Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/5aec25-216d-43a7-abe1-3879e33802e6/1/snojkPzm0kIKVyvLnMwTEwASfx0.roa
File: snojkPzm0kIKVyvLnMwTEwASfx0.roa (raw, json)
Hash identifier: ePE+MC8Z1hHNosaL6zQYxxagzDWs9v3WNadEqvTh7Hw=
Subject key identifier: B2:7A:23:90:FC:E6:D2:42:0A:57:2B:CB:9C:CC:13:13:00:12:7F:1D
Certificate issuer: /CN=4dc3c18f47ea5edd7135df247868e117c681c87f
Certificate serial: 024F69AE
Authority key identifier: 4D:C3:C1:8F:47:EA:5E:DD:71:35:DF:24:78:68:E1:17:C6:81:C8:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TcPBj0fqXt1xNd8keGjhF8aByH8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/5aec25-216d-43a7-abe1-3879e33802e6/1/snojkPzm0kIKVyvLnMwTEwASfx0.roa
Signing time: Sat 01 Jan 2022 07:54:51 +0000
ROA not before: Sat 01 Jan 2022 07:54:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 190.92.168.0/21 maxlen: 24
193.30.117.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 38758830 (0x24f69ae)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4dc3c18f47ea5edd7135df247868e117c681c87f
Validity
Not Before: Jan 1 07:54:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b27a2390fce6d2420a572bcb9ccc131300127f1d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:13:b8:38:16:33:f7:aa:43:78:0d:52:8d:46:
43:fd:ac:75:45:74:03:24:c6:19:28:45:29:62:f0:
12:86:4e:4a:db:86:90:ff:b3:e7:ef:65:3b:09:82:
eb:73:15:46:5b:3d:75:79:e8:2f:26:16:7a:b7:cd:
f6:57:e2:5e:64:70:b2:e4:a4:e6:45:2d:69:8d:b2:
e6:a0:e6:41:52:98:4f:c3:ae:2f:d5:a7:64:87:f5:
05:05:a0:87:37:13:9f:cb:7d:3b:29:2f:bf:4f:71:
0d:34:fa:f3:01:c1:b1:73:70:f0:24:2e:02:5e:d7:
11:af:08:e7:46:69:b4:cf:45:22:77:f7:23:bb:f7:
25:10:79:97:ba:0d:d7:22:5c:a3:33:8b:60:20:fc:
6b:5f:fa:cc:dd:9a:af:fd:a0:f5:7e:e7:72:18:34:
37:17:4a:53:a3:94:68:92:26:5a:3a:c5:30:76:d8:
4a:de:4f:da:e4:44:7b:3f:85:3d:28:44:69:7c:f5:
56:ab:8f:37:c2:83:98:e2:84:39:93:3d:b7:9f:5b:
a4:71:e4:83:e3:fb:9f:38:9b:43:81:e2:5f:3f:65:
ba:55:b6:9f:12:d2:e7:b5:55:2f:93:f7:39:8d:30:
9f:ce:f1:d8:e4:bf:6a:f9:14:e2:4e:80:b6:44:bc:
9f:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:7A:23:90:FC:E6:D2:42:0A:57:2B:CB:9C:CC:13:13:00:12:7F:1D
X509v3 Authority Key Identifier:
keyid:4D:C3:C1:8F:47:EA:5E:DD:71:35:DF:24:78:68:E1:17:C6:81:C8:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TcPBj0fqXt1xNd8keGjhF8aByH8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/5aec25-216d-43a7-abe1-3879e33802e6/1/snojkPzm0kIKVyvLnMwTEwASfx0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/5aec25-216d-43a7-abe1-3879e33802e6/1/TcPBj0fqXt1xNd8keGjhF8aByH8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
190.92.168.0/21
193.30.117.0/24
Signature Algorithm: sha256WithRSAEncryption
79:55:e6:af:3e:b3:8d:5a:02:ca:b2:a6:e5:52:41:c0:08:22:
4f:39:68:d9:43:ae:9b:23:eb:c8:b3:f5:5d:b9:10:7e:b1:ab:
c0:e2:eb:39:84:7d:a1:9b:cb:4d:ac:d3:c4:f4:b7:a7:8f:16:
d5:65:64:d4:66:16:03:29:03:8d:dd:2f:72:ca:c7:c4:0d:88:
a5:f1:9b:e4:6b:c5:61:43:a6:f5:f2:2c:21:ad:f8:a8:7b:b6:
8e:d3:65:21:1e:0d:a4:5d:2a:ad:90:90:b6:b6:3b:5b:ae:1b:
cf:b9:28:ea:3a:df:98:00:4a:75:03:aa:d3:99:1d:e9:07:7b:
17:1f:e5:d2:20:c9:0d:32:d0:4a:97:3b:3e:66:d8:ef:d6:1a:
92:c3:5b:67:ef:a7:05:d1:78:40:41:90:38:6a:58:13:19:2e:
c8:d5:72:41:19:f8:8a:c8:f3:21:01:2d:85:23:d2:b9:15:8e:
e8:7b:cd:eb:18:20:6c:a8:2d:91:33:65:bb:bf:0a:67:ef:6c:
e3:ed:2d:c9:ec:70:c6:a4:e3:5f:85:98:15:cc:c5:ba:52:01:
1a:7e:fe:e1:8e:54:6e:ef:28:52:f7:c5:3e:e5:5a:fd:c4:da:
dc:be:07:4d:2a:3e:ea:d2:35:1d:24:c3:e1:ec:ed:65:d9:80:
a9:81:2a:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:13:53 2025 by rpki-client