Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/ApAicT1qK_tYK_x85n-R2E9s1AI.roa
File: ApAicT1qK_tYK_x85n-R2E9s1AI.roa (raw, json)
Hash identifier: SGBuHwGNJtyKn0CL+bguavU2ndOxxQ+Pxp8liOinh80=
Subject key identifier: 02:90:22:71:3D:6A:2B:FB:58:2B:FC:7C:E6:7F:91:D8:4F:6C:D4:02
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 275956D6
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/ApAicT1qK_tYK_x85n-R2E9s1AI.roa
Signing time: Sat 01 Jan 2022 16:07:48 +0000
ROA not before: Sat 01 Jan 2022 16:07:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8854
IP address blocks: 92.38.48.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 660166358 (0x275956d6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 1 16:07:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=029022713d6a2bfb582bfc7ce67f91d84f6cd402
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:de:0b:bd:1b:af:4b:83:3c:7a:a9:81:c8:51:
aa:1e:38:38:ad:bd:fe:82:5b:97:7e:57:f1:be:95:
15:1f:f3:3d:68:f3:4f:5a:3a:37:fb:46:c7:28:98:
8b:1c:24:40:88:18:f1:68:11:3f:7c:c0:80:af:2e:
18:0e:f6:c7:ca:06:0d:55:a4:ce:4d:26:9a:14:cb:
c2:6d:46:c5:82:5f:e8:a2:7a:97:09:d1:f2:8f:7c:
aa:87:0a:88:50:1c:8f:1d:5c:c5:bf:87:1a:b7:92:
c5:c2:f5:5f:41:ca:28:d1:36:ee:d3:15:dc:84:7b:
d1:3e:88:49:c1:1a:83:00:80:4e:c7:75:60:38:aa:
93:78:f4:68:49:3e:f6:65:4e:d1:94:78:f3:3c:93:
83:66:9c:5e:91:b6:a0:d0:33:11:0b:23:3d:6c:e4:
2c:e6:c2:7c:fa:9c:0d:ed:3d:2e:eb:b4:4f:97:27:
49:1d:84:64:98:65:03:08:3e:63:86:70:7c:83:e9:
b0:25:34:be:f2:d1:81:0a:5a:2e:46:5a:14:26:f9:
45:75:3a:b1:ac:8c:67:51:49:26:79:12:02:aa:f3:
f7:69:38:bd:a7:0c:a6:f4:0c:cd:94:54:46:2f:af:
66:51:b1:21:26:ec:53:64:cb:6e:38:be:f0:40:7d:
8c:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:90:22:71:3D:6A:2B:FB:58:2B:FC:7C:E6:7F:91:D8:4F:6C:D4:02
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/ApAicT1qK_tYK_x85n-R2E9s1AI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.38.48.0/24
Signature Algorithm: sha256WithRSAEncryption
ae:e7:7c:07:0c:31:21:24:71:41:ed:92:a9:b1:d7:0c:49:63:
ee:50:96:ef:49:69:e4:18:86:a5:0c:8f:c2:b0:68:27:6b:5b:
45:cb:cb:05:a8:18:ef:49:6d:3b:e8:2a:0a:4b:ec:23:04:e0:
bb:0a:af:71:25:af:d3:dc:94:1c:7b:50:0a:6d:b6:ed:e1:17:
3c:19:bc:4c:11:8d:46:a0:b7:0a:39:9a:a6:c6:22:11:51:37:
c6:8f:82:b0:78:0a:da:79:24:94:5c:8f:c2:42:50:68:74:e0:
9a:f9:88:15:5b:3d:77:1e:8e:c6:35:cd:92:3a:17:93:ba:83:
58:d1:b9:4a:ad:80:05:e1:ac:dd:a5:11:59:ad:16:5f:9f:e4:
42:c1:6f:e3:78:64:20:da:ae:b0:63:7b:8f:35:de:d4:22:a1:
db:57:e5:ec:86:30:9a:1f:11:d8:bf:51:18:3b:e8:28:06:e6:
81:ca:8d:46:37:b7:70:34:33:50:0a:82:36:b4:58:9f:c3:e1:
be:7b:ac:c7:0c:bb:d4:a5:ef:26:4e:03:b7:96:41:28:b0:13:
09:05:63:e0:4b:dc:56:02:70:f0:28:1e:bb:51:30:34:11:fa:
91:8f:39:ba:de:c9:1d:31:3f:29:40:b2:63:06:4b:3a:25:4b:
3a:1d:58:d1
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEJ1lW1jANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
NDkxMjJjMzU0MzhhNGViMjYyMzNmZGM2ZTRiYjFkZjJkYWFlZjQyMB4XDTIyMDEw
MTE2MDc0OFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMDI5MDIyNzEzZDZh
MmJmYjU4MmJmYzdjZTY3ZjkxZDg0ZjZjZDQwMjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAOjeC70br0uDPHqpgchRqh44OK29/oJbl35X8b6VFR/zPWjz
T1o6N/tGxyiYixwkQIgY8WgRP3zAgK8uGA72x8oGDVWkzk0mmhTLwm1GxYJf6KJ6
lwnR8o98qocKiFAcjx1cxb+HGreSxcL1X0HKKNE27tMV3IR70T6IScEagwCATsd1
YDiqk3j0aEk+9mVO0ZR48zyTg2acXpG2oNAzEQsjPWzkLObCfPqcDe09Luu0T5cn
SR2EZJhlAwg+Y4ZwfIPpsCU0vvLRgQpaLkZaFCb5RXU6sayMZ1FJJnkSAqrz92k4
vacMpvQMzZRURi+vZlGxISbsU2TLbji+8EB9jKUCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQCkCJxPWor+1gr/Hzmf5HYT2zUAjAfBgNVHSMEGDAWgBR0kSLDVDik6yYj
P9xuS7HfLarvQjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2RKRWl3MVE0cE9zbUl6X2Nia3V4M3kycTcwSS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNTgvMThhOTFjLTBlNzctNDVjOS04Y2M0LTA2MmM2OTMzYWJlZC8x
L0FwQWljVDFxS190WUtfeDg1bi1SMkU5czFBSS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTgv
MThhOTFjLTBlNzctNDVjOS04Y2M0LTA2MmM2OTMzYWJlZC8xL2RKRWl3MVE0cE9z
bUl6X2Nia3V4M3kycTcwSS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFwmMDANBgkqhkiG9w0BAQsFAAOC
AQEArud8BwwxISRxQe2SqbHXDElj7lCW70lp5BiGpQyPwrBoJ2tbRcvLBagY70lt
O+gqCkvsIwTguwqvcSWv09yUHHtQCm227eEXPBm8TBGNRqC3CjmapsYiEVE3xo+C
sHgK2nkklFyPwkJQaHTgmvmIFVs9dx6OxjXNkjoXk7qDWNG5Sq2ABeGs3aURWa0W
X5/kQsFv43hkINqusGN7jzXe1CKh21fl7IYwmh8R2L9RGDvoKAbmgcqNRje3cDQz
UAqCNrRYn8Phvnusxwy71KXvJk4Dt5ZBKLATCQVj4EvcVgJw8Cgeu1EwNBH6kY85
ut7JHTE/KUCyYwZLOiVLOh1Y0Q==
-----END CERTIFICATE-----
Generated at Mon Apr 7 23:27:11 2025 by rpki-client