Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/27jWthrrpZu6lN100KTnJNLV874.roa
File: 27jWthrrpZu6lN100KTnJNLV874.roa (raw, json)
Hash identifier: NQwgphKIy6tm7sp755Pp6aMYWkvc8DVX6KXrtzkcPIQ=
Subject key identifier: DB:B8:D6:B6:1A:EB:A5:9B:BA:94:DD:74:D0:A4:E7:24:D2:D5:F3:BE
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 018596945136C8271599028C83667E9BBAF5
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/27jWthrrpZu6lN100KTnJNLV874.roa
Signing time: Mon 09 Jan 2023 12:49:40 +0000
ROA not before: Mon 09 Jan 2023 12:49:40 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51495
IP address blocks: 93.171.220.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:96:94:51:36:c8:27:15:99:02:8c:83:66:7e:9b:ba:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 9 12:49:40 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dbb8d6b61aeba59bba94dd74d0a4e724d2d5f3be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:22:b3:e4:08:89:11:0c:8e:e1:6a:5e:83:40:
b8:b7:56:4a:c2:d4:f8:c9:fa:a9:23:57:00:a4:d0:
6f:b8:60:67:e0:2f:69:a1:2c:f3:da:90:11:71:62:
f6:38:1a:9a:80:2e:64:b6:a3:cd:b5:ca:30:23:d0:
02:c0:13:4e:bd:53:b8:1b:4f:bf:93:bc:12:42:71:
26:0f:62:e3:31:00:dc:29:98:ce:c4:94:47:62:af:
8e:db:10:56:0d:3b:6f:2d:71:58:8b:ef:21:a8:98:
06:26:88:cb:11:01:1f:18:ed:92:62:10:a7:f9:7c:
30:41:cf:ef:1b:4f:12:ed:4b:b3:27:cb:e9:57:c0:
9d:0e:69:6b:1c:1f:65:83:77:a9:fb:f6:95:8f:8f:
c1:83:ea:7e:d0:16:b2:03:f0:d2:28:53:0a:ae:7c:
63:c1:f5:71:51:2a:a2:ea:d4:f3:27:25:c1:3a:9c:
02:d3:86:95:2e:4b:56:e9:a8:96:12:51:02:8a:09:
5d:a5:68:84:a2:9c:fb:f7:d2:a3:3e:83:87:0a:70:
01:ff:08:62:36:61:b3:9e:46:c5:c1:6a:1b:2e:53:
7a:95:39:2e:e7:52:dc:0f:6d:ff:aa:6d:44:f8:c9:
a9:60:ac:c4:b1:a5:c7:7f:66:ae:d8:2e:cc:78:1d:
0b:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:B8:D6:B6:1A:EB:A5:9B:BA:94:DD:74:D0:A4:E7:24:D2:D5:F3:BE
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/27jWthrrpZu6lN100KTnJNLV874.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.171.220.0/22
Signature Algorithm: sha256WithRSAEncryption
62:a4:79:8a:01:c6:52:66:22:14:49:db:bb:8d:d5:6f:9d:23:
e0:9d:d6:74:3f:b3:77:77:6c:d8:3c:71:e3:2b:dd:2a:c3:c3:
9f:fd:d0:7f:e9:34:04:79:2c:cd:cc:64:30:af:49:e1:e7:58:
54:1c:17:fe:ca:d5:d7:09:e1:59:e6:fc:ac:ce:3f:ed:c9:8e:
79:61:af:9a:82:43:d7:50:f9:24:ad:79:33:29:5a:8d:78:c7:
85:4c:b6:7c:50:31:9e:96:ae:03:dd:83:5b:0a:ba:ff:f7:5f:
b2:5e:75:b6:ca:af:e4:65:46:d8:76:c6:1a:d7:51:63:f1:c2:
c2:72:d1:9f:50:a2:2d:5a:16:f3:3c:09:09:06:9b:e9:f7:ab:
7f:4c:59:e7:07:f1:88:c3:11:cd:e1:35:cf:2e:ec:ed:e0:69:
fa:40:e1:b9:21:8e:a8:1c:07:9e:be:59:42:1f:59:e4:19:19:
75:de:c8:34:d7:8f:1d:8f:fa:be:c9:df:9b:d9:1e:8a:8f:ba:
ef:e8:51:4d:6a:df:47:61:ec:88:c7:4d:22:4e:f1:b4:c6:4a:
7f:6c:5d:72:d8:47:7f:d9:2e:78:97:d5:08:9d:92:cb:fa:1a:
a2:01:8f:a3:5d:18:de:f5:32:2b:0a:82:3e:ed:64:27:91:59:
ba:e7:f3:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 00:13:10 2025 by rpki-client