Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/822b12-2b8c-45ed-b65f-8904a437ca58/1/22ZyJtr1cGoOMa1dpByzpbpCCrM.roa
File: 22ZyJtr1cGoOMa1dpByzpbpCCrM.roa (raw, json)
Hash identifier: QK+QN00/IiHuDF72PCi3ysZ7YYUjg4cqHcClOmRLS0E=
Subject key identifier: DB:66:72:26:DA:F5:70:6A:0E:31:AD:5D:A4:1C:B3:A5:BA:42:0A:B3
Certificate issuer: /CN=72fb8abc33d141c49137081af4286e82a4cacc96
Certificate serial: 01CFA9B6
Authority key identifier: 72:FB:8A:BC:33:D1:41:C4:91:37:08:1A:F4:28:6E:82:A4:CA:CC:96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cvuKvDPRQcSRNwga9ChugqTKzJY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/822b12-2b8c-45ed-b65f-8904a437ca58/1/22ZyJtr1cGoOMa1dpByzpbpCCrM.roa
Signing time: Sat 28 May 2022 14:09:14 +0000
ROA not before: Sat 28 May 2022 14:09:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203020
IP address blocks: 93.157.108.0/24 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 30386614 (0x1cfa9b6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72fb8abc33d141c49137081af4286e82a4cacc96
Validity
Not Before: May 28 14:09:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=db667226daf5706a0e31ad5da41cb3a5ba420ab3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:da:b7:36:a7:12:0f:40:2f:32:1e:85:74:99:
8f:e4:e1:33:f5:50:59:aa:0b:be:25:cc:84:30:9c:
ae:85:60:a6:25:0c:e4:00:93:4d:f7:40:4c:72:ad:
e1:7f:47:81:f2:f5:40:99:11:c9:1d:6f:ac:30:f2:
99:98:09:72:ad:e0:c6:b4:c9:d1:83:f6:d5:a4:c9:
fb:6f:b9:c4:c8:76:44:5e:0a:ac:d6:41:3b:96:fa:
4e:b3:73:aa:b9:35:bc:16:9d:ab:53:bb:55:a3:47:
dc:95:2b:06:8c:0a:45:62:48:12:1c:20:ca:ab:a1:
7f:c3:81:34:8d:72:48:e8:af:2c:ac:9b:c7:21:a2:
21:64:78:18:41:4f:69:69:ee:76:00:c8:c0:69:d5:
ff:d1:b7:78:10:f8:61:42:a9:e4:20:13:10:8e:66:
58:e6:61:d9:6b:aa:54:f0:3a:94:83:16:03:cd:5e:
16:de:b4:d6:95:46:18:5d:08:d0:41:fd:1d:fa:47:
e4:69:b1:cb:90:17:fa:a8:fa:ec:32:82:bf:c4:7b:
2a:03:c4:63:fa:fa:14:f6:04:33:a1:4b:09:a1:08:
dd:e9:c1:31:61:9c:89:81:89:b6:03:ec:38:ba:17:
04:c7:0c:d3:b9:7c:17:85:8b:0a:b7:e2:32:90:07:
4b:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:66:72:26:DA:F5:70:6A:0E:31:AD:5D:A4:1C:B3:A5:BA:42:0A:B3
X509v3 Authority Key Identifier:
keyid:72:FB:8A:BC:33:D1:41:C4:91:37:08:1A:F4:28:6E:82:A4:CA:CC:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cvuKvDPRQcSRNwga9ChugqTKzJY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/822b12-2b8c-45ed-b65f-8904a437ca58/1/22ZyJtr1cGoOMa1dpByzpbpCCrM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/822b12-2b8c-45ed-b65f-8904a437ca58/1/cvuKvDPRQcSRNwga9ChugqTKzJY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.157.108.0/24
Signature Algorithm: sha256WithRSAEncryption
85:99:be:90:dc:00:a1:64:6b:a0:fd:6e:eb:6f:ec:9b:50:8b:
3c:87:99:e6:9b:e6:df:6f:66:6a:27:b5:1e:7f:7c:ea:c3:6b:
17:e5:f0:9a:6d:95:f3:07:52:52:0d:49:a5:be:d0:57:4f:95:
72:e4:94:e0:34:f6:e3:fe:cf:05:64:04:2f:43:1f:6d:b2:dc:
3a:6e:60:a4:21:06:10:9c:87:bf:07:3e:8e:71:2c:28:67:e8:
f1:dc:ed:80:41:31:47:fe:83:02:1c:62:75:e3:d7:d8:27:97:
59:1a:34:36:c7:68:87:36:c3:cf:e1:e3:3d:f5:48:5c:3d:02:
14:cc:e8:dc:13:c1:eb:6b:55:28:05:eb:76:82:1b:8c:05:61:
61:ca:e8:3f:c2:52:14:74:2d:b6:c8:ab:01:1a:93:d7:ad:80:
1a:10:d3:06:f0:51:87:40:d3:19:9c:00:94:8f:6a:64:f8:62:
29:cb:f9:50:76:a5:cc:c8:11:07:44:bc:a2:79:92:68:d3:dd:
7a:94:11:7d:59:95:b9:93:72:df:66:6b:a9:cc:89:f0:99:42:
39:a3:e1:e8:16:9e:ea:b8:17:bf:4d:a2:02:27:8b:1c:ac:dc:
13:d0:40:88:a0:13:ac:0f:79:a9:f3:42:e9:02:21:e7:16:2b:
53:68:9e:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:16:27 2025 by rpki-client