Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/3b1313-72e2-4c45-8568-ba2d1a0ac42d/1/5zD_s5G2LDwS40B2xHX1t8gWu2s.roa
File: 5zD_s5G2LDwS40B2xHX1t8gWu2s.roa (raw, json)
Hash identifier: kIfUMqRNL0SYE8kw43L721SGG57M3h8w4F6b+B1NK9Q=
Subject key identifier: E7:30:FF:B3:91:B6:2C:3C:12:E3:40:76:C4:75:F5:B7:C8:16:BB:6B
Certificate issuer: /CN=fc8569520e0da7d87aa682124a2774d63666b5e8
Certificate serial: 0181F465049300ED24C07E4B818E8337386C
Authority key identifier: FC:85:69:52:0E:0D:A7:D8:7A:A6:82:12:4A:27:74:D6:36:66:B5:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_IVpUg4Np9h6poISSid01jZmteg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/3b1313-72e2-4c45-8568-ba2d1a0ac42d/1/5zD_s5G2LDwS40B2xHX1t8gWu2s.roa
Signing time: Tue 12 Jul 2022 21:51:09 +0000
ROA not before: Tue 12 Jul 2022 21:51:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58061
IP address blocks: 193.47.41.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:f4:65:04:93:00:ed:24:c0:7e:4b:81:8e:83:37:38:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fc8569520e0da7d87aa682124a2774d63666b5e8
Validity
Not Before: Jul 12 21:51:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e730ffb391b62c3c12e34076c475f5b7c816bb6b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:67:90:d5:32:4b:54:53:a8:85:54:be:5d:90:
3c:20:40:89:6b:37:a2:50:55:f6:3a:6e:95:b5:50:
80:bf:31:d2:a3:ea:cb:0b:f7:05:42:c4:27:5d:bc:
bc:7e:c6:62:25:2a:b5:c9:0b:46:82:4e:e8:ed:ad:
22:f9:d7:fc:1b:e1:68:81:18:79:9e:cf:e7:a1:f3:
e0:06:71:27:76:36:00:a6:4b:af:28:9a:45:52:e3:
d3:2d:4f:a3:48:17:90:dc:b5:56:de:05:e7:2b:53:
a3:c1:93:3b:67:7b:5a:83:e4:0c:d5:cb:b6:fa:e7:
47:fd:ee:01:d6:cd:f0:92:b3:1b:15:65:88:c3:56:
72:6e:96:f9:c8:e0:fa:58:da:98:99:75:4e:70:49:
e6:07:31:54:0a:4f:71:41:33:1e:9a:d8:26:5a:23:
13:64:e4:1e:39:4b:46:51:02:fd:60:3e:0b:9d:ec:
ad:4b:5e:15:b9:0d:b8:ea:5a:f5:8e:5d:20:59:01:
9c:8b:42:fc:7b:33:0a:b8:10:33:48:f6:eb:54:95:
84:63:c4:de:c7:22:6b:6c:7e:47:0e:65:29:f4:2c:
a1:c2:6a:f8:74:e9:78:11:2a:ab:38:5e:c6:df:ce:
4c:aa:eb:bb:bf:75:98:9c:46:b2:9a:c6:27:aa:b5:
66:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:30:FF:B3:91:B6:2C:3C:12:E3:40:76:C4:75:F5:B7:C8:16:BB:6B
X509v3 Authority Key Identifier:
keyid:FC:85:69:52:0E:0D:A7:D8:7A:A6:82:12:4A:27:74:D6:36:66:B5:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_IVpUg4Np9h6poISSid01jZmteg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/3b1313-72e2-4c45-8568-ba2d1a0ac42d/1/5zD_s5G2LDwS40B2xHX1t8gWu2s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/3b1313-72e2-4c45-8568-ba2d1a0ac42d/1/_IVpUg4Np9h6poISSid01jZmteg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.47.41.0/24
Signature Algorithm: sha256WithRSAEncryption
83:6a:df:3a:a4:b7:03:27:bf:cb:9c:9b:54:96:51:af:93:d3:
91:03:ec:4f:71:f8:28:b5:3c:95:80:5f:95:5f:52:86:7c:03:
82:a8:41:1b:f8:c8:da:1d:0e:38:9e:06:18:71:1b:e7:a0:64:
d1:b5:b5:99:4e:59:59:4d:7f:29:f5:d1:fc:a9:7e:1c:13:d7:
60:4c:08:3f:c9:d8:10:5b:f1:44:14:f2:30:5e:1d:2b:64:53:
eb:42:c6:7f:f0:5b:c7:54:1a:f6:92:c0:cc:85:24:4e:11:19:
d2:f9:0c:bb:67:78:0c:5d:73:df:f3:e9:b8:1e:47:c1:d4:72:
96:c1:94:e7:2a:4c:60:81:21:71:7a:f5:ae:7b:6c:93:17:7e:
7b:6a:14:bf:5f:74:b8:fa:71:79:41:f5:e0:6a:9a:cc:ad:d4:
91:f5:4b:a8:b9:bf:d5:dc:15:34:d1:28:f3:99:e9:eb:7d:4c:
7b:7d:d6:bb:05:9a:61:b5:74:28:6f:9f:21:e9:70:fd:61:5e:
24:d3:70:24:f3:38:76:89:fc:ff:78:84:ae:4b:e1:7a:9c:61:
8e:cc:e7:30:52:29:74:f3:33:61:c5:10:59:0d:3c:5e:77:70:
6b:25:6c:a9:bc:b9:1b:00:27:2e:f0:19:ae:8e:0c:4c:15:60:
70:eb:2a:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 06:29:28 2025 by rpki-client