Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dXd-yVsCT-fqiXc5WPBp8_uX0VY.roa
File: dXd-yVsCT-fqiXc5WPBp8_uX0VY.roa (raw, json)
Hash identifier: OG1qMPyplQlKUkbr0c1LEssORZCSvVPcbZS1vA92MBQ=
Subject key identifier: 75:77:7E:C9:5B:02:4F:E7:EA:89:77:39:58:F0:69:F3:FB:97:D1:56
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 0194258FE88DD4C6116211AED12532843E89
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dXd-yVsCT-fqiXc5WPBp8_uX0VY.roa
Signing time: Thu 02 Jan 2025 05:49:35 +0000
ROA not before: Thu 02 Jan 2025 05:49:35 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 201041
IP address blocks: 93.171.163.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8f:e8:8d:d4:c6:11:62:11:ae:d1:25:32:84:3e:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 2 05:49:35 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=75777ec95b024fe7ea89773958f069f3fb97d156
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:1a:4c:55:97:db:ae:c7:f7:fb:31:d7:23:2d:
d9:b3:5f:c5:93:3b:24:c3:d5:b3:68:dc:e6:74:cf:
26:af:29:36:86:56:83:cf:c8:0f:4e:d1:5c:81:a1:
5e:c7:cd:6e:f7:78:73:80:eb:1d:73:eb:f5:07:24:
d2:17:60:44:b6:36:e8:b4:12:a1:af:61:fb:f3:64:
d2:f2:3f:b5:de:03:28:e2:4e:9b:2a:a2:4e:f9:d9:
eb:e6:11:30:1b:09:ce:4e:11:c2:88:cb:91:f1:5a:
17:55:07:1c:5a:95:48:cc:be:49:78:fa:f5:61:5a:
f6:2c:b1:06:19:1e:5a:2a:c6:32:3e:ac:a0:fa:1f:
10:b4:40:ae:4b:c7:fa:25:92:33:6b:e1:27:4c:82:
03:02:14:f2:34:38:f7:25:b0:25:5d:85:4d:5a:b6:
a1:76:79:63:76:af:57:4f:3d:88:3c:fb:f2:c0:3b:
45:5f:99:38:34:c5:60:7e:56:36:3f:06:6e:eb:16:
5f:29:9f:55:93:d8:84:8f:e7:52:5c:08:7e:2e:fc:
25:91:60:b9:03:2d:36:0f:4f:ed:d4:15:c5:7d:35:
32:ee:9e:cd:e6:7b:2d:ed:b8:91:b8:90:c7:6f:5d:
48:c5:10:f6:28:89:1e:d7:8a:3c:b3:c0:18:55:92:
79:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:77:7E:C9:5B:02:4F:E7:EA:89:77:39:58:F0:69:F3:FB:97:D1:56
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dXd-yVsCT-fqiXc5WPBp8_uX0VY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.171.163.0/24
Signature Algorithm: sha256WithRSAEncryption
03:af:9f:55:86:76:36:90:68:80:90:dc:01:9d:2c:ef:b9:ec:
c6:c7:d0:34:03:a1:09:6e:3e:74:e2:dc:2d:56:fd:d0:d4:b9:
50:82:27:f7:e9:56:9c:5a:93:e7:72:90:61:d9:3f:07:97:39:
26:b9:c1:0f:fc:54:5e:11:61:19:33:0e:79:73:12:e7:6e:35:
71:f1:0f:d8:f3:c5:12:b9:8c:e4:fb:f4:78:18:a4:07:d1:91:
2a:be:4e:e8:37:49:79:60:97:ab:ab:30:32:20:f2:b6:c4:ad:
a5:6d:71:f3:39:17:b0:62:ec:75:8e:c2:0c:7c:c2:66:bb:68:
d5:47:65:95:48:a7:5d:18:21:0b:c0:7b:62:b0:12:aa:eb:18:
b8:a2:a5:62:d9:6b:eb:54:e3:65:04:9c:88:81:17:c9:28:0c:
d8:fc:53:88:57:7d:d9:ec:70:82:7e:0a:f4:6a:94:6d:a0:5c:
e5:22:83:9c:af:44:96:86:be:69:b0:3d:a5:10:b1:71:3d:a0:
41:2f:5b:a6:8a:3e:04:38:45:a0:0a:e3:9e:0c:85:d9:16:48:
52:97:fe:27:8b:2f:eb:41:85:77:f8:00:7a:7a:b5:bd:e3:bb:
c3:f5:1a:a4:2c:88:85:88:24:7f:f9:f2:73:76:13:2f:f6:63:
b7:77:7c:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Feb 21 11:02:57 2025 by rpki-client