Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/70d4ec-c960-460f-9227-8da140e0afd7/1/v5reHtQaJ14vLC2ggsfKRNU89Jw.roa
File: v5reHtQaJ14vLC2ggsfKRNU89Jw.roa (raw, json)
Hash identifier: 3L7ma64uyQm/pahl+sRTfuZpc014YNFffPR7MX7qUl8=
Subject key identifier: BF:9A:DE:1E:D4:1A:27:5E:2F:2C:2D:A0:82:C7:CA:44:D5:3C:F4:9C
Certificate issuer: /CN=9cac789c1f067cc758ee25fdf575b97c88068293
Certificate serial: 0188303D7580329F1AB83A8E8C56F8D00B11
Authority key identifier: 9C:AC:78:9C:1F:06:7C:C7:58:EE:25:FD:F5:75:B9:7C:88:06:82:93
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nKx4nB8GfMdY7iX99XW5fIgGgpM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/70d4ec-c960-460f-9227-8da140e0afd7/1/v5reHtQaJ14vLC2ggsfKRNU89Jw.roa
Signing time: Thu 18 May 2023 19:01:54 +0000
ROA not before: Thu 18 May 2023 19:01:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202656
IP address blocks: 83.138.52.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:30:3d:75:80:32:9f:1a:b8:3a:8e:8c:56:f8:d0:0b:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9cac789c1f067cc758ee25fdf575b97c88068293
Validity
Not Before: May 18 19:01:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bf9ade1ed41a275e2f2c2da082c7ca44d53cf49c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:5b:36:9e:3b:2f:ec:25:87:07:d8:f9:53:48:
87:a3:d2:c6:4e:3c:79:52:5e:fe:3b:1c:b2:fa:30:
31:68:0b:21:bb:94:92:ee:34:db:95:ba:ef:03:fc:
7e:57:26:0e:f8:40:c1:e9:cc:c9:6d:d7:ea:9b:87:
d8:44:aa:bd:9f:41:ce:8f:c0:77:8d:ee:1d:68:41:
e2:4c:0f:ac:57:f8:91:15:96:bf:f1:e9:54:57:ab:
2c:a1:b9:40:f7:1a:4f:a1:7e:ce:78:7e:55:29:07:
f9:8f:f9:6a:21:82:da:e0:70:79:2f:4d:d1:8b:a3:
9a:1d:83:47:66:b7:92:14:37:15:2c:28:07:16:a4:
8b:b9:3c:08:ac:47:50:95:4a:59:36:9a:1f:b5:3a:
7d:c2:28:57:d2:aa:66:86:93:52:33:d5:09:e2:31:
22:3c:d7:90:6a:8b:f1:f6:06:a3:93:9e:a3:b6:5c:
48:ac:31:04:3b:bd:c7:07:05:d4:ca:99:eb:74:13:
5b:23:97:bc:a0:a3:b7:03:32:4d:cc:68:f3:7b:8b:
93:32:a7:be:9b:6c:80:c0:a3:18:5e:74:02:82:47:
99:73:70:54:29:1d:2f:02:d1:62:c4:1f:dc:11:0c:
6a:8d:a9:88:c5:b9:c1:4e:c9:ef:fb:1b:28:27:0d:
d9:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:9A:DE:1E:D4:1A:27:5E:2F:2C:2D:A0:82:C7:CA:44:D5:3C:F4:9C
X509v3 Authority Key Identifier:
keyid:9C:AC:78:9C:1F:06:7C:C7:58:EE:25:FD:F5:75:B9:7C:88:06:82:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nKx4nB8GfMdY7iX99XW5fIgGgpM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/70d4ec-c960-460f-9227-8da140e0afd7/1/v5reHtQaJ14vLC2ggsfKRNU89Jw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/70d4ec-c960-460f-9227-8da140e0afd7/1/nKx4nB8GfMdY7iX99XW5fIgGgpM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.138.52.0/24
Signature Algorithm: sha256WithRSAEncryption
85:77:7b:d5:2c:94:a4:26:52:7c:89:02:57:30:ce:73:81:2b:
4e:d5:8c:87:fe:bb:2f:6e:d7:f6:d3:83:11:3b:55:63:db:f1:
8b:13:c9:d4:0d:0b:da:2b:f3:29:64:93:c6:73:a6:83:2b:91:
6f:f8:fc:9d:cc:bf:6c:31:88:7c:8a:a1:d2:51:83:80:d3:7d:
3a:c7:dd:4b:83:3e:1b:09:c6:67:93:9b:27:a5:a0:bc:35:9b:
31:70:f9:55:91:bd:16:77:65:95:51:e7:3d:1b:9f:d7:b6:17:
b4:bc:cd:40:02:2c:d9:22:ff:1c:9a:b4:3d:a1:ea:07:18:88:
8d:ca:bf:ee:b5:65:2e:91:a8:ac:f8:d9:37:33:eb:a5:68:45:
39:9b:09:4a:eb:d4:34:9f:2d:9e:96:0e:d6:c6:ad:79:72:02:
2b:a9:24:6b:2a:51:ee:7c:75:b4:6f:fb:b2:0a:d2:fd:27:12:
9d:6a:a9:3b:ba:f6:1e:ff:56:e2:63:11:06:a5:cc:bd:6a:fe:
20:09:89:4a:dc:a7:48:80:c0:74:07:0e:26:af:2b:69:41:56:
a1:86:43:cb:18:71:17:7c:b5:a0:13:7e:bb:e1:2c:3e:df:48:
e0:fe:8e:e7:5c:bb:4f:8b:c2:b7:8d:50:33:7d:1d:4f:95:d5:
38:5d:c5:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 01:12:40 2025 by rpki-client