Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/B-D0PAFSnzd2bWKkAi17Gw0_vfE.roa
File: B-D0PAFSnzd2bWKkAi17Gw0_vfE.roa (raw, json)
Hash identifier: I/B5HzeZ1ICuqdB1KPTp/Fbu3W162hcy+m9gYVfcryg=
Subject key identifier: 07:E0:F4:3C:01:52:9F:37:76:6D:62:A4:02:2D:7B:1B:0D:3F:BD:F1
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 0194258F8C5961A242C8504B89FD32AEAB76
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/B-D0PAFSnzd2bWKkAi17Gw0_vfE.roa
Signing time: Thu 02 Jan 2025 05:49:12 +0000
ROA not before: Thu 02 Jan 2025 05:49:12 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 16227
IP address blocks: 93.171.244.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8f:8c:59:61:a2:42:c8:50:4b:89:fd:32:ae:ab:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 2 05:49:12 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=07e0f43c01529f37766d62a4022d7b1b0d3fbdf1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:15:7a:02:67:f0:1b:aa:aa:e7:68:39:37:5a:
60:0a:b8:f8:e5:30:2f:60:dd:fb:e1:1c:60:33:af:
e2:4a:61:57:f0:de:80:78:da:84:d6:39:41:17:24:
1e:88:18:a9:53:02:74:3e:69:d3:e8:18:44:4d:8e:
de:ad:0f:90:9e:2f:55:cd:9f:c3:d8:c4:21:a5:a3:
03:1c:5d:93:ab:fe:77:9d:7e:88:76:66:8f:38:4b:
4e:3e:ac:8a:aa:aa:bd:0a:43:2c:5c:ca:17:5b:7c:
d7:73:fa:27:dc:98:30:4a:57:e2:ff:c5:77:09:ed:
95:e2:18:3c:7b:75:b4:f0:fb:7b:a7:fe:c7:24:81:
89:98:27:e5:a2:70:0b:a5:95:6f:40:de:93:27:e7:
02:40:c2:8f:6d:65:19:22:0b:c7:da:22:fe:1f:63:
86:18:4a:35:a8:86:f5:1b:d5:dd:34:bd:e5:a7:ef:
e1:9d:a8:19:b6:2c:b6:66:eb:94:b3:20:66:57:24:
4e:cd:a6:f7:95:98:59:c9:e6:d8:bb:92:5b:2a:6b:
4d:8f:2b:07:c5:ee:af:4b:85:b0:aa:d4:fd:d8:4a:
67:75:37:d8:5d:cc:9f:cb:7f:cc:93:82:1e:e2:30:
e2:27:c0:cf:8e:e7:51:9c:60:c3:26:75:be:3d:10:
95:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:E0:F4:3C:01:52:9F:37:76:6D:62:A4:02:2D:7B:1B:0D:3F:BD:F1
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/B-D0PAFSnzd2bWKkAi17Gw0_vfE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.171.244.0/24
Signature Algorithm: sha256WithRSAEncryption
4f:92:08:eb:0c:bb:3b:3f:14:c8:bf:a7:d7:7b:bc:06:12:51:
30:92:ee:84:73:b5:92:65:48:58:58:e2:67:22:9c:f1:d9:67:
3f:f7:ad:e5:8b:2b:c3:1f:49:bb:00:f4:a4:72:be:1f:71:47:
4d:15:c3:f0:db:db:bb:dc:94:9e:ee:2d:09:2c:30:99:af:ec:
43:ad:fa:43:d0:89:25:cf:74:56:8c:3f:89:c0:3d:54:e7:2d:
fc:c2:b2:9d:b8:b9:6d:3d:ae:e4:89:a3:e2:fc:47:45:90:e0:
7a:47:05:e2:cb:da:4f:d5:ed:b0:fe:81:82:0c:30:7e:76:c2:
a3:8a:7e:94:86:6c:fe:d6:ef:60:1a:91:11:0f:7a:f3:4e:a5:
c6:53:87:64:36:da:0b:51:bd:55:45:ab:32:20:44:25:d9:56:
47:3c:dc:31:6e:91:e7:09:51:2b:34:8c:12:75:2d:dc:98:df:
be:95:7a:f0:9e:40:bc:26:9a:45:d7:6b:a4:7c:67:15:8f:68:
f6:a9:49:20:8a:3d:46:6e:8a:df:26:c0:3e:79:77:6b:50:5b:
cc:13:f9:f9:49:62:f8:d9:d5:6b:4b:18:4a:f8:33:36:71:ac:
2e:42:01:52:07:e4:ed:88:d0:d4:cd:66:3c:31:8d:7f:42:fb:
21:79:86:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Feb 21 11:24:05 2025 by rpki-client