Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/KiZEmWB-jMemKwRZJv-Rf1t1wN4.roa
File: KiZEmWB-jMemKwRZJv-Rf1t1wN4.roa (raw, json)
Hash identifier: GGY2iL9t2I7bxiT2HVUIGMt64rXowi2F7yqHcVhdo0M=
Subject key identifier: 2A:26:44:99:60:7E:8C:C7:A6:2B:04:59:26:FF:91:7F:5B:75:C0:DE
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 0185F3777261197DC43833B6B294DA621C57
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/KiZEmWB-jMemKwRZJv-Rf1t1wN4.roa
Signing time: Fri 27 Jan 2023 13:42:49 +0000
ROA not before: Fri 27 Jan 2023 13:42:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 41798
IP address blocks: 93.170.212.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:f3:77:72:61:19:7d:c4:38:33:b6:b2:94:da:62:1c:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 27 13:42:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2a264499607e8cc7a62b045926ff917f5b75c0de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:52:ca:fa:0e:03:6f:75:f6:a4:4f:84:b3:71:
93:9a:74:e0:84:2e:7d:cb:cb:1b:6b:c2:0d:99:27:
79:72:ff:d3:24:19:ac:6f:58:17:f0:1a:e4:c1:b3:
05:2a:63:8d:e0:cf:ff:28:85:53:09:11:57:cd:fc:
56:d5:c7:f8:a7:cc:c3:b6:c4:b3:85:71:5d:8f:14:
69:08:37:fd:3c:bf:d3:30:c4:16:d9:4a:3e:5e:a4:
13:9a:60:7d:35:b3:07:47:52:54:28:9b:ba:c2:91:
f5:41:f4:b7:30:54:32:0c:5d:a0:6f:33:89:10:66:
d3:1d:fd:44:71:05:74:aa:fb:a2:e2:10:ac:aa:f2:
2c:dd:f3:f3:34:b4:6a:a2:89:ec:88:f9:b0:a2:1c:
16:59:8d:92:a1:93:43:e4:21:cf:01:a4:f5:37:bd:
52:ac:f6:5c:69:58:a9:04:7a:79:2a:00:ea:c3:57:
c1:37:5b:7a:f2:68:de:d7:99:df:a6:57:ff:34:38:
ec:ce:51:7d:b9:64:4e:7c:c6:c6:45:84:ea:af:a9:
0d:ac:68:31:01:bc:6f:97:c3:99:79:46:bd:d4:b5:
67:85:c7:a2:9e:4c:b2:24:4d:79:6c:bc:d7:33:bc:
a7:a2:ec:18:3d:be:2d:8e:a0:ed:15:bc:f4:3a:60:
c6:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:26:44:99:60:7E:8C:C7:A6:2B:04:59:26:FF:91:7F:5B:75:C0:DE
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/KiZEmWB-jMemKwRZJv-Rf1t1wN4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.170.212.0/22
Signature Algorithm: sha256WithRSAEncryption
ae:cc:97:6f:89:c1:c9:f1:60:85:d5:b8:cb:41:18:d9:23:eb:
ba:be:9c:d8:7e:75:55:40:e9:91:a9:3e:d0:af:d9:cc:2b:ed:
90:0e:4a:a1:48:c8:52:4d:9d:d1:e9:bd:2f:f9:d8:47:d7:8e:
02:5f:d9:57:67:9e:57:c0:bd:3e:b8:72:ae:70:f3:39:c6:84:
f8:99:f3:05:ea:3c:d8:89:fc:87:c5:39:ff:aa:52:03:e3:a6:
bc:8b:6f:ae:31:83:c1:9b:0a:ca:76:12:a5:e4:5a:2f:2e:62:
25:89:e0:0a:c4:a5:f0:5e:c6:c8:6f:19:4d:25:bf:3d:ba:9d:
57:65:fb:c7:5f:4f:ab:3f:de:66:96:9c:d3:a9:c5:f8:de:bc:
22:60:1f:89:4b:d8:59:73:b8:0f:4d:27:ec:44:a4:63:a4:e2:
d0:26:88:71:79:3e:26:f5:70:66:af:57:c4:53:00:95:dd:fc:
45:af:76:f8:16:a8:ed:f3:98:5b:0c:5d:30:9a:ca:2d:05:ad:
a6:8a:7f:af:a1:12:91:09:be:5f:7b:e9:b2:08:15:eb:b3:ff:
86:22:7d:92:2e:76:cd:83:8e:2f:62:51:26:fc:4d:36:a9:ce:
65:a3:b8:a7:6c:12:b6:8b:eb:41:b8:1d:21:3d:50:8d:cd:c7:
a9:1e:85:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 23:56:09 2025 by rpki-client