Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/kMDTZM9eKf-t_6WO5W9ODmO3uR8.roa
File: kMDTZM9eKf-t_6WO5W9ODmO3uR8.roa (raw, json)
Hash identifier: mjKtnM7rUqiOdlH9UtyIRy9CDcsZFrfuazpipTuohUw=
Subject key identifier: 90:C0:D3:64:CF:5E:29:FF:AD:FF:A5:8E:E5:6F:4E:0E:63:B7:B9:1F
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 2920FE72
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/kMDTZM9eKf-t_6WO5W9ODmO3uR8.roa
Signing time: Fri 11 Mar 2022 11:21:58 +0000
ROA not before: Fri 11 Mar 2022 11:21:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210768
IP address blocks: 93.170.191.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 690028146 (0x2920fe72)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Mar 11 11:21:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=90c0d364cf5e29ffadffa58ee56f4e0e63b7b91f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:55:bd:d2:d0:bd:d1:a9:56:0b:dc:c4:9c:d7:
54:f4:d4:99:19:f1:43:61:34:09:6e:6a:11:2c:e1:
b2:c5:45:cb:f4:4a:04:51:ae:de:53:bf:7f:2d:5d:
d4:b3:d0:c5:27:2a:d2:02:e8:ba:5c:ab:25:0b:96:
05:71:53:e3:59:40:f6:5a:99:6f:06:17:ff:2a:5b:
e5:13:ab:da:2e:a7:04:0c:b3:03:6b:b6:41:8a:04:
7e:9b:d6:bc:dd:c7:b0:f3:69:70:1f:56:e7:14:aa:
92:70:9a:bd:67:f8:27:9e:2b:25:a6:43:fa:5c:4e:
9c:e2:b9:b0:69:00:42:e5:ad:d6:aa:ab:fa:84:63:
ae:bb:a2:bb:61:b9:67:c0:ff:db:59:07:99:08:53:
ae:e1:3a:0c:fb:40:d8:60:53:38:63:24:f3:50:3f:
9a:4f:ec:6d:2c:61:47:e3:63:8a:cf:3a:d0:ca:9d:
28:89:ed:0a:54:1f:76:ba:ab:6b:3d:0f:6e:6e:45:
2d:0c:94:7c:61:8f:c1:30:09:eb:a1:35:e5:a2:90:
84:15:59:bd:e1:ae:40:c3:45:a7:74:bb:1b:fa:24:
c8:86:28:5d:90:c0:53:97:9e:59:72:cc:54:02:81:
36:17:16:db:c9:bb:4b:6f:b5:58:74:a2:50:92:fa:
33:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:C0:D3:64:CF:5E:29:FF:AD:FF:A5:8E:E5:6F:4E:0E:63:B7:B9:1F
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/kMDTZM9eKf-t_6WO5W9ODmO3uR8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.170.191.0/24
Signature Algorithm: sha256WithRSAEncryption
37:aa:2b:9e:21:1a:46:75:3b:eb:bb:70:0c:3c:2e:fc:65:7f:
ed:ee:85:dd:62:6c:5d:fc:3f:3c:0b:ee:56:d4:11:9c:e7:c5:
00:b3:7e:80:94:bc:f2:0c:d7:58:3f:29:27:79:37:cf:de:98:
42:16:3d:6a:76:73:df:57:26:ad:f2:39:cc:15:34:60:25:fa:
7e:7c:ea:c8:7a:5f:16:25:f1:b5:df:f6:5c:55:60:1e:9b:8a:
7b:96:53:7f:28:bf:58:d8:8b:c6:91:64:61:0f:0f:48:f9:eb:
1a:e9:26:ff:dc:80:e1:bf:24:6e:3f:d6:57:e0:e2:c1:e3:a3:
da:8f:00:bb:77:24:70:41:7d:52:79:ba:94:c3:b9:5c:e1:b6:
38:df:92:1b:3d:84:dd:38:b9:72:ff:3a:29:ac:9d:9e:43:ff:
84:c5:9b:1b:d3:ed:c9:7d:82:d6:a3:a0:43:5c:3c:8d:b1:89:
56:31:7c:cf:b5:e7:cc:cf:a5:3c:29:82:5f:47:65:04:3a:46:
e2:83:cc:5c:45:74:e5:70:1a:9d:a2:f6:c4:1e:a9:c4:e9:22:
32:3e:80:26:22:83:ee:33:e2:16:14:98:46:5b:c2:00:ca:98:
d0:b7:a6:7e:ff:9b:50:56:ca:b2:8a:16:be:ac:5b:1d:01:67:
8b:45:6f:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 23:48:52 2025 by rpki-client