Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/mIchZ8tlhtLPqeSvmjmBzud3uwI.roa
File: mIchZ8tlhtLPqeSvmjmBzud3uwI.roa (raw, json)
Hash identifier: 52v1lGEsKM0on2Se0YzRDRGQ5+5EHUY1Nc6xi7BefZo=
Subject key identifier: 98:87:21:67:CB:65:86:D2:CF:A9:E4:AF:9A:39:81:CE:E7:77:BB:02
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 0194258F90E0F27FA8108C25081F274D8C56
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/mIchZ8tlhtLPqeSvmjmBzud3uwI.roa
Signing time: Thu 02 Jan 2025 05:49:13 +0000
ROA not before: Thu 02 Jan 2025 05:49:13 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 34718
IP address blocks: 93.171.232.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8f:90:e0:f2:7f:a8:10:8c:25:08:1f:27:4d:8c:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 2 05:49:13 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=98872167cb6586d2cfa9e4af9a3981cee777bb02
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:18:e4:fc:d7:07:b3:ed:36:6c:32:25:d3:d1:
4e:7e:7f:51:cc:65:5c:a0:87:4f:88:59:84:2f:f1:
d2:9e:2a:b3:6b:39:32:83:3d:bd:a5:e4:14:03:6e:
51:7a:cc:f6:1d:49:9a:5c:d2:77:fb:d9:9b:de:66:
05:93:6c:e1:1e:6c:fc:55:68:5a:26:c4:72:8d:65:
39:59:14:40:65:0e:21:0c:5e:86:89:3f:bb:43:97:
8a:49:a0:34:74:27:8e:4b:07:9b:2c:e8:b3:57:c9:
f1:64:8a:60:8d:1a:f1:30:e0:de:c2:8f:48:f0:e9:
21:ed:05:b9:a1:2f:bf:46:1a:c9:ce:e2:49:cb:5c:
4e:ba:ea:19:53:e7:ce:c7:a1:3b:bd:41:ab:e5:46:
ab:ef:27:ca:94:ca:a3:55:e9:bf:16:6c:30:40:35:
f5:4c:90:96:af:04:b1:b4:4c:f8:62:5c:8a:9f:7d:
86:dc:9d:14:68:77:9c:e8:c8:18:8a:94:c4:83:47:
73:68:f1:5b:7c:13:83:89:18:b8:e0:4e:c1:ae:b0:
4f:ce:dc:2a:2a:e8:46:1e:23:7e:04:9b:2e:0e:11:
dc:e5:24:49:73:62:8b:24:98:45:ea:31:6f:e7:61:
a9:1a:30:6d:56:8f:89:94:4f:fa:a4:55:d3:32:92:
7a:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:87:21:67:CB:65:86:D2:CF:A9:E4:AF:9A:39:81:CE:E7:77:BB:02
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/mIchZ8tlhtLPqeSvmjmBzud3uwI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.171.232.0/22
Signature Algorithm: sha256WithRSAEncryption
1f:91:ac:64:13:88:d3:56:7d:e3:28:04:e2:79:33:b8:c3:4f:
73:22:95:ed:ba:9f:0d:f6:0a:12:af:84:24:09:b0:ff:22:f5:
90:60:57:1f:00:aa:23:e2:ee:79:1d:7f:00:f2:68:d0:c6:46:
82:91:e1:75:9d:76:1b:d2:84:c8:28:3d:c5:ee:29:b4:f4:cb:
e7:1c:b1:ae:57:c1:36:9b:ca:be:68:49:18:12:69:0b:44:41:
3c:33:5d:d2:ad:c2:f4:73:a2:f3:00:3a:6f:63:21:63:a4:a9:
a4:f1:10:a0:81:9a:69:07:40:52:56:9f:19:19:10:75:be:fd:
a3:e4:1e:56:79:fc:89:d8:8c:a7:f0:a6:a0:34:f9:86:56:3c:
04:22:98:00:6c:25:27:31:e0:7f:fc:f7:3b:c5:fe:ec:74:71:
51:f0:fe:24:0c:21:a4:e9:18:cd:f6:d4:d0:db:ed:ac:57:2e:
0b:9f:2d:bb:94:d1:9c:22:5f:cd:61:22:55:a4:a9:2a:cc:0b:
18:76:19:df:25:f5:5f:a1:13:1e:93:d9:40:3b:aa:5b:18:48:
ce:b2:03:55:8a:46:1c:d5:5b:76:69:06:87:31:e3:2e:77:20:
1a:53:de:ba:2d:9f:ee:e4:3a:d0:f2:2c:0d:d3:e0:c7:0f:71:
96:1c:4b:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 23:36:39 2025 by rpki-client