Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/YjvlwjgFgWgtXpNu0UDKw1zoF1M.roa
File: YjvlwjgFgWgtXpNu0UDKw1zoF1M.roa (raw, json)
Hash identifier: LChCUTmfEy1ekD62bqTKOfrG/3ui9rMUzWX8hiq8dRE=
Subject key identifier: 62:3B:E5:C2:38:05:81:68:2D:5E:93:6E:D1:40:CA:C3:5C:E8:17:53
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 285986FE
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/YjvlwjgFgWgtXpNu0UDKw1zoF1M.roa
Signing time: Sat 01 Jan 2022 16:10:18 +0000
ROA not before: Sat 01 Jan 2022 16:10:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211570
IP address blocks: 93.171.224.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 676955902 (0x285986fe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 1 16:10:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=623be5c2380581682d5e936ed140cac35ce81753
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:b1:0a:00:10:92:86:5b:cc:13:37:fc:da:65:
cb:26:00:be:72:ae:52:6f:a5:ac:a6:08:17:31:4c:
d3:16:f1:63:32:74:2a:0d:08:d9:05:69:ae:04:1a:
6b:0b:15:64:a1:e5:0f:b8:68:79:0d:d9:45:61:51:
55:fc:26:ca:96:8a:15:67:e2:52:06:df:4e:ae:f1:
f8:4c:c8:fd:ce:cb:6f:48:bc:ff:61:c8:ca:2b:85:
e4:89:ea:a8:b2:3e:48:dd:71:00:77:66:25:a7:22:
10:e4:80:28:b2:35:c1:8c:cb:eb:74:ac:a6:46:a1:
ac:87:a2:51:0e:4c:17:9e:7d:2b:9f:f2:d8:b9:97:
1e:7f:e0:05:b8:96:10:6b:c2:a0:9e:c5:3d:eb:00:
28:5b:8f:46:06:43:2e:34:40:a7:6b:fa:98:20:c8:
69:fc:72:1b:85:e8:3a:05:5c:47:db:14:c2:f8:b7:
5c:21:e7:15:7e:9e:2e:d2:98:3b:86:81:52:75:d8:
1f:ae:75:b0:62:df:d4:64:d7:50:6a:42:c3:b4:ac:
85:45:b3:76:34:1c:27:00:20:00:e4:9e:b3:8b:a0:
b5:3e:35:b5:e3:89:38:49:cb:38:ed:5d:d5:df:ae:
15:7d:6b:a0:b7:42:f4:40:b1:bf:08:00:c1:08:9a:
55:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:3B:E5:C2:38:05:81:68:2D:5E:93:6E:D1:40:CA:C3:5C:E8:17:53
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/YjvlwjgFgWgtXpNu0UDKw1zoF1M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.171.224.0/24
Signature Algorithm: sha256WithRSAEncryption
b2:56:a0:18:07:88:ef:eb:89:ba:c5:c2:71:c0:bf:7e:ce:d3:
3d:f9:a2:fe:a5:21:73:5f:82:ed:ab:6d:d5:33:a4:2d:4c:97:
4a:fc:95:09:d2:34:8c:30:a7:83:34:e7:d4:44:f0:ab:0c:e9:
e4:db:b1:07:0f:ba:38:49:de:f5:99:91:60:19:34:04:29:2f:
d1:ae:6d:75:f3:12:0e:87:df:50:3e:96:b0:23:72:36:0c:c3:
1e:35:1b:5a:b6:28:37:89:9d:57:e6:c5:56:e5:65:34:68:fb:
77:f5:01:b8:b2:99:fe:6c:8d:bc:cb:78:6e:45:99:ea:6f:cf:
dd:b9:58:73:51:bf:7c:e4:f8:84:0c:c0:b7:11:0d:9f:31:16:
71:6c:e6:4d:75:45:c0:be:05:71:27:5c:0a:62:07:ea:25:41:
6f:77:2b:cd:01:41:df:64:40:18:17:fd:a2:6c:41:ad:a5:c8:
30:27:86:e3:a5:dc:e7:6c:b7:32:d2:aa:64:15:f6:bf:d2:f1:
3e:14:cd:6b:c9:1a:3d:34:d6:ef:65:56:a4:b3:a6:00:df:d5:
0a:f7:a0:f2:61:23:69:1e:28:d4:55:d9:24:3a:3d:27:ac:08:
ef:57:65:81:5a:b8:e1:6b:26:63:76:1a:70:e0:24:4a:a7:07:
84:97:6c:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 00:15:25 2025 by rpki-client