Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/F6aP4d5HxbCtz2qp0k2FECvNNf0.roa
File: F6aP4d5HxbCtz2qp0k2FECvNNf0.roa (raw, json)
Hash identifier: Kesp3zoMmqdR/9N5kohc8zV/sy+wlVNM7LMoNxIv26E=
Subject key identifier: 17:A6:8F:E1:DE:47:C5:B0:AD:CF:6A:A9:D2:4D:85:10:2B:CD:35:FD
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 281033D3
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/F6aP4d5HxbCtz2qp0k2FECvNNf0.roa
Signing time: Sat 01 Jan 2022 16:09:31 +0000
ROA not before: Sat 01 Jan 2022 16:09:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62309
IP address blocks: 93.170.191.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 672150483 (0x281033d3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 1 16:09:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=17a68fe1de47c5b0adcf6aa9d24d85102bcd35fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:39:a0:22:a1:95:55:73:b3:cf:eb:a4:45:a4:
ab:7a:d6:34:11:df:89:c6:0a:3d:e4:86:7b:4b:35:
70:6a:dd:87:87:2f:87:3e:86:6d:1d:e2:5f:34:fb:
a9:65:5f:2d:45:8a:08:ee:9d:56:f1:d0:f9:9d:d7:
0e:b1:e8:b5:a5:3d:b5:17:d6:f3:61:a7:a5:7b:87:
8d:7a:68:2e:09:a3:7b:71:1c:07:d3:33:34:d9:18:
f3:c3:f1:96:ad:c3:5d:52:22:1d:a0:21:f8:02:80:
c5:bb:d8:e3:1e:76:0d:72:ee:04:2d:b2:4e:c5:ad:
79:40:6b:06:f5:f7:c0:5c:2e:f3:e0:8f:23:e4:b6:
a3:c0:42:1c:bf:16:4d:72:f6:97:89:53:e5:2d:e1:
d2:83:fd:02:11:67:a0:c7:ef:aa:69:a2:f5:f3:1b:
9d:ea:03:2f:0f:71:5e:07:b1:18:6f:90:49:6e:86:
fa:be:e8:9a:8a:90:10:94:c8:a0:ab:28:d9:77:8b:
0d:6f:60:31:24:3c:c8:ae:75:dd:96:9c:aa:2a:57:
d8:25:4d:77:91:5f:f2:31:e3:9f:7a:16:48:38:fc:
b4:37:35:d7:13:29:d7:b7:4d:6e:a4:08:08:51:43:
49:68:b7:91:29:3e:c1:b9:ef:a9:d7:11:bd:c5:a4:
2a:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:A6:8F:E1:DE:47:C5:B0:AD:CF:6A:A9:D2:4D:85:10:2B:CD:35:FD
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/F6aP4d5HxbCtz2qp0k2FECvNNf0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.170.191.0/24
Signature Algorithm: sha256WithRSAEncryption
a5:06:49:f9:34:9a:2a:98:df:71:63:f4:73:13:4e:ed:26:67:
6f:ed:c2:9f:e5:c1:12:c8:c1:1a:b9:94:c2:f0:be:f0:4d:e7:
39:69:06:22:6a:be:2a:b2:c1:f7:6f:6e:3b:b5:d0:e4:7c:f0:
6f:2c:51:70:98:27:b7:b4:2e:20:1e:73:19:17:c5:76:56:9f:
44:09:f4:b1:c3:a9:fc:1d:d8:66:42:d4:61:5f:ad:5d:8f:ab:
4c:48:28:1e:2d:fc:0d:ea:ba:c9:82:f1:86:b3:bb:25:3f:9f:
6b:fa:02:d2:d9:ef:b9:e2:a7:f0:ff:b4:b1:c5:10:f5:a8:55:
c0:66:fc:5c:fd:0c:6d:38:c5:3f:cf:52:ad:bf:09:82:6a:92:
99:19:c3:cd:c2:15:c0:01:6a:4e:dd:9e:89:fd:b3:5a:97:ff:
70:a5:9f:ec:1f:3f:08:d9:99:0e:b0:d3:59:b4:17:ba:93:3c:
71:65:8c:4b:4b:53:8f:fe:ab:58:eb:07:82:96:b3:11:10:f9:
95:56:e9:41:57:1c:79:0e:14:33:14:b6:f3:6c:6f:b3:a2:27:
ba:a6:ca:85:b9:28:82:f3:65:0e:66:f8:bb:66:54:60:42:79:
bd:73:60:9d:65:1d:a6:b0:68:c4:65:bc:64:31:76:63:c9:c2:
a9:f6:b6:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 23:39:02 2025 by rpki-client