Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/2UiPRj8SVqRgfU57aCB9IyVprPw.roa
File: 2UiPRj8SVqRgfU57aCB9IyVprPw.roa (raw, json)
Hash identifier: lAVn8ZU0yPYkXxaBl9I5ileHqNgpKrT9ZzkdKiAfRBw=
Subject key identifier: D9:48:8F:46:3F:12:56:A4:60:7D:4E:7B:68:20:7D:23:25:69:AC:FC
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 29D23CB2
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/2UiPRj8SVqRgfU57aCB9IyVprPw.roa
Signing time: Thu 12 May 2022 14:48:10 +0000
ROA not before: Thu 12 May 2022 14:48:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43724
IP address blocks: 92.38.20.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 701643954 (0x29d23cb2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: May 12 14:48:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d9488f463f1256a4607d4e7b68207d232569acfc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:f0:2c:91:c1:8a:9c:eb:3d:90:ce:be:37:31:
95:a2:f9:81:dd:70:47:1c:17:94:df:1b:37:ec:69:
eb:b0:88:3a:88:ad:d5:27:6a:49:44:d3:cc:63:d9:
38:dc:f0:7b:71:a6:1c:42:32:01:98:14:4e:bc:27:
2f:8f:70:bf:2c:86:ec:d9:94:00:d5:2b:86:39:c6:
e6:f9:d5:17:2f:e1:28:d9:09:85:1a:05:7d:63:1a:
8b:dc:d6:84:cd:a2:cb:91:8d:66:e3:0a:98:9b:b7:
b9:3b:56:a9:4b:c2:eb:c7:54:fe:e3:d2:d9:e8:56:
a5:47:ec:38:ed:bb:fa:f6:55:2d:46:8a:39:a8:eb:
23:cf:a1:32:88:89:66:7f:dd:b9:8f:87:ea:1d:46:
a4:3b:f2:9d:39:38:5d:92:1a:09:98:02:40:60:bb:
1a:e6:bf:64:fa:bc:31:5c:b9:e2:5b:51:52:e6:85:
f7:79:43:a4:1b:b1:71:8e:51:16:95:c1:1b:3f:12:
a2:39:88:f5:8f:83:88:8d:45:f1:d1:cd:43:0e:a4:
70:af:55:52:89:17:d7:6c:8a:66:7a:a6:11:44:76:
4d:e3:a4:03:2a:64:1e:21:d9:8e:1d:80:46:22:e4:
bd:88:6a:a9:3f:bc:7e:07:bc:15:11:3f:f7:56:24:
99:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:48:8F:46:3F:12:56:A4:60:7D:4E:7B:68:20:7D:23:25:69:AC:FC
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/2UiPRj8SVqRgfU57aCB9IyVprPw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.38.20.0/23
Signature Algorithm: sha256WithRSAEncryption
64:99:7d:c6:cd:3a:34:df:86:71:5b:5a:75:e6:50:33:94:2e:
58:b8:c8:ce:4a:2a:6f:eb:a6:a8:eb:8a:9a:e0:7c:cc:b8:6d:
ba:e6:2a:39:8d:27:f7:4c:89:fd:b7:a9:4a:7f:14:2e:53:71:
e1:51:42:f9:04:fa:af:6f:01:44:50:09:32:f1:e0:a6:89:25:
2e:15:6e:12:cf:8c:57:b7:e5:30:43:6b:94:b9:4e:cc:a1:f8:
88:8b:d8:a9:96:38:91:a5:5f:7d:b9:6c:4e:a4:f0:5c:69:48:
43:da:03:da:93:16:00:7c:01:3a:8c:2a:4b:35:0c:79:a9:87:
bb:9c:b5:ab:75:01:5d:9a:64:01:b7:6b:cd:68:8e:8b:32:45:
81:2c:b1:b3:4c:c9:cd:3a:46:96:3c:c2:04:7d:bf:f8:35:67:
c9:58:a5:d4:dc:1f:a0:3d:6b:69:2f:7b:f2:5d:45:be:ee:03:
10:a2:58:93:77:5b:21:53:17:11:30:8d:e2:2b:2a:22:d6:7c:
8a:87:3c:6d:70:e9:f7:1a:51:8b:ae:85:e6:6f:b7:80:6e:7b:
81:dc:07:4c:89:05:c4:bc:d4:23:9f:88:4d:35:ba:7f:08:96:
56:08:d1:13:c8:75:41:2b:9d:45:20:25:22:54:7a:e7:32:ef:
ad:22:b6:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 23:36:50 2025 by rpki-client