Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/as5w2pCvFJYrOXvFMIqHojUSl-w.roa
File: as5w2pCvFJYrOXvFMIqHojUSl-w.roa (raw, json)
Hash identifier: a0SE+pM5+rdGkvoUuzQPHyPhahjeMgQEzmuuJJVixLE=
Subject key identifier: 6A:CE:70:DA:90:AF:14:96:2B:39:7B:C5:30:8A:87:A2:35:12:97:EC
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 0185709599D9F0E728C3689B4E800DA3560E
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/as5w2pCvFJYrOXvFMIqHojUSl-w.roa
Signing time: Mon 02 Jan 2023 03:45:30 +0000
ROA not before: Mon 02 Jan 2023 03:45:30 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204619
IP address blocks: 93.171.138.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:95:99:d9:f0:e7:28:c3:68:9b:4e:80:0d:a3:56:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 2 03:45:30 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6ace70da90af14962b397bc5308a87a2351297ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:02:54:01:08:b3:4e:ee:be:ef:71:67:f6:9d:
86:43:5d:2b:1a:25:8b:69:49:a9:5e:2b:b1:64:e3:
36:c0:ba:be:57:d8:f5:64:0a:27:d3:6e:77:26:b1:
81:17:32:06:95:67:61:50:76:54:5e:fc:0d:6a:68:
5e:4a:fd:2e:7f:06:b7:92:74:1a:f7:cd:3e:33:de:
d7:68:22:09:5e:f8:f9:2a:b7:32:57:56:8d:44:bf:
af:f6:bb:bd:c0:5d:52:29:16:0e:f5:ad:96:03:b1:
9c:d6:99:6b:05:2b:02:57:f2:37:ff:6a:f7:35:b1:
aa:9b:d8:fb:2f:f6:57:ca:8d:8f:5e:73:33:fd:0d:
db:cc:1c:0a:2c:f3:39:52:09:d9:34:c9:c0:77:cd:
d3:a2:10:7d:7b:29:58:e9:4e:27:64:59:d1:f6:d4:
b5:5f:1a:e9:d6:d0:fd:55:7b:54:ae:5d:66:8e:08:
4d:0f:af:94:7b:61:26:2a:14:e8:be:e3:6e:8e:d7:
ca:fa:94:26:80:f3:e1:4b:87:fa:30:64:db:87:8a:
8c:a4:b9:d3:59:fc:ef:11:86:d3:99:1d:7d:8b:9a:
a0:d4:61:b2:0f:eb:95:e5:5a:0d:a6:26:59:41:40:
7e:4e:ef:10:6a:14:82:d6:2a:bc:b5:5e:d9:db:81:
f9:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:CE:70:DA:90:AF:14:96:2B:39:7B:C5:30:8A:87:A2:35:12:97:EC
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/as5w2pCvFJYrOXvFMIqHojUSl-w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.171.138.0/24
Signature Algorithm: sha256WithRSAEncryption
61:e6:b9:21:5e:cb:78:44:10:4c:ea:45:65:61:f9:d5:c0:8f:
d3:c4:43:ff:7a:3f:0f:58:01:e6:08:d8:df:20:54:98:07:e3:
b4:43:e8:a8:4a:7f:71:13:fe:37:3e:e3:e4:0a:91:b7:b2:3b:
dd:6c:36:f6:fb:a4:3b:39:2c:b1:8a:87:74:4e:7b:3b:fc:96:
57:6b:ed:21:35:62:5d:dd:00:50:89:ba:20:ca:e4:b4:3e:9d:
0d:81:e8:fd:5c:12:c8:91:d3:00:12:1f:48:64:1b:58:37:01:
fc:db:b0:13:3a:eb:a0:22:46:1d:bc:80:5b:68:4b:b0:72:b6:
27:76:4b:83:b1:1d:88:c4:da:de:40:f3:87:57:f1:0f:d4:99:
ea:78:3b:ba:df:38:ae:ae:28:6c:3d:4c:70:ab:e7:9d:1b:95:
a2:b9:f7:e1:ac:06:9e:6d:4e:29:e7:6c:d4:18:28:f3:5c:b0:
a1:4c:89:7c:d1:56:33:78:f9:9c:df:19:e2:62:6f:15:6b:12:
36:74:ec:4f:c8:7f:79:28:30:f9:af:ca:81:27:1f:a6:99:85:
25:e5:4a:c2:20:a6:d9:28:c3:3f:6b:cf:24:d2:03:c8:6a:c4:
6d:39:02:9c:12:11:c6:88:5f:3a:6e:87:0c:3f:0a:d6:ee:cf:
96:0a:a7:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 23:53:23 2025 by rpki-client