Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/5H4Iis3VcdcInfu8Lb57G6dVbDY.roa
File: 5H4Iis3VcdcInfu8Lb57G6dVbDY.roa (raw, json)
Hash identifier: 6oVmG0f79byauotkI6Jjq36FgA98iyxKKBMCNhHIX9c=
Subject key identifier: E4:7E:08:8A:CD:D5:71:D7:08:9D:FB:BC:2D:BE:7B:1B:A7:55:6C:36
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 018570957A01C0FAA2FBB23AEECAC5F4C4D0
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/5H4Iis3VcdcInfu8Lb57G6dVbDY.roa
Signing time: Mon 02 Jan 2023 03:45:22 +0000
ROA not before: Mon 02 Jan 2023 03:45:22 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61433
IP address blocks: 93.171.164.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:95:7a:01:c0:fa:a2:fb:b2:3a:ee:ca:c5:f4:c4:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 2 03:45:22 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e47e088acdd571d7089dfbbc2dbe7b1ba7556c36
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:0a:c2:1e:09:63:c1:74:06:39:f8:f4:92:93:
e7:38:ee:ab:84:21:bd:f1:99:0e:72:a4:2a:41:de:
43:c4:35:b7:8d:71:9a:12:d9:66:16:37:29:89:88:
ee:79:77:96:d8:c7:f9:d5:57:48:63:95:87:a2:2b:
71:70:05:ac:f1:67:dd:af:a8:df:78:93:6a:cd:cd:
6e:45:14:49:c9:57:0c:74:8b:96:19:0d:4d:70:ad:
5a:bf:a8:96:52:01:79:74:39:7a:cb:6b:20:74:d9:
03:7f:1d:17:4d:b5:db:da:61:62:e9:ab:88:56:bb:
7b:60:33:0d:e7:13:a0:ab:80:4b:d3:e9:ed:ca:09:
cd:41:0a:7c:48:fd:0b:80:ff:f9:e4:2f:63:f5:de:
99:a5:3a:98:f1:00:e0:b7:e2:4f:d7:df:4c:2e:d8:
e7:fa:8e:97:1c:7d:10:19:b9:cf:00:3f:30:85:4c:
b8:6e:4a:97:54:dd:7d:f5:87:f8:8b:c3:6e:14:65:
05:32:32:d1:07:b7:a8:fd:dd:05:b9:a1:d0:f5:b6:
1a:60:b6:40:35:6a:19:29:09:d8:a9:f0:51:47:2e:
22:89:42:0c:24:4b:56:0d:69:9f:6d:7d:1e:c4:b1:
02:e5:8d:ba:7a:eb:ef:f2:d9:9a:ed:d4:08:5d:cd:
2b:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:7E:08:8A:CD:D5:71:D7:08:9D:FB:BC:2D:BE:7B:1B:A7:55:6C:36
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/5H4Iis3VcdcInfu8Lb57G6dVbDY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.171.164.0/23
Signature Algorithm: sha256WithRSAEncryption
b2:00:aa:20:0e:d2:e4:08:3b:4b:f1:e6:38:66:39:8e:18:4c:
78:59:5d:50:a1:1e:c2:df:c5:0c:cd:e7:04:5d:05:01:ab:ff:
91:2f:68:be:cf:3b:a1:83:3b:46:d2:3a:ca:28:c6:20:6c:2d:
d1:47:6d:cf:78:c0:fa:a5:7d:ef:c7:04:53:32:41:87:d5:3b:
a5:fe:25:5e:64:92:1b:81:a4:28:98:72:62:66:ff:f3:c4:8c:
83:3e:d3:4e:4a:a7:94:e6:fb:89:ef:46:d3:73:8b:7c:82:49:
a5:5c:5c:24:7d:bd:c8:e0:65:62:50:eb:92:a1:5d:07:bb:52:
79:da:ab:14:2f:a0:9b:e9:e6:5f:46:f2:76:a1:f8:06:44:64:
22:16:8a:39:3a:7d:d8:60:86:2f:bd:a9:ac:93:de:20:80:7d:
44:41:d5:33:88:71:db:74:ac:15:a0:d9:23:d4:5b:19:ea:4f:
37:5b:15:3e:44:55:ae:79:bc:77:7c:c1:a4:4b:cd:0c:35:7b:
d2:c6:00:a5:3f:f9:0b:00:d0:27:35:97:a1:0c:f0:2b:4a:a0:
76:65:94:08:3a:2c:bb:e1:b7:65:95:ad:d4:2f:6b:78:fe:a4:
fb:b4:b2:d4:f2:0c:7a:5a:9a:89:a7:9a:4d:b7:96:bf:0a:36:
b4:3c:9a:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 23:48:41 2025 by rpki-client