Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/rudScdJDx4bRf0K8KqnpFD172j4.roa
File: rudScdJDx4bRf0K8KqnpFD172j4.roa (raw, json)
Hash identifier: Gu4ktafBcxHY7IjckWuzXEChTwTkWTwdGQ7d0hyyflk=
Subject key identifier: AE:E7:52:71:D2:43:C7:86:D1:7F:42:BC:2A:A9:E9:14:3D:7B:DA:3E
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 2A12BD5F
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/rudScdJDx4bRf0K8KqnpFD172j4.roa
Signing time: Wed 01 Jun 2022 09:32:22 +0000
ROA not before: Wed 01 Jun 2022 09:32:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51121
IP address blocks: 93.170.144.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 705871199 (0x2a12bd5f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jun 1 09:32:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=aee75271d243c786d17f42bc2aa9e9143d7bda3e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:09:ca:3a:f6:1c:71:ff:54:92:67:f2:0c:ac:
03:77:e0:b0:49:2d:1a:61:87:6d:69:d5:ef:15:56:
d6:c2:16:bb:75:63:bc:ca:0c:35:89:0e:28:2c:59:
78:9f:0e:0f:7b:77:6b:be:3b:7e:f9:29:04:a7:f3:
33:10:b7:93:43:f1:a1:7a:13:5d:3d:82:43:9f:b6:
c9:58:1b:fc:eb:a5:09:9d:5b:a6:82:a1:9a:9e:86:
4c:04:eb:28:d2:6f:40:98:fd:92:7b:9d:be:e6:26:
05:6b:b8:a1:ea:02:0b:b5:ba:26:a0:a5:ac:86:4a:
b6:5f:83:e5:92:f7:53:1c:d2:4f:c9:3a:a6:10:14:
4f:1a:55:16:e5:9a:41:b4:4e:d6:44:dc:64:f2:20:
c4:2a:ef:a6:3b:35:70:40:c1:19:ab:62:c7:84:84:
82:a0:07:5e:91:dd:06:ad:5e:4f:f8:89:54:bd:e1:
86:76:81:fb:d1:5b:47:30:95:b6:63:91:7d:be:0f:
54:a4:bc:00:27:9b:bc:16:ce:c0:7a:f1:92:a2:bc:
31:3c:e4:ab:c7:72:ef:47:f1:4f:cb:31:eb:23:c6:
73:20:2f:57:4b:a6:b4:6f:dd:68:2d:0e:a7:31:33:
0d:ce:2f:7d:a9:d6:31:bc:5a:3e:95:ad:0a:4f:a5:
0b:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:E7:52:71:D2:43:C7:86:D1:7F:42:BC:2A:A9:E9:14:3D:7B:DA:3E
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/rudScdJDx4bRf0K8KqnpFD172j4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.170.144.0/20
Signature Algorithm: sha256WithRSAEncryption
32:d3:12:16:9d:14:f7:cb:af:18:8c:8d:8b:40:6f:45:c4:3c:
8b:b7:3f:ab:f5:bb:90:fc:f8:b5:5a:ca:46:8b:fd:dc:d4:e8:
81:65:ef:85:e4:eb:f4:f6:ca:3d:94:56:38:74:b6:03:2c:af:
47:4e:62:9f:35:78:03:48:01:a2:e2:6d:4e:d3:a4:6a:ab:27:
11:50:9a:9d:b8:95:d7:04:ae:75:f8:ac:ab:3b:3f:16:0a:95:
cd:00:a4:9f:41:3a:f9:79:34:6c:3c:cd:a9:c2:f7:c6:41:64:
cf:77:87:80:dc:7c:4e:01:ab:6c:42:57:46:a8:fe:e6:b1:e8:
61:91:e0:fa:00:f2:f7:d7:8a:fe:5b:56:ab:79:70:73:24:9e:
fc:e9:7f:19:f2:48:d2:79:e3:a9:e3:bf:e3:03:43:c0:81:ad:
ee:9a:5f:59:55:fe:34:5e:b4:89:a3:fa:1f:f3:60:2a:9e:11:
86:5c:c4:e0:cf:01:d7:e6:8d:be:53:87:cf:81:d5:50:35:a6:
d4:e7:d0:b4:05:4c:a2:3e:1f:ce:b1:23:06:fd:00:ab:9a:ec:
b0:d9:42:9f:fe:ef:2a:8c:0a:75:b3:18:c4:02:ee:9e:4e:5e:
32:bf:6d:dd:82:4d:68:8d:72:9f:ec:c9:7d:5a:ee:8b:9e:53:
fe:9e:38:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 23:56:06 2025 by rpki-client