Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/kEQlapzTwB_ar4FZrCFY2mSLbsc.roa
File: kEQlapzTwB_ar4FZrCFY2mSLbsc.roa (raw, json)
Hash identifier: hJuqb27Yk96L94ZIZghP3ED+32pMYZrzZSLqp9nWQb4=
Subject key identifier: 90:44:25:6A:9C:D3:C0:1F:DA:AF:81:59:AC:21:58:DA:64:8B:6E:C7
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 28427A2A
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/kEQlapzTwB_ar4FZrCFY2mSLbsc.roa
Signing time: Sat 01 Jan 2022 16:09:57 +0000
ROA not before: Sat 01 Jan 2022 16:09:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208067
IP address blocks: 93.171.252.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 675445290 (0x28427a2a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 1 16:09:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9044256a9cd3c01fdaaf8159ac2158da648b6ec7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:42:0a:64:9b:83:ae:48:3a:08:45:69:9e:a1:
f5:a3:e4:4d:77:54:1e:73:33:30:d2:7a:1d:d9:87:
1b:84:7f:40:64:a5:45:36:a1:5a:df:17:24:fe:6a:
97:7d:10:c3:12:43:1e:9c:14:07:18:6b:62:7c:36:
0a:e4:e4:06:d0:f3:7c:60:dd:a8:c3:68:7e:4a:57:
b1:97:88:cd:2f:1a:4e:13:ad:d5:88:e9:7e:98:80:
5e:27:0b:c9:50:4b:98:4d:5d:6e:9b:9a:6a:c0:ca:
bc:0c:95:a7:fd:fb:c8:d0:1d:32:a9:78:e7:d9:90:
36:fd:ec:3b:7d:b3:6c:6f:0e:88:65:27:5c:67:98:
f0:4c:f2:c9:b8:e5:3d:4b:2f:ac:d3:30:cb:a6:47:
48:6c:aa:cc:56:38:c0:d6:ce:aa:d2:37:01:7b:0d:
66:d8:46:7e:d0:28:c3:0d:c0:dd:de:4a:65:8e:b5:
17:f4:07:13:bf:d0:1b:85:ae:ab:e1:f6:89:dc:f7:
25:ff:a5:84:12:ab:a0:05:ac:c2:53:20:71:4e:61:
c2:1e:10:fd:93:92:11:4a:86:36:eb:31:37:28:ef:
d9:de:f3:5e:e9:40:a2:b9:7c:89:75:f2:fb:59:fb:
20:49:17:02:63:a7:32:8d:37:a7:de:49:dc:ef:78:
4b:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:44:25:6A:9C:D3:C0:1F:DA:AF:81:59:AC:21:58:DA:64:8B:6E:C7
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/kEQlapzTwB_ar4FZrCFY2mSLbsc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.171.252.0/22
Signature Algorithm: sha256WithRSAEncryption
06:19:f8:78:ae:69:ff:66:7e:9c:2a:d9:bc:02:c2:20:d8:9a:
72:f1:79:8b:f7:f4:a4:f4:bd:3e:35:41:9f:d1:a8:41:d1:53:
d9:4b:fc:40:8e:fe:f3:27:3e:1e:00:df:eb:2c:1a:da:e1:87:
b9:99:d6:24:81:3c:bf:6e:1f:38:d3:65:4f:1b:7a:43:c2:8a:
a2:4c:f4:c0:20:0e:08:ff:3c:0e:35:b7:e7:f2:fd:37:1d:00:
52:cc:6d:a1:98:92:99:94:09:17:48:5b:d7:d6:c7:65:44:0b:
df:e8:ee:c5:73:68:eb:f4:b2:03:9c:af:d6:76:6d:5c:02:d8:
f1:51:28:b1:61:8a:18:0a:39:a8:2f:db:fa:e2:07:55:c8:9b:
59:e1:33:ab:bb:c1:70:60:b3:31:c3:fb:50:b3:79:41:7f:ae:
88:ee:58:c3:74:6c:60:91:1d:75:9e:04:fd:e2:b7:1a:75:2a:
de:44:34:0f:6b:9f:f1:64:18:45:7a:a7:8b:83:80:f8:52:ae:
47:56:5d:83:7d:e1:42:11:0f:bb:a5:81:07:8f:2e:95:13:ca:
b4:2c:50:cc:a8:34:bd:d2:50:02:88:c0:3e:1d:04:24:c0:ec:
1b:5a:11:4b:48:95:16:5e:f0:45:06:d0:31:ea:7a:b4:84:4f:
54:2c:b6:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 23:34:32 2025 by rpki-client