Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/d226bb-7210-4c92-9312-33b36224d6d7/1/5zCwwJ57spaZQisensFnK8EUWDg.roa
File: 5zCwwJ57spaZQisensFnK8EUWDg.roa (raw, json)
Hash identifier: qYBwvUdCdfj0I90P6XpMRcGdJtN04REem25/GtSS42o=
Subject key identifier: E7:30:B0:C0:9E:7B:B2:96:99:42:2B:1E:9E:C1:67:2B:C1:14:58:38
Certificate issuer: /CN=951c8b406e8299a7294dd7224570fc32b629dc6b
Certificate serial: 0184EC1C2CB53945B1515656B4BD12649108
Authority key identifier: 95:1C:8B:40:6E:82:99:A7:29:4D:D7:22:45:70:FC:32:B6:29:DC:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lRyLQG6CmacpTdciRXD8MrYp3Gs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/d226bb-7210-4c92-9312-33b36224d6d7/1/5zCwwJ57spaZQisensFnK8EUWDg.roa
Signing time: Wed 07 Dec 2022 10:23:00 +0000
ROA not before: Wed 07 Dec 2022 10:23:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209854
IP address blocks: 193.56.113.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:ec:1c:2c:b5:39:45:b1:51:56:56:b4:bd:12:64:91:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=951c8b406e8299a7294dd7224570fc32b629dc6b
Validity
Not Before: Dec 7 10:23:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e730b0c09e7bb29699422b1e9ec1672bc1145838
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:7f:a2:7e:b3:de:4c:31:5a:49:11:c4:8e:c4:
f4:6a:37:76:e2:29:f6:7e:2e:f3:28:c8:ad:54:2f:
fe:5d:82:70:11:9a:68:68:47:8a:b6:cb:64:b1:c9:
fe:52:ef:ea:6d:f2:2d:4d:95:8d:96:d4:65:9d:5b:
d0:0b:28:2a:bc:81:69:27:75:5e:47:a8:1d:d0:d2:
df:5d:1a:ba:6c:5a:09:1b:98:3c:9f:29:bc:5f:f3:
ad:b9:ff:f5:32:b8:4f:d5:5b:4c:18:47:b4:2f:60:
d6:c9:74:bc:75:5c:b8:78:95:a8:65:38:3c:67:6b:
0f:0e:5d:42:f2:29:99:a0:d9:2a:9a:1e:b4:ec:d2:
02:19:4d:39:e9:12:c7:a6:f9:eb:1b:47:66:dd:26:
00:b2:78:90:38:29:b3:d2:c4:2f:e8:e5:89:72:09:
4f:fe:47:78:09:6c:79:9e:83:78:cd:44:28:e4:68:
45:14:13:76:9a:db:5e:d8:a5:9f:8d:0c:c4:44:74:
3c:d4:ff:95:f4:06:35:ea:fa:d3:5f:6f:9d:da:b8:
5e:15:be:ea:85:5d:da:1e:cb:51:cf:d9:ee:6b:e2:
6d:ae:d0:dc:8e:1b:31:2e:53:19:71:7a:61:14:03:
cb:36:8b:43:7c:f8:cd:30:ad:aa:fb:bf:de:c5:4f:
8a:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:30:B0:C0:9E:7B:B2:96:99:42:2B:1E:9E:C1:67:2B:C1:14:58:38
X509v3 Authority Key Identifier:
keyid:95:1C:8B:40:6E:82:99:A7:29:4D:D7:22:45:70:FC:32:B6:29:DC:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lRyLQG6CmacpTdciRXD8MrYp3Gs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/d226bb-7210-4c92-9312-33b36224d6d7/1/5zCwwJ57spaZQisensFnK8EUWDg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/d226bb-7210-4c92-9312-33b36224d6d7/1/lRyLQG6CmacpTdciRXD8MrYp3Gs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.56.113.0/24
Signature Algorithm: sha256WithRSAEncryption
99:67:60:c8:f0:cc:ed:c5:30:af:68:ce:00:0f:e3:e0:52:d4:
a4:2e:c8:dd:b3:d7:af:89:65:6b:06:7e:56:95:64:4f:2f:b0:
67:86:f4:22:3c:81:c4:81:a5:5b:51:c9:06:24:11:fc:43:e6:
d3:1f:f9:18:31:1e:f4:07:08:1e:0c:41:0c:f3:85:a1:9c:33:
40:ae:60:67:3b:54:dd:23:42:7f:66:ee:e9:bf:49:4a:fb:b2:
8c:34:66:4a:da:1b:8e:aa:51:04:d9:45:7d:62:b8:3e:c9:8d:
83:8e:62:45:88:c9:84:4d:40:0d:e7:b8:6c:71:98:3b:c6:ef:
fa:e2:f3:3d:ea:9b:56:65:12:21:f4:b6:75:0d:71:a0:41:08:
c8:75:09:1f:04:b3:9e:e7:ab:1b:65:6f:90:8b:8a:2c:b5:5a:
df:f2:f6:e4:30:71:f0:a1:9b:14:6d:8d:1b:bc:d5:83:c1:94:
2f:92:f0:8d:c8:62:12:78:3c:0f:b9:63:45:92:83:07:f9:3b:
60:e2:d3:57:83:02:4e:fa:c0:d7:8a:5c:66:53:6d:a6:bd:36:
e8:c4:b3:9f:fc:01:6b:80:9a:69:1a:f8:50:74:c8:5d:38:53:
1f:a9:6a:6f:1c:62:b9:70:d2:c2:bc:cb:c5:41:47:99:29:cb:
84:88:35:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 23 04:18:23 2025 by rpki-client