Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/XD2xa9qDB9eZJpQJJK7_F8Gl55g.roa
File: XD2xa9qDB9eZJpQJJK7_F8Gl55g.roa (raw, json)
Hash identifier: IVu0ud8wo4pYol9q1Daiz6ZmYV+fCEstN46UTd+G1sI=
Subject key identifier: 5C:3D:B1:6B:DA:83:07:D7:99:26:94:09:24:AE:FF:17:C1:A5:E7:98
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 01857095C4D49EAA3B7874D1207906A92298
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/XD2xa9qDB9eZJpQJJK7_F8Gl55g.roa
Signing time: Mon 02 Jan 2023 03:45:41 +0000
ROA not before: Mon 02 Jan 2023 03:45:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 262254
IP address blocks: 93.171.200.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:95:c4:d4:9e:aa:3b:78:74:d1:20:79:06:a9:22:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 2 03:45:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5c3db16bda8307d79926940924aeff17c1a5e798
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:ee:f3:8c:5d:e1:38:dd:31:1f:b5:9f:8c:8f:
37:9d:f8:af:39:ba:45:e7:25:69:8e:1c:4f:72:6b:
16:fb:94:f3:e6:00:85:da:8c:02:92:17:0d:82:bf:
8b:2f:0f:ad:04:a1:46:54:0a:26:14:a3:db:63:ae:
40:8a:16:6a:18:06:35:1a:89:7b:e6:7c:53:97:3e:
2f:30:ad:4d:9d:9c:6d:28:d0:d3:ce:45:45:1f:1c:
31:6a:01:85:58:96:61:29:18:06:9f:af:97:6b:27:
67:9e:3e:61:3f:64:47:d3:94:b7:63:05:7c:8b:5b:
f0:62:69:45:79:b8:28:8f:8e:df:7b:4b:2a:69:85:
9d:48:94:48:34:4d:d9:8c:b4:4e:d7:1d:7c:76:fc:
0f:09:a8:2f:97:d7:b7:90:d1:16:3e:13:6b:51:ec:
53:0e:19:a2:eb:68:b3:7f:ea:c1:e3:98:8a:d3:14:
c9:e7:c8:37:e6:86:c8:73:ee:99:ad:62:d1:1e:94:
69:08:f7:cc:5d:7a:43:95:4c:4f:5c:f7:30:90:19:
f4:61:a1:3b:55:31:da:9a:f3:7f:d9:c2:68:17:1b:
fc:08:be:ad:41:30:dc:0d:f3:32:1c:3d:7b:a3:af:
e5:be:ee:0e:0f:8a:6e:a6:ce:92:15:7b:c8:9e:e9:
9a:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:3D:B1:6B:DA:83:07:D7:99:26:94:09:24:AE:FF:17:C1:A5:E7:98
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/XD2xa9qDB9eZJpQJJK7_F8Gl55g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.171.200.0/24
Signature Algorithm: sha256WithRSAEncryption
90:e2:bd:06:7d:e9:2e:6c:43:84:a0:85:d7:32:23:28:47:a3:
1c:e2:dd:e9:6b:7e:f4:dd:58:26:a4:bd:7f:cc:c8:7d:63:ef:
30:ad:08:f2:6c:e2:05:e7:45:f6:98:44:4d:73:b2:85:48:51:
7f:6f:15:d4:16:b3:d5:9d:5c:d8:8e:26:4e:d3:b8:d0:cf:84:
8f:52:05:20:ee:f6:86:95:72:15:e3:2a:dd:05:cb:64:de:35:
5e:ec:ff:a5:a5:ed:74:94:29:32:92:9a:b3:07:d8:9d:c4:d2:
de:24:bb:6a:93:e1:35:04:06:ac:41:01:fb:ff:5f:33:f3:66:
a8:ec:02:0f:49:01:b2:b5:3d:68:44:01:ed:87:9a:1d:69:33:
bb:8e:e6:28:b8:11:e5:32:50:d0:6d:76:ec:83:75:a0:50:24:
bb:c5:f4:1b:05:da:ae:8a:1c:a8:11:2d:eb:6e:9c:2e:e7:e2:
8e:1d:e8:d0:6d:01:a7:07:ad:95:86:23:27:85:ea:46:b6:af:
29:8a:d5:4b:56:18:58:ff:68:70:3e:84:89:09:2c:9f:9b:6b:
79:2b:b5:30:08:ba:5d:38:72:bf:a8:8f:93:82:37:2c:a8:c3:
c3:d9:fa:94:a3:b9:10:69:09:9f:3f:de:49:e1:a1:c6:95:63:
dc:ee:e4:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 00:08:20 2025 by rpki-client