Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/Pn6Y0-r7OPBZsMPDuXh99xzeYRY.roa
File: Pn6Y0-r7OPBZsMPDuXh99xzeYRY.roa (raw, json)
Hash identifier: PEA0LdhJrld4UPVnMWNN+gel7n6Gl5DzTG6Ix7pNXVM=
Subject key identifier: 3E:7E:98:D3:EA:FB:38:F0:59:B0:C3:C3:B9:78:7D:F7:1C:DE:61:16
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 018570958EF09C8EA98B585195A86C69FB5A
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/Pn6Y0-r7OPBZsMPDuXh99xzeYRY.roa
Signing time: Mon 02 Jan 2023 03:45:27 +0000
ROA not before: Mon 02 Jan 2023 03:45:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201041
IP address blocks: 93.171.163.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:95:8e:f0:9c:8e:a9:8b:58:51:95:a8:6c:69:fb:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 2 03:45:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3e7e98d3eafb38f059b0c3c3b9787df71cde6116
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:64:77:26:1e:b4:4a:ba:03:e3:76:fc:ab:40:
7a:9d:61:09:08:a7:08:1f:7c:f2:90:b7:04:8c:9e:
74:42:5e:60:e1:14:53:9a:48:09:e4:5f:7a:04:2a:
8e:10:6a:c5:cf:f2:9c:94:fc:2c:49:01:b3:52:64:
5d:5d:28:ff:99:f8:a8:7d:77:5d:d8:95:5d:83:b5:
be:ce:ce:c0:cf:28:a6:e5:08:3a:e3:21:25:52:f1:
56:90:5e:27:4e:f0:15:cb:d5:79:9b:7d:7b:a0:e1:
e6:86:06:81:6e:a9:80:b0:c6:f9:59:e0:5f:7c:4b:
73:14:46:37:9a:98:7d:b6:4e:3a:3d:b7:03:aa:98:
70:39:95:75:d6:3c:6c:80:6c:3b:22:46:b3:a1:0e:
b3:ff:35:55:c4:79:de:80:49:cc:92:4d:4c:05:33:
fd:5f:50:6c:33:29:f4:59:81:db:85:68:33:46:ba:
4c:f1:a3:f6:75:86:d4:40:60:0a:ad:41:47:ee:6a:
cd:dc:e0:75:3c:f1:f8:31:62:79:1c:87:28:8c:f1:
00:78:62:11:f7:04:3c:c3:53:38:10:58:0c:86:c1:
60:28:a8:5e:56:04:5c:fa:02:98:d9:59:e0:11:8b:
ad:c8:10:cb:c8:09:42:e5:34:a9:ec:e8:d7:b3:09:
d5:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:7E:98:D3:EA:FB:38:F0:59:B0:C3:C3:B9:78:7D:F7:1C:DE:61:16
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/Pn6Y0-r7OPBZsMPDuXh99xzeYRY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.171.163.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:b8:f1:aa:8b:74:55:d9:0a:b4:91:59:61:0d:c1:34:49:70:
13:50:b1:76:e4:d7:35:30:f7:61:4f:40:91:db:bb:b7:0b:5d:
77:c8:b0:3a:57:21:31:4f:fc:77:dd:5e:c2:20:4c:08:47:1e:
7f:7f:98:e8:8a:fd:67:9e:0f:6f:2c:e9:c1:8f:4c:cc:d2:91:
48:5c:b5:85:6e:61:57:d4:c3:ae:5d:12:c5:0e:9a:df:fb:a0:
2c:06:d1:c9:69:b3:32:1f:3d:3a:39:cf:0a:d0:2d:c5:7a:9a:
b9:53:9d:5d:12:e4:cc:75:a9:5b:8c:b7:20:5e:4f:26:95:2e:
15:fe:58:de:a0:2b:d3:13:ec:cb:f6:2e:22:4e:55:9f:bc:35:
03:10:dd:dc:bd:2f:3a:fc:92:8f:7a:75:24:f9:a2:a7:6b:21:
97:8a:bd:15:0e:1c:ce:a0:93:09:ba:0f:33:17:a7:2b:fe:03:
6f:52:73:b6:8b:8b:4f:53:4c:f8:ec:4c:bf:94:ca:69:1b:aa:
ae:dd:b0:9c:a0:5f:00:92:88:ac:65:a2:5c:14:4b:33:18:5e:
4f:12:b4:87:d5:8b:47:24:d1:b5:50:5d:0f:48:74:f5:21:83:
cd:06:5b:42:53:08:0c:44:37:bb:37:39:ca:2c:26:33:1d:78:
64:65:9b:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 00:10:37 2025 by rpki-client