Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/iadlchCoHierKGHffRJ8bn4xnac.roa
File: iadlchCoHierKGHffRJ8bn4xnac.roa (raw, json)
Hash identifier: evFIQJZpy0O2fY61z2KcFalqmHHW9r4WpsLoImqvwyQ=
Subject key identifier: 89:A7:65:72:10:A8:1E:27:AB:28:61:DF:7D:12:7C:6E:7E:31:9D:A7
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 0185709513DDCA9B8A17C054925DC9747C23
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/iadlchCoHierKGHffRJ8bn4xnac.roa
Signing time: Mon 02 Jan 2023 03:44:56 +0000
ROA not before: Mon 02 Jan 2023 03:44:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39667
IP address blocks: 93.170.217.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:95:13:dd:ca:9b:8a:17:c0:54:92:5d:c9:74:7c:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 2 03:44:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=89a7657210a81e27ab2861df7d127c6e7e319da7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:6d:4f:6e:44:bf:af:85:56:f4:43:41:e1:80:
30:2b:3a:52:71:9b:56:b8:71:d6:a4:40:d5:59:12:
41:b5:5c:0b:aa:85:23:6b:4d:20:65:bc:cf:8e:a4:
1f:96:41:fc:f7:14:dd:f8:ac:7f:4c:78:b0:03:f3:
71:9f:12:b7:43:d2:d7:2f:b9:01:01:24:d5:6a:ab:
5b:c0:55:f2:84:2c:83:11:ff:7f:d9:89:dc:8d:2f:
77:ef:fc:10:37:de:30:9f:4b:8e:19:f7:e7:35:5f:
e9:69:af:44:e0:ad:10:19:15:33:df:a7:fb:c5:1a:
f3:c6:9f:a0:77:1a:a3:58:c5:68:f9:d0:2b:29:7f:
c9:c5:65:f6:25:49:3a:67:c1:91:37:4f:24:cb:d9:
6f:0c:4f:e1:e2:7b:a1:bb:b2:a6:4e:3e:0d:87:82:
80:8e:37:72:ee:d9:71:de:8e:cf:ba:20:8a:cc:c2:
99:a3:fb:70:e0:aa:11:58:e5:fe:ec:bc:ec:7d:a3:
08:98:12:3d:da:b0:70:e4:df:4b:f9:8a:3a:63:2a:
8c:2a:12:82:cc:d5:8b:fd:10:c3:e3:2e:03:bf:ec:
05:d3:94:51:93:e0:b4:00:ae:24:5d:c1:62:69:0e:
dd:dd:b4:2b:aa:d2:fc:26:9c:29:a3:62:e5:ca:3a:
ff:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:A7:65:72:10:A8:1E:27:AB:28:61:DF:7D:12:7C:6E:7E:31:9D:A7
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/iadlchCoHierKGHffRJ8bn4xnac.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.170.217.0/24
Signature Algorithm: sha256WithRSAEncryption
16:6d:08:70:85:e9:3e:d4:ed:8f:87:30:5f:1a:ae:ea:8d:be:
f3:33:2c:fd:7e:4a:3c:34:cd:04:ad:39:7c:26:69:51:aa:64:
a7:ff:b9:0d:65:f4:30:40:9c:f1:25:98:09:8c:ca:f2:fe:81:
49:91:1b:f0:5f:c3:56:aa:b5:ac:5e:5f:c5:29:2c:3f:07:e8:
96:c3:b5:68:5f:48:6d:14:55:94:23:db:7b:ac:1c:20:f7:61:
1d:16:27:c2:0d:7a:fb:1a:6c:04:40:4b:98:ca:d1:f3:9f:17:
14:92:7f:b0:b6:8e:59:2c:2f:64:f0:ac:95:46:86:78:89:b5:
f0:04:bb:d2:78:7d:5d:00:94:1a:fc:eb:1e:09:df:98:fe:58:
c3:76:a5:5f:85:d7:55:09:cb:75:72:02:65:86:07:59:32:d9:
44:05:37:da:53:78:9c:f6:57:ee:33:31:e5:50:c8:6f:65:45:
6a:60:0a:42:6c:f5:4b:09:7d:3d:a5:fa:05:fe:69:c6:e9:9d:
be:9b:35:82:16:18:54:ec:7d:d7:ef:aa:17:b4:75:d0:6f:85:
7f:dc:38:c4:fe:e0:f6:5d:9b:39:74:7e:4e:80:4a:1f:c3:5e:
f0:18:06:fa:26:af:16:d8:24:23:51:06:8f:ba:6d:b9:09:15:
6f:40:8e:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 23:53:33 2025 by rpki-client