Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/j7LIH9m1wHXYmflmgJUIu-Hm0VE.roa
File: j7LIH9m1wHXYmflmgJUIu-Hm0VE.roa (raw, json)
Hash identifier: zKXR2vBjM6A+ZCC77Am6L+KBRwJpueONgyGVw9mNNzM=
Subject key identifier: 8F:B2:C8:1F:D9:B5:C0:75:D8:99:F9:66:80:95:08:BB:E1:E6:D1:51
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 018570954FF43862D8A4FD87F1E9A6347942
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/j7LIH9m1wHXYmflmgJUIu-Hm0VE.roa
Signing time: Mon 02 Jan 2023 03:45:11 +0000
ROA not before: Mon 02 Jan 2023 03:45:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51214
IP address blocks: 93.171.156.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:95:4f:f4:38:62:d8:a4:fd:87:f1:e9:a6:34:79:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 2 03:45:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8fb2c81fd9b5c075d899f966809508bbe1e6d151
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:3f:a0:5a:7e:1d:0c:56:90:3a:8e:9c:2c:5b:
2e:66:41:b8:7d:17:9b:77:23:ee:6e:a9:45:9a:64:
17:02:6f:60:59:e0:55:2b:62:1d:89:d2:97:ae:4e:
77:56:1a:67:7b:ff:d7:63:4f:93:f1:d8:4e:6d:48:
9e:8c:a7:7b:c6:4c:d2:15:31:5d:8a:0f:6f:c6:36:
4b:d4:f2:46:26:ce:38:38:3f:32:7d:8e:df:08:dd:
23:ee:90:06:88:c2:48:8b:16:b6:42:ed:03:1d:e1:
35:e0:5c:78:1d:d8:93:77:40:b7:f0:bb:f6:f5:5f:
67:ac:77:c0:a4:ad:23:1a:90:f0:af:0c:f2:a0:08:
5d:7e:03:87:6b:12:d1:35:ff:aa:1b:cc:46:5a:7c:
32:29:f4:b7:be:32:ab:f2:a4:5e:98:ff:e2:8d:1e:
01:85:5c:02:4a:ce:d3:ba:3a:8e:02:d9:90:da:6c:
9f:95:3c:27:80:ae:4e:7f:dc:88:f8:83:af:5d:85:
b2:57:c7:1a:eb:4b:6b:79:2d:eb:d9:11:84:d8:5e:
77:0c:2b:d0:e8:9a:79:52:1b:4e:50:6c:48:35:14:
c4:5d:f5:7a:03:7c:bf:bb:fb:c1:71:46:94:80:91:
5a:8f:de:a1:ea:00:52:45:09:38:38:36:2a:a7:87:
78:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:B2:C8:1F:D9:B5:C0:75:D8:99:F9:66:80:95:08:BB:E1:E6:D1:51
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/j7LIH9m1wHXYmflmgJUIu-Hm0VE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.171.156.0/23
Signature Algorithm: sha256WithRSAEncryption
03:6b:f4:fc:70:bd:d6:75:1a:81:87:44:b6:c4:86:16:28:2b:
40:2c:bc:b3:32:77:4d:7b:06:4d:dd:3a:9c:29:73:42:0c:cf:
4e:73:e8:50:d1:88:a5:89:e0:b6:f3:ed:f1:0c:96:ab:a7:b1:
9b:67:4d:47:ef:2d:c0:b1:da:84:d3:db:8e:f9:3b:76:54:34:
98:74:1e:9f:21:df:b0:29:55:d0:f0:69:db:1b:ef:df:52:c0:
c1:ec:c3:3c:c2:0f:bb:e0:c7:42:56:5b:07:4d:74:a0:4e:7b:
68:fb:3e:77:65:6c:94:44:e0:a8:e9:f6:e3:37:88:8a:21:2b:
81:1f:24:76:fb:df:1f:0a:28:5d:6f:1f:ec:1a:a1:a9:93:d2:
bc:b5:cc:eb:44:f3:3a:73:fa:c2:01:04:14:36:9f:77:8f:b2:
99:7f:f4:00:66:d1:3b:4f:be:2e:a6:91:78:38:2a:a0:4e:ff:
02:b3:fe:2d:e2:8b:ff:c8:8f:9f:cd:d9:b5:44:e8:0d:cc:49:
59:48:75:f7:ae:68:14:d8:c8:32:72:01:cb:75:4f:be:62:d2:
1a:60:36:38:6f:a4:18:3c:bb:7c:ac:9a:f2:59:44:ad:c8:2d:
f6:8b:ff:3e:89:60:2c:72:91:f7:7b:cf:aa:bc:6a:6e:0b:b2:
8f:bc:ad:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 23:36:37 2025 by rpki-client