Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/1fJ47bp8HUSEEBJxpPCMlsoiqWE.roa
File: 1fJ47bp8HUSEEBJxpPCMlsoiqWE.roa (raw, json)
Hash identifier: fPIgG6uQqBHqWQVeYu8OaVpf6Bc24HMRCEvrLKngyM0=
Subject key identifier: D5:F2:78:ED:BA:7C:1D:44:84:10:12:71:A4:F0:8C:96:CA:22:A9:61
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 019425900BB8AD9871C3FEC42091077C2347
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/1fJ47bp8HUSEEBJxpPCMlsoiqWE.roa
Signing time: Thu 02 Jan 2025 05:49:44 +0000
ROA not before: Thu 02 Jan 2025 05:49:44 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 212118
IP address blocks: 93.171.212.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:90:0b:b8:ad:98:71:c3:fe:c4:20:91:07:7c:23:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 2 05:49:44 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=d5f278edba7c1d4484101271a4f08c96ca22a961
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:3f:e0:9f:03:bb:e5:99:57:89:7c:7b:76:52:
20:ed:f8:4a:ea:14:50:cd:3a:61:89:a9:6d:bd:c9:
8a:38:3f:24:5c:55:cb:c2:a0:04:02:d6:14:7a:4a:
06:db:a6:05:e6:fb:42:44:55:1a:d8:1b:5c:2a:0d:
20:ab:f5:c5:17:1a:16:6b:e0:c2:7a:73:7f:11:c1:
e6:3f:af:10:7b:34:39:ae:7a:3f:73:14:a4:44:4d:
c1:24:5e:b5:c4:7e:4a:fe:a0:00:d2:c7:b2:3d:fd:
bc:f4:40:c8:c9:64:db:11:64:a0:f1:39:fd:d4:cb:
df:16:f6:79:34:1b:31:ef:8e:42:57:16:88:c2:46:
28:e2:7d:06:8d:0f:bd:bd:40:37:d4:3d:2f:81:ee:
06:31:e6:d6:51:e0:dc:bc:81:7e:59:cd:bf:7e:2f:
1a:7f:68:dd:de:d0:ab:70:c9:33:b5:e1:f5:e7:18:
37:06:04:3c:3a:f0:9d:a4:77:a5:3b:bb:6d:84:c6:
70:85:29:1d:e1:85:89:71:03:4e:3f:43:22:a2:e8:
ef:00:2c:45:28:24:1d:33:78:09:17:62:d4:a8:d4:
c8:42:33:2c:54:b3:da:a6:1b:38:9e:88:b6:7c:96:
1b:0f:80:b6:27:26:c5:9c:3a:c9:27:fd:e6:86:77:
4d:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:F2:78:ED:BA:7C:1D:44:84:10:12:71:A4:F0:8C:96:CA:22:A9:61
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/1fJ47bp8HUSEEBJxpPCMlsoiqWE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.171.212.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:5e:48:bb:fd:81:e2:ca:97:df:b9:91:50:9d:0c:1a:55:3a:
0a:0e:31:68:02:f0:3e:dc:bf:a6:1a:e1:45:fc:76:8f:48:20:
fd:0a:fd:cd:02:fa:6e:4c:d1:6b:b5:f1:ba:c7:6e:cc:33:b2:
79:00:67:21:b6:a5:85:d6:20:0b:30:3b:bc:df:96:0d:c2:b7:
bf:10:b9:f3:18:e8:bb:49:5f:64:28:51:9b:77:ec:1c:41:c0:
b2:10:c3:b5:53:13:3e:23:ea:22:de:af:25:88:38:ca:26:3f:
d2:ba:b3:9d:db:ea:47:e2:48:19:a6:c5:e0:23:d7:b9:b2:30:
d8:06:1c:ae:7c:a2:4d:5b:e1:21:2e:10:30:14:87:ac:e6:80:
86:ab:53:ec:5c:2f:ce:b4:c1:d4:5e:b8:e8:0a:d8:aa:16:84:
1e:86:84:65:f3:8e:95:26:80:23:e8:59:4a:18:5b:bb:b0:63:
e4:8d:63:6a:43:5b:ba:62:2b:95:57:55:da:b8:4d:a1:50:40:
a7:48:35:df:c8:a9:82:7a:61:55:f7:ad:eb:ee:bd:36:59:5e:
3a:c0:e4:cf:1c:05:e2:28:4c:cf:18:0b:c2:a3:9e:02:d1:11:
2d:04:7f:0e:dd:c4:4c:74:00:e9:88:f1:9b:94:70:dc:75:14:
f2:0b:e1:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 23:29:28 2025 by rpki-client