Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/106f1rwWNibmnP7_hSf_JN90sAA.roa
File: 106f1rwWNibmnP7_hSf_JN90sAA.roa (raw, json)
Hash identifier: NiL+o7o1a03xUHRPkQOVU9DpwJwW1BM7CMJYq0ari4s=
Subject key identifier: D7:4E:9F:D6:BC:16:36:26:E6:9C:FE:FF:85:27:FF:24:DF:74:B0:00
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 27B101A8
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/106f1rwWNibmnP7_hSf_JN90sAA.roa
Signing time: Sat 01 Jan 2022 16:08:37 +0000
ROA not before: Sat 01 Jan 2022 16:08:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49711
IP address blocks: 92.38.56.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 665911720 (0x27b101a8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 1 16:08:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d74e9fd6bc163626e69cfeff8527ff24df74b000
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:db:d6:7b:31:05:39:9b:25:d9:e4:b4:6a:a4:
30:b7:37:41:e8:56:05:27:0b:44:e9:b8:a5:9b:0c:
09:aa:3e:3a:b8:43:6e:f0:d2:2e:08:54:b6:5e:45:
0b:65:7d:b0:8d:75:82:cc:b8:21:8f:25:17:e9:81:
0f:d9:4d:91:58:19:7c:36:33:fb:ac:1d:3b:b6:fc:
da:d2:90:aa:a7:cf:d1:88:ea:81:a5:f6:61:57:00:
f3:5a:1b:e8:c1:79:50:3c:b0:45:2f:49:bc:43:be:
eb:c6:1c:f5:8c:a2:64:d2:a8:bc:3e:f0:5e:d0:d1:
5b:48:70:e4:98:6a:39:c4:f4:c2:fe:58:78:89:d2:
e2:eb:1d:45:23:d1:2a:93:66:4f:c9:23:73:52:37:
79:f8:df:67:18:71:d1:0b:85:d8:79:da:92:bd:f9:
f1:cb:6f:0b:2a:4d:35:43:5b:8f:c1:8c:d4:bf:8f:
c1:cf:2e:d8:32:40:b0:aa:15:cb:9c:59:4b:24:bb:
29:52:38:9c:a9:95:4d:ca:2e:a0:50:c4:68:00:1e:
25:d6:17:96:7d:fd:1c:71:fe:a3:6b:7c:86:61:20:
d3:e7:af:21:af:fa:fc:89:ff:ad:53:43:03:c3:e1:
1e:f4:35:6d:60:bf:b8:8d:52:a0:14:8b:b1:be:5e:
3f:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:4E:9F:D6:BC:16:36:26:E6:9C:FE:FF:85:27:FF:24:DF:74:B0:00
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/106f1rwWNibmnP7_hSf_JN90sAA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.38.56.0/21
Signature Algorithm: sha256WithRSAEncryption
52:90:f9:92:a6:48:21:b1:8e:41:91:b1:1c:41:04:f5:5b:c7:
60:90:d5:ac:d8:2f:73:af:e7:7e:02:50:46:7b:76:2c:fc:62:
46:e1:25:a4:ff:cc:68:89:e7:00:15:85:16:9e:63:af:81:fb:
1f:d0:c9:cd:f6:b2:2b:86:74:c0:18:35:91:5b:99:b4:a1:be:
f8:a5:46:a0:78:22:dd:20:6c:70:77:5e:6a:02:57:be:13:be:
15:7f:3a:15:e8:b0:72:59:be:2d:0c:9a:df:ac:cd:e2:26:40:
1b:36:08:76:82:98:70:2f:62:a8:5c:df:0f:80:8c:c5:19:45:
15:4b:c2:1a:6b:04:7b:a8:54:cd:0f:78:5d:d6:f6:9c:c2:14:
b3:70:f7:8b:ee:a6:03:3a:d8:04:fb:17:ea:27:df:0d:1f:24:
4a:f4:41:c4:62:76:b4:d5:fb:d2:2e:23:63:15:47:db:57:d2:
97:d4:e8:79:28:00:5b:18:10:ff:29:1a:89:91:36:64:83:4f:
b4:22:4b:1b:f5:d0:aa:ef:4d:86:10:f7:26:2d:48:83:5d:a9:
9a:60:ac:a2:3e:ee:16:70:f3:89:4d:cb:5f:c7:18:1e:8e:be:
a7:17:8d:7d:bf:ce:cc:24:60:e3:21:2e:a6:ba:1b:5a:57:1a:
ab:0b:1d:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 23:34:16 2025 by rpki-client