Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/7WgszSRDibLe1ui-5zFCA0-5zU4.roa
File: 7WgszSRDibLe1ui-5zFCA0-5zU4.roa (raw, json)
Hash identifier: XepZEa9ZGzW7kH0VfDwdnMa81+ZzPounVccvPMMoXC4=
Subject key identifier: ED:68:2C:CD:24:43:89:B2:DE:D6:E8:BE:E7:31:42:03:4F:B9:CD:4E
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 28473AF0
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/7WgszSRDibLe1ui-5zFCA0-5zU4.roa
Signing time: Sat 01 Jan 2022 16:10:00 +0000
ROA not before: Sat 01 Jan 2022 16:10:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208796
IP address blocks: 93.171.136.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 675756784 (0x28473af0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 1 16:10:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ed682ccd244389b2ded6e8bee73142034fb9cd4e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:db:43:9a:95:6d:dd:5d:af:b8:7a:6e:7d:f0:
ec:d2:e7:35:57:21:36:a7:8e:5a:8a:7e:7d:31:11:
77:2f:3b:a2:77:22:29:06:47:c2:0d:d4:b7:23:96:
42:14:2e:87:c5:e4:32:9d:7e:a8:17:33:cf:3c:48:
af:19:d8:4e:ba:49:56:36:fc:7d:21:7d:ad:70:e3:
00:16:ba:83:4b:aa:a8:78:09:d4:db:5e:67:0b:76:
2c:a2:dc:d0:87:6f:e3:2f:5f:e0:93:35:cd:34:50:
76:4d:c5:38:8e:53:4c:11:3a:59:cb:52:9a:de:38:
ad:07:3c:60:ab:6e:45:c4:ab:9a:6d:5e:7b:2d:f0:
86:8e:fa:3b:a8:53:8f:c4:2a:54:3d:4f:aa:a3:f5:
dd:df:39:04:e6:3e:04:8b:6c:a4:81:2d:8b:aa:3b:
88:5d:92:6f:3a:ba:cf:a3:ea:30:39:2e:8f:e6:26:
86:32:3f:f9:4e:1a:78:2f:9c:d3:5e:94:d6:4a:d5:
a6:37:da:fe:06:1b:a3:63:f1:d2:b4:43:43:85:79:
f9:35:d4:3d:cd:1f:99:14:39:ff:31:c9:5c:07:93:
10:f2:7f:f9:34:60:ac:84:5f:04:d5:cd:d4:39:56:
56:50:50:d0:2b:c5:83:45:94:69:36:5a:da:18:5a:
76:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:68:2C:CD:24:43:89:B2:DE:D6:E8:BE:E7:31:42:03:4F:B9:CD:4E
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/7WgszSRDibLe1ui-5zFCA0-5zU4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.171.136.0/24
Signature Algorithm: sha256WithRSAEncryption
79:ba:a3:9b:bb:75:68:da:4b:76:b5:cf:7b:9d:b2:3d:67:a3:
7b:cc:51:8f:97:36:bc:51:24:f6:e9:d2:36:e7:17:0c:53:90:
df:10:5e:3d:63:6c:8a:e1:d2:cc:65:cc:b0:bc:94:45:de:38:
d2:67:37:3c:26:72:20:67:9a:51:19:4b:cc:40:b8:eb:5a:46:
51:cc:c2:5d:54:bf:db:7f:c9:42:3d:01:65:14:53:9e:37:d4:
21:66:b9:cf:d0:5c:08:4d:8e:c8:95:2f:e4:c4:99:05:08:54:
59:b9:db:6d:05:9d:59:a6:81:45:9d:c6:e7:35:63:74:92:40:
8b:9d:31:8c:77:23:9e:5e:6f:14:62:92:5b:5e:b0:bc:22:95:
60:cb:35:88:b4:2b:c2:34:f2:15:3d:9d:5b:c3:4d:a2:34:c1:
bd:09:fa:7c:64:26:dd:2a:e4:a8:ae:0c:74:61:b1:6d:ff:72:
d4:a3:1b:7f:98:a3:26:fd:bd:e9:4c:45:3d:22:81:8c:e6:18:
79:59:a3:44:c1:df:53:67:aa:84:aa:4e:56:5c:a7:19:ba:b7:
a0:5f:78:9d:59:00:d2:1b:05:19:3f:3c:d6:b4:eb:f6:81:80:
04:97:52:9e:b7:4b:02:92:2a:25:6c:10:18:14:4f:f0:a6:49:
39:cb:c3:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 00:12:54 2025 by rpki-client