Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/56xeLuf5qzyLK60cnK3GfDv9I5c.roa
File: 56xeLuf5qzyLK60cnK3GfDv9I5c.roa (raw, json)
Hash identifier: rMWRyur4Ns9zhBClGdahOmlUPAc0T+YqjUeg/2gNClc=
Subject key identifier: E7:AC:5E:2E:E7:F9:AB:3C:8B:2B:AD:1C:9C:AD:C6:7C:3B:FD:23:97
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 0194258FEC07219D7FEF2AA246057C1E1A49
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/56xeLuf5qzyLK60cnK3GfDv9I5c.roa
Signing time: Thu 02 Jan 2025 05:49:36 +0000
ROA not before: Thu 02 Jan 2025 05:49:36 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 202362
IP address blocks: 93.170.53.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8f:ec:07:21:9d:7f:ef:2a:a2:46:05:7c:1e:1a:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 2 05:49:36 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=e7ac5e2ee7f9ab3c8b2bad1c9cadc67c3bfd2397
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fb:69:33:55:e8:78:81:2c:e1:cc:87:8c:5d:fc:
d1:7d:3a:81:60:8a:23:5c:b2:ae:d3:69:bd:13:4f:
a4:c2:99:a1:c8:b5:0a:d6:0c:25:96:47:16:42:80:
77:fc:8a:64:7c:19:33:d4:42:f0:0d:a1:58:39:94:
eb:2c:3a:01:e7:23:60:33:2f:46:29:24:d1:f1:62:
e6:0a:79:9b:70:d6:45:ad:77:6f:ca:f7:0c:99:f0:
e4:b5:ce:27:98:b2:16:0b:4a:fb:ee:ff:f0:fe:7c:
fd:cb:ef:78:c8:c7:d0:3f:9b:df:6f:17:a3:e4:da:
a7:f1:d1:5a:32:5f:43:38:3f:23:10:95:8e:4d:ac:
cf:94:9b:d2:6a:4f:6f:e1:15:b4:0c:f6:ca:75:76:
fa:ac:07:73:12:57:48:95:15:d9:cc:bf:ee:04:a2:
a6:e0:a7:b7:85:a6:29:91:1b:76:3a:40:c6:71:06:
3c:43:17:72:f1:64:46:94:35:a8:dd:f9:b8:4e:e9:
8d:fe:2b:32:4f:7a:65:13:b8:c5:61:43:da:33:ed:
cb:f9:81:fe:ad:ef:40:88:00:59:cd:46:c4:c5:5f:
48:d2:79:93:e3:a0:76:66:30:fd:2a:ef:07:47:96:
82:43:d3:8e:5c:64:90:09:05:47:e9:d8:50:5c:c9:
f4:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:AC:5E:2E:E7:F9:AB:3C:8B:2B:AD:1C:9C:AD:C6:7C:3B:FD:23:97
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/56xeLuf5qzyLK60cnK3GfDv9I5c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.170.53.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:f8:41:c9:69:ec:46:fb:79:4d:ad:ff:d5:5d:d9:b3:82:d9:
a1:52:02:58:a9:17:d5:06:e6:e8:12:de:8f:0e:ef:29:f7:08:
80:84:ff:f8:4b:3b:57:9b:d9:9a:00:93:65:63:cc:d9:fd:a1:
99:7d:10:a6:8a:4f:3f:bb:63:9b:97:c9:09:96:5e:ac:36:81:
47:b2:85:90:e5:24:02:f2:19:c8:a2:bd:12:32:16:2e:54:59:
b6:f2:30:23:c3:a9:e4:5d:c7:93:b3:65:1d:92:79:7a:09:41:
a1:7f:08:71:0f:32:91:34:8e:0a:45:42:75:46:7f:fd:b6:a8:
23:e4:3c:ad:ed:39:df:b2:cc:02:e8:de:d1:5d:04:0b:00:ac:
94:79:bf:c1:41:91:c1:fd:e6:93:36:2d:7c:94:0b:5a:66:e8:
cf:b7:f3:61:e6:ba:0e:45:df:14:04:bb:b1:e6:cc:3f:ce:ab:
da:76:73:5a:6d:e0:b8:ce:8a:a9:69:de:5a:4b:f2:11:0c:6f:
ae:24:cd:b7:b8:fe:f9:29:a4:68:23:ec:13:80:79:b0:d4:97:
6c:08:8d:16:71:d6:bb:22:65:e4:cf:3a:e1:36:a5:94:9a:3c:
60:58:eb:86:b1:f6:09:7b:eb:9e:82:98:7f:67:6e:6a:a8:10:
eb:8f:f5:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 23:58:32 2025 by rpki-client