Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/1I_TBVXM2xH3m48NJBNZjO3Nhq4.roa
File: 1I_TBVXM2xH3m48NJBNZjO3Nhq4.roa (raw, json)
Hash identifier: 0ns2ozEqgqqPN3oP2BuZUk7IoSJXRyaHtYZsXwzJULU=
Subject key identifier: D4:8F:D3:05:55:CC:DB:11:F7:9B:8F:0D:24:13:59:8C:ED:CD:86:AE
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 27D661E0
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/1I_TBVXM2xH3m48NJBNZjO3Nhq4.roa
Signing time: Sat 01 Jan 2022 16:08:57 +0000
ROA not before: Sat 01 Jan 2022 16:08:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57888
IP address blocks: 146.120.8.0/22 maxlen: 24
93.170.56.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 668361184 (0x27d661e0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 1 16:08:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d48fd30555ccdb11f79b8f0d2413598cedcd86ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:3c:f3:8c:65:9c:97:12:01:1c:b1:37:88:d3:
89:3e:3c:1c:94:88:89:3d:85:4b:00:d8:e0:95:e7:
5c:aa:b4:fe:53:b9:dd:88:ae:58:ac:e8:5a:e2:4f:
04:30:0e:d1:b3:75:48:d0:64:2d:86:eb:d6:27:b7:
8e:91:6f:e9:21:59:a1:ca:27:0c:38:1c:64:56:84:
3f:78:f7:42:6c:47:7f:ac:61:4b:39:b3:64:cd:9f:
7b:ef:81:c3:4f:fe:c8:ca:93:62:26:bb:32:aa:86:
c4:6c:f3:3d:3f:32:84:1b:2f:6f:52:7b:cc:2b:33:
05:4d:a8:db:75:c2:81:4c:bd:a2:e3:f9:b7:b3:fc:
14:40:04:04:43:8b:35:b4:6f:18:2a:6c:33:13:ed:
e9:ce:00:15:62:a3:11:70:c7:d2:97:39:48:5f:ea:
ac:90:4d:f6:33:92:a8:60:37:74:12:5e:fd:41:9f:
83:87:7a:9e:cc:7a:4b:08:c4:d5:4d:6c:67:dd:17:
c0:43:e8:a3:4f:f7:5e:1f:4f:1e:4c:bd:c7:92:73:
ec:72:1e:26:1c:cd:7a:ae:45:03:de:da:7e:bf:88:
d5:b5:c2:00:79:3d:04:00:74:92:90:a0:f5:7c:33:
10:ce:10:f9:c8:c6:0c:96:d9:23:c5:31:84:4f:7d:
1d:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:8F:D3:05:55:CC:DB:11:F7:9B:8F:0D:24:13:59:8C:ED:CD:86:AE
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/1I_TBVXM2xH3m48NJBNZjO3Nhq4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.170.56.0/21
146.120.8.0/22
Signature Algorithm: sha256WithRSAEncryption
26:be:6f:66:da:7c:65:04:1b:e1:86:b7:36:0a:28:44:35:e0:
06:13:9c:b8:c4:90:19:c7:00:65:67:b7:6e:68:0e:b5:df:17:
e6:64:59:38:94:ca:45:f0:cc:2b:1f:c6:fc:39:b9:24:2d:36:
c8:36:d3:01:44:22:ab:88:c9:86:96:1f:0a:92:b7:c6:1e:a8:
2d:f7:77:44:17:e1:3e:5d:84:01:1d:f5:62:b7:05:58:d9:7a:
30:c6:f4:61:d3:ac:19:6a:6c:7e:67:8d:35:8f:7e:1f:9a:85:
d3:ae:2e:7a:f2:c6:48:71:97:c6:80:09:ba:f7:80:0e:48:71:
e3:e8:b7:d3:a2:2b:21:03:d3:e2:97:71:7a:37:a8:bb:22:32:
68:e7:83:5f:f3:fe:cb:56:90:59:7a:b0:a3:b8:b8:11:ab:a4:
2a:06:ae:6a:fc:cb:f3:3b:a8:7e:80:18:47:ae:2a:7c:cc:a0:
70:63:92:1e:a2:fd:dd:ab:92:e3:fc:b7:33:ab:9d:12:b6:59:
f8:c6:14:50:e3:74:ad:fb:10:bc:bc:1e:02:e4:60:1c:03:da:
ca:de:fb:e5:54:27:45:2f:cc:f6:e7:bb:a5:8a:c1:bd:37:78:
20:15:69:d0:95:5a:b3:d4:a3:aa:7e:8f:35:ac:30:13:a3:b2:
3c:81:06:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 23:38:56 2025 by rpki-client