Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/60ed2d-16d5-4d0c-a947-bde6448b786c/1/LrVwKiIfML7mAYKSwQjrFc9mp0A.roa
File: LrVwKiIfML7mAYKSwQjrFc9mp0A.roa (raw, json)
Hash identifier: pqGsuXC48BK/nJrmWeripHJL6964Try+bgZKQC5cMuM=
Subject key identifier: 2E:B5:70:2A:22:1F:30:BE:E6:01:82:92:C1:08:EB:15:CF:66:A7:40
Certificate issuer: /CN=23ba1ec4f035a72dfa39e930ad8ec54368eb7af4
Certificate serial: 019420D5ABD4BD81358E21BDA35D13166271
Authority key identifier: 23:BA:1E:C4:F0:35:A7:2D:FA:39:E9:30:AD:8E:C5:43:68:EB:7A:F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I7oexPA1py36OekwrY7FQ2jrevQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/60ed2d-16d5-4d0c-a947-bde6448b786c/1/LrVwKiIfML7mAYKSwQjrFc9mp0A.roa
Signing time: Wed 01 Jan 2025 07:47:41 +0000
ROA not before: Wed 01 Jan 2025 07:47:41 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 53856
IP address blocks: 93.157.28.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:d5:ab:d4:bd:81:35:8e:21:bd:a3:5d:13:16:62:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23ba1ec4f035a72dfa39e930ad8ec54368eb7af4
Validity
Not Before: Jan 1 07:47:41 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=2eb5702a221f30bee6018292c108eb15cf66a740
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:62:7e:77:98:65:65:c3:c8:95:f4:57:29:3e:
b9:15:6a:79:f3:4c:d5:42:f1:ab:19:56:37:fc:fd:
53:1f:70:12:c7:54:2d:07:7e:72:63:7a:3c:8c:49:
bd:16:d7:92:fa:02:53:d5:e4:41:c2:dc:48:49:2a:
6b:6d:6c:ea:cb:f2:2f:85:66:55:8b:32:59:ec:26:
ce:d2:e2:7e:c4:85:c6:0d:71:fc:d8:cf:92:2b:94:
ba:b8:a2:7e:b7:b7:e1:35:c6:98:86:43:0b:9c:81:
16:22:58:33:81:ad:45:45:f4:a7:8b:d3:c1:de:45:
c5:28:9e:89:8b:ad:20:51:3a:ce:64:05:b8:54:cf:
50:21:cd:69:05:01:83:57:bc:4e:47:fe:64:88:1d:
70:6a:53:ec:8c:03:b4:32:e3:23:8d:1f:df:41:47:
9a:d9:68:f3:a7:39:41:5c:29:12:0c:cc:b7:c3:3c:
72:a3:07:50:1e:51:a5:a8:e1:a5:f8:ed:91:13:08:
ac:ee:6e:6e:14:cf:36:04:77:23:21:90:4d:0a:f0:
41:7e:f6:0f:c1:46:5e:22:cf:70:9f:a8:4d:14:a0:
25:9f:b6:a9:03:50:4b:79:15:a2:d0:99:09:fd:34:
18:e0:5d:a8:47:07:d0:16:cc:b8:10:1b:07:b3:49:
45:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:B5:70:2A:22:1F:30:BE:E6:01:82:92:C1:08:EB:15:CF:66:A7:40
X509v3 Authority Key Identifier:
keyid:23:BA:1E:C4:F0:35:A7:2D:FA:39:E9:30:AD:8E:C5:43:68:EB:7A:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I7oexPA1py36OekwrY7FQ2jrevQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/60ed2d-16d5-4d0c-a947-bde6448b786c/1/LrVwKiIfML7mAYKSwQjrFc9mp0A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/60ed2d-16d5-4d0c-a947-bde6448b786c/1/I7oexPA1py36OekwrY7FQ2jrevQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.157.28.0/23
Signature Algorithm: sha256WithRSAEncryption
0a:65:d6:8d:60:ca:c3:62:ee:ec:13:88:05:b9:87:02:fd:4c:
9b:0d:f4:e7:6e:fb:bf:4f:0e:b5:e4:a5:c4:30:d5:1f:09:af:
b8:c9:34:2c:44:40:78:6b:58:c1:8e:94:37:6f:93:77:a1:5a:
09:87:ee:1c:2f:3a:09:96:29:d5:9d:d4:42:e2:d1:6e:8b:9a:
4d:71:b5:25:5d:1b:23:8b:c9:d4:a8:e3:5e:71:18:6e:78:4d:
d5:02:ee:d3:dc:44:a5:6f:2f:14:9c:47:dd:c8:23:51:9a:c1:
67:36:d2:f2:a2:b4:eb:f2:cf:42:78:32:3e:43:cc:a5:62:8b:
1a:81:c9:be:2d:1d:bc:42:ec:0c:78:28:0e:aa:57:b8:dc:32:
63:2c:85:51:ec:4f:cf:af:11:8d:bd:ba:66:cf:03:da:4d:b8:
4b:08:3a:25:b4:0a:38:c5:29:2f:d5:6f:68:ff:69:24:c2:48:
3e:8c:98:44:9d:5b:3a:89:4f:d2:49:80:75:85:2f:3d:b5:32:
60:fe:50:12:30:21:58:5d:ce:7b:cd:df:7c:51:b0:c9:a6:05:
cb:35:67:8c:6c:6d:2b:3b:d0:56:0d:12:72:b5:1b:a4:83:b3:
de:92:ca:84:54:b0:3c:a5:ae:06:3b:2c:84:57:ee:4b:8a:41:
63:13:75:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 12:26:23 2025 by rpki-client