Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/G4DFH25HGspsDKkUBVgcm39P3qw.roa
File: G4DFH25HGspsDKkUBVgcm39P3qw.roa (raw, json)
Hash identifier: ULsyxhmV/04KFhLkAqs3dG7+ne05GeH7x7eVCDPahFI=
Subject key identifier: 1B:80:C5:1F:6E:47:1A:CA:6C:0C:A9:14:05:58:1C:9B:7F:4F:DE:AC
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 283F1E60
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/G4DFH25HGspsDKkUBVgcm39P3qw.roa
Signing time: Sat 01 Jan 2022 16:09:56 +0000
ROA not before: Sat 01 Jan 2022 16:09:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207676
IP address blocks: 92.253.218.0/23 maxlen: 24
92.253.235.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 675225184 (0x283f1e60)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 1 16:09:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1b80c51f6e471aca6c0ca91405581c9b7f4fdeac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:5c:05:f4:30:2b:48:1b:c2:ad:df:94:6a:1b:
b2:cf:a0:e6:a6:78:8c:d4:44:08:6d:95:76:c4:d6:
82:3c:9e:77:96:8f:87:4d:e9:18:19:55:98:52:66:
e1:66:c5:3f:2d:12:93:7d:38:e5:4b:77:bc:c7:5c:
25:37:2f:9f:9d:37:5f:a2:f2:4d:95:06:c9:4e:87:
79:e0:3f:4e:41:2c:e2:17:b0:11:54:40:30:d8:02:
9c:f9:b3:b0:71:d9:47:4b:82:f4:18:25:e8:0e:62:
3b:fb:ad:d3:aa:5d:17:b8:0f:6d:e2:0c:5d:a7:8c:
60:e2:a1:3f:22:df:9a:b8:3f:78:da:79:fa:44:7e:
5a:a4:bf:c0:32:63:c7:78:f2:0d:46:ea:29:82:13:
b4:67:8a:c2:1a:27:43:32:ee:d7:a4:3a:b0:58:08:
b8:42:d3:c7:db:c4:d1:db:a9:d7:5c:00:5e:88:8e:
34:ca:ff:df:39:c2:5d:8e:22:b3:97:f1:ea:ad:86:
ac:f5:82:ea:ec:90:d7:13:0d:a5:27:63:d1:c7:dd:
a3:5b:86:0c:fe:a5:f0:bf:cd:22:2f:9e:ee:56:a0:
ca:92:7e:28:aa:5c:51:fb:c5:9a:dc:81:a6:a1:ed:
db:d4:9b:2f:b5:eb:53:ef:75:1a:2d:57:9d:28:e0:
83:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:80:C5:1F:6E:47:1A:CA:6C:0C:A9:14:05:58:1C:9B:7F:4F:DE:AC
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/G4DFH25HGspsDKkUBVgcm39P3qw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.253.218.0/23
92.253.235.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:70:39:2e:5a:6e:ae:3e:68:b7:68:91:e4:78:8f:cf:66:e4:
bc:d5:5b:18:95:4a:8f:25:0a:89:b1:d5:bf:fb:38:c9:1d:dd:
59:5b:1b:d1:3d:79:aa:1b:5d:83:10:7e:f1:6c:75:d3:d3:25:
c6:ca:1a:de:98:07:a9:1e:1e:c8:38:34:d7:cb:f5:53:fe:04:
8c:a4:85:ce:c5:0d:54:34:49:40:76:aa:97:57:cf:ec:4d:ff:
e5:08:70:84:c9:62:fa:7d:da:39:e6:5f:b9:c5:de:dc:f6:f3:
9e:2a:15:40:71:fd:ff:8f:6e:78:9e:a6:15:45:36:03:ca:e0:
09:04:05:9b:5b:d9:29:be:eb:4f:e9:08:0a:8a:9b:e0:70:a2:
5c:7c:3b:3e:94:8f:61:28:e1:81:2b:eb:e2:c9:62:22:12:d4:
68:65:e7:05:c3:e3:79:6b:1c:48:1e:31:c9:f1:6d:3c:27:b5:
c9:90:34:e1:13:e0:a4:b7:9f:f5:87:66:d3:21:9f:2e:16:5b:
da:bc:95:c7:46:46:29:6c:16:3a:a7:02:40:b1:3a:e5:f2:fa:
f1:79:32:08:fb:f0:d2:c8:27:a3:b3:66:53:a5:57:05:04:1a:
62:eb:1f:e6:62:61:b6:54:58:2e:2a:24:0e:39:92:f5:21:62:
d0:b6:f3:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 23:27:14 2025 by rpki-client