Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/7e281f-405d-4437-8220-42c0b7561d29/1/pQEK7exbnvqAwJ-rvQdBBzuVL0E.roa
File: pQEK7exbnvqAwJ-rvQdBBzuVL0E.roa (raw, json)
Hash identifier: ZTHy7ukVF4JF8RXutmUDXBE4qFW2p9lR8PXodfGVuRk=
Subject key identifier: A5:01:0A:ED:EC:5B:9E:FA:80:C0:9F:AB:BD:07:41:07:3B:95:2F:41
Certificate issuer: /CN=781684136124a5cacbe7bf7d9f69fa421eccfd37
Certificate serial: F98CF7
Authority key identifier: 78:16:84:13:61:24:A5:CA:CB:E7:BF:7D:9F:69:FA:42:1E:CC:FD:37
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eBaEE2EkpcrL5799n2n6Qh7M_Tc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/7e281f-405d-4437-8220-42c0b7561d29/1/pQEK7exbnvqAwJ-rvQdBBzuVL0E.roa
Signing time: Sat 01 Jan 2022 07:56:57 +0000
ROA not before: Sat 01 Jan 2022 07:56:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210985
IP address blocks: 213.5.132.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 16354551 (0xf98cf7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=781684136124a5cacbe7bf7d9f69fa421eccfd37
Validity
Not Before: Jan 1 07:56:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a5010aedec5b9efa80c09fabbd0741073b952f41
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:46:a4:90:c9:bc:ca:5a:37:13:ee:9c:f6:c4:
91:37:77:5c:88:23:06:d3:6e:48:9a:26:2a:72:be:
91:2c:7b:b4:3f:33:07:2b:c6:e2:26:03:46:da:e5:
99:a0:66:65:2d:34:17:54:a4:69:3d:b7:60:d8:f7:
f3:6c:bf:e8:91:95:c4:b4:e4:ac:d7:7c:e1:88:5e:
6f:a2:23:39:9d:d6:ef:66:49:49:fb:25:e9:87:ab:
d0:25:2d:97:6e:f6:69:92:0a:e0:6e:b0:9e:9e:dd:
00:c0:70:58:de:2f:e5:36:36:fa:57:63:ea:97:01:
6a:95:78:99:4a:57:26:65:1b:c1:0c:16:cc:47:72:
0b:a8:e0:26:b3:ff:c6:ba:1c:dd:53:9e:04:8f:76:
e8:0e:fa:1b:0c:0a:c3:ad:b3:f7:14:8d:2a:02:e0:
1c:12:90:e5:c8:96:69:25:dd:af:be:d0:f5:67:38:
61:3a:41:90:8e:d1:07:d5:51:93:f8:90:3b:d6:6c:
05:7d:78:38:b2:4b:41:aa:07:a3:8c:ec:90:fd:14:
ca:e2:3c:9d:7c:e2:83:c7:0a:3d:12:2f:78:da:d5:
c9:46:8c:47:a9:5d:a0:80:b2:45:42:96:fa:7a:ea:
39:cd:79:50:6c:e6:95:cb:a1:75:19:ba:c4:81:53:
b3:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:01:0A:ED:EC:5B:9E:FA:80:C0:9F:AB:BD:07:41:07:3B:95:2F:41
X509v3 Authority Key Identifier:
keyid:78:16:84:13:61:24:A5:CA:CB:E7:BF:7D:9F:69:FA:42:1E:CC:FD:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eBaEE2EkpcrL5799n2n6Qh7M_Tc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/7e281f-405d-4437-8220-42c0b7561d29/1/pQEK7exbnvqAwJ-rvQdBBzuVL0E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/7e281f-405d-4437-8220-42c0b7561d29/1/eBaEE2EkpcrL5799n2n6Qh7M_Tc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.5.132.0/24
Signature Algorithm: sha256WithRSAEncryption
10:04:32:f8:5c:dc:e9:8f:6c:52:95:89:fb:80:8f:a0:1b:17:
47:69:ee:39:1b:5e:d3:f8:93:75:4d:58:24:9b:17:3a:65:a9:
76:6d:85:02:6b:21:29:82:f0:d9:93:71:1f:77:ff:5f:c8:e4:
c1:6d:bc:77:91:58:59:cf:83:1d:f4:71:d0:14:26:b4:64:71:
f0:09:e7:68:6e:e4:08:f6:c3:a0:b8:a3:81:cc:4d:03:ba:17:
7a:c6:dc:49:99:b0:2c:af:e2:24:c5:4e:c1:15:ad:1b:d9:bc:
88:9b:c5:7c:e3:fa:ff:25:d3:47:9d:ee:8a:d4:b4:d1:8a:f2:
62:2e:3f:98:2e:b0:28:90:e3:84:f2:20:48:a5:bb:bd:55:24:
3d:3c:b5:db:97:48:d6:da:7c:78:88:55:55:d3:ea:69:e9:0a:
f8:06:9e:64:84:75:9e:99:a4:69:0e:52:53:96:93:85:ef:ee:
15:23:70:26:12:78:c2:83:76:c1:16:c5:6c:38:ce:4a:c8:e8:
b0:06:81:2d:62:dd:ed:36:43:03:b0:bc:28:cd:4f:f5:87:3f:
d6:3a:f3:59:f0:f0:7e:06:e0:c9:1f:b4:a1:12:50:ac:46:61:
51:4b:0b:9f:0a:7b:08:39:85:f7:da:2e:29:d9:cf:77:2f:cf:
a0:04:07:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 23:28:34 2025 by rpki-client