Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/T8X5qZ-xJG5p32Z7ltUBvwvkF_E.roa
File: T8X5qZ-xJG5p32Z7ltUBvwvkF_E.roa (raw, json)
Hash identifier: YYKok+mBTvJDI8eukJoLw7XHQLPzL3PcaXuA2EVBBcY=
Subject key identifier: 4F:C5:F9:A9:9F:B1:24:6E:69:DF:66:7B:96:D5:01:BF:0B:E4:17:F1
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 01879E4D59C658E880D0A8FF303F0B392C19
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/T8X5qZ-xJG5p32Z7ltUBvwvkF_E.roa
Signing time: Thu 20 Apr 2023 10:54:42 +0000
ROA not before: Thu 20 Apr 2023 10:54:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198803
IP address blocks: 92.38.28.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:9e:4d:59:c6:58:e8:80:d0:a8:ff:30:3f:0b:39:2c:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Apr 20 10:54:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4fc5f9a99fb1246e69df667b96d501bf0be417f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:e4:9b:2a:ec:73:9a:8e:b8:5b:56:15:3d:e2:
82:3c:77:c6:d3:c2:9c:c6:67:e7:1e:99:d4:1b:91:
7f:42:3e:d1:9e:31:3e:95:31:16:3c:0c:7b:a6:90:
65:e5:27:b3:5c:a1:dd:70:d3:6f:a2:e7:b8:4d:65:
63:e0:81:2f:41:28:b1:24:3b:77:6d:3e:cf:69:15:
ec:62:13:4b:90:8d:9a:1e:6f:c1:5f:c8:e9:9e:a8:
26:dd:93:5e:28:9b:ac:68:0a:31:14:05:55:5c:75:
12:68:07:74:6d:3d:f4:6f:74:f3:36:f0:cf:af:32:
e4:bf:1e:d3:48:05:0c:b4:40:4e:a2:b0:71:30:25:
e8:15:05:e1:f1:0b:db:3e:43:5b:02:5d:cd:39:3a:
e6:fe:fe:e9:83:d2:60:e4:93:e2:9a:82:89:78:c0:
9a:14:9d:05:0d:c9:f4:b3:5d:75:98:81:38:87:5b:
0b:7d:70:53:cb:db:df:fb:63:17:95:60:3e:9f:66:
5f:af:11:4c:41:76:50:c0:9c:df:da:01:92:98:43:
35:3b:2e:bd:4d:bd:d7:9f:69:54:e8:26:16:b3:f2:
74:e6:12:74:9d:4e:44:f6:4c:45:15:58:5e:7b:9a:
a7:98:a5:73:be:94:87:74:7d:83:5c:32:3e:e0:be:
bd:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:C5:F9:A9:9F:B1:24:6E:69:DF:66:7B:96:D5:01:BF:0B:E4:17:F1
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/T8X5qZ-xJG5p32Z7ltUBvwvkF_E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.38.28.0/22
Signature Algorithm: sha256WithRSAEncryption
18:85:97:2a:25:c1:52:bc:c4:2b:99:2d:87:4c:17:a1:fd:fa:
1d:2b:54:e3:21:dd:98:a1:68:c3:7e:8e:42:92:71:3f:ce:39:
72:3c:72:53:42:e9:36:95:7d:b0:c7:e5:14:1c:63:c4:38:7d:
c1:ab:de:63:46:69:22:5b:7c:ea:cc:79:b9:55:b1:46:c0:1c:
d7:f4:42:cf:dc:53:a3:9d:29:ed:a7:86:d8:cb:a8:9f:02:e9:
b5:db:f4:03:79:69:37:8c:f9:d6:ae:5e:3d:6f:15:24:3e:f1:
47:41:71:50:06:20:0f:1c:ba:ea:01:b4:84:c2:d3:54:fe:fb:
c7:ae:77:60:d0:b3:7f:43:4f:e6:5c:49:d9:be:28:6b:6c:5c:
ad:0b:28:77:91:b1:c6:ce:07:23:39:ea:6d:83:59:c0:b8:76:
b6:e1:11:71:2e:5c:cb:26:e7:7e:7a:e5:8e:6e:cb:e8:f3:f0:
21:23:a6:cf:94:56:9b:db:38:ac:7a:38:cf:11:a6:d6:85:5f:
d4:c5:57:49:56:71:94:ed:1c:f0:ae:eb:a4:53:31:1d:ea:45:
21:13:73:95:eb:a2:51:9f:a8:a8:bd:d9:9f:10:e1:16:f8:6f:
45:18:6d:66:10:f9:ac:5d:98:e5:b3:ab:12:6f:28:3e:57:22:
e2:3a:f3:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 23:55:52 2025 by rpki-client