2kGKn5v4bYFTa0wKcSmQRu/u+M1M=
Subject key identifier: 34:B0:CB:57:A7:8B:09:56:A1:4C:98:A3:E4:ED:9B:51:0D:3E:3E:94
Certificate issuer: /CN=0200dab85a4ee2f2f1769cef3862aff57e924c4a
Certificate serial: 018221DA7D33659B617D98637EA64ED1CBE1
Authority key identifier: 02:00:DA:B8:5A:4E:E2:F2:F1:76:9C:EF:38:62:AF:F5:7E:92:4C:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AgDauFpO4vLxdpzvOGKv9X6STEo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/633e77-c6c7-4b37-9938-05392cce3c1b/1/NLDLV6eLCVahTJij5O2bUQ0-PpQ.roa
Signing time: Thu 21 Jul 2022 17:42:23 +0000
ROA not before: Thu 21 Jul 2022 17:42:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 22773
IP address blocks: 188.119.68.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:21:da:7d:33:65:9b:61:7d:98:63:7e:a6:4e:d1:cb:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0200dab85a4ee2f2f1769cef3862aff57e924c4a
Validity
Not Before: Jul 21 17:42:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=34b0cb57a78b0956a14c98a3e4ed9b510d3e3e94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:2e:81:25:6a:ec:1e:d9:d4:e8:55:79:0f:f1:
da:6b:bd:da:93:59:52:c1:02:4c:6a:35:2a:31:3b:
8a:f7:8f:ae:9b:8c:82:cf:8b:4f:04:4a:0f:0c:d0:
32:ec:4e:56:c6:2b:31:a6:88:a5:b7:c0:fc:3a:98:
d4:2f:fa:9f:46:e3:8b:c9:f4:49:ad:7d:25:8a:de:
69:d8:f4:19:63:ff:9c:53:7e:3e:ad:cb:b1:df:36:
5b:06:a8:f1:8f:cb:1d:24:a8:3f:2b:ee:05:3c:7a:
7b:b0:5a:5c:d5:81:37:57:6f:1c:3f:bb:74:1a:be:
a1:b3:02:28:e6:90:86:58:96:9e:2a:53:b2:75:38:
9e:62:e7:ab:20:b1:7a:cc:c5:db:aa:3b:33:d1:4f:
7f:64:53:90:aa:11:1e:69:c0:6b:1b:49:2f:c4:2c:
0c:01:8d:91:ac:dd:c7:c6:de:97:57:3f:f5:80:75:
b4:2e:5e:49:0a:ad:a8:02:55:05:ac:b6:75:54:54:
6b:8a:8c:57:e0:74:57:50:c5:57:e0:27:af:e1:72:
66:d4:51:ce:ed:8e:b8:23:64:cc:0d:75:ad:13:17:
c5:e8:e8:9e:db:c9:30:1d:1f:7c:5c:63:ce:ce:d6:
51:6b:15:00:c6:22:32:9f:c9:b8:a4:a3:6f:36:8b:
b1:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:B0:CB:57:A7:8B:09:56:A1:4C:98:A3:E4:ED:9B:51:0D:3E:3E:94
X509v3 Authority Key Identifier:
keyid:02:00:DA:B8:5A:4E:E2:F2:F1:76:9C:EF:38:62:AF:F5:7E:92:4C:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AgDauFpO4vLxdpzvOGKv9X6STEo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/633e77-c6c7-4b37-9938-05392cce3c1b/1/NLDLV6eLCVahTJij5O2bUQ0-PpQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/633e77-c6c7-4b37-9938-05392cce3c1b/1/AgDauFpO4vLxdpzvOGKv9X6STEo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.119.68.0/22
Signature Algorithm: sha256WithRSAEncryption
09:e7:27:4c:8b:9c:9d:ae:28:77:84:25:ae:eb:d2:59:b2:4a:
c2:3b:fc:8e:be:03:8c:e6:86:16:79:61:3d:42:97:c2:4a:06:
02:9e:6f:56:98:2e:8a:81:b5:e1:48:33:18:6e:41:bb:49:52:
94:e3:c7:1f:62:87:4d:84:17:ea:0b:60:a7:ac:15:05:e5:79:
99:9a:26:45:6b:83:da:9d:32:cc:ae:5c:eb:76:01:9b:4a:10:
4e:79:14:b9:91:28:e6:01:39:48:4d:3a:26:c3:fa:86:2b:44:
48:6d:d8:6b:65:40:cf:c7:e9:af:16:94:58:21:dc:6b:da:43:
70:c8:ea:fb:11:f5:f8:79:e1:a7:2e:f1:1d:d4:e9:93:dd:b5:
5e:e9:58:0e:c0:b5:c1:8d:cd:6e:dd:96:be:ea:b0:39:5a:24:
d2:2f:74:cb:27:83:58:da:e1:80:e0:18:d6:0f:2d:e3:d9:21:
be:aa:b5:1f:d4:b3:23:90:4d:84:b5:71:6f:46:62:49:3d:ab:
31:f7:3d:35:61:88:d1:fb:a6:19:ea:fb:3f:b4:54:e0:33:26:
7a:3e:3c:b2:05:78:dc:f0:62:6b:b6:78:11:54:cf:5e:58:d9:
99:4c:0e:94:02:99:23:d1:cf:15:c6:14:bd:c2:eb:e9:aa:ca:
10:30:3a:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 07:42:43 2025 by rpki-client