Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/sv14Swpuz9ry9zXITZp54qYYyIc.roa
File: sv14Swpuz9ry9zXITZp54qYYyIc.roa (raw, json)
Hash identifier: rTz94hcWPu6AJkSbZmyt3t1+E1XRExvxp+GxTlhyCfI=
Subject key identifier: B2:FD:78:4B:0A:6E:CF:DA:F2:F7:35:C8:4D:9A:79:E2:A6:18:C8:87
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 018570955CDA2343FB48C687B61CD8ADC542
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/sv14Swpuz9ry9zXITZp54qYYyIc.roa
Signing time: Mon 02 Jan 2023 03:45:14 +0000
ROA not before: Mon 02 Jan 2023 03:45:14 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57712
IP address blocks: 93.171.228.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:95:5c:da:23:43:fb:48:c6:87:b6:1c:d8:ad:c5:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 2 03:45:14 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b2fd784b0a6ecfdaf2f735c84d9a79e2a618c887
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:c7:7d:46:9e:97:de:b4:1b:5c:0c:97:73:1b:
60:f8:91:5b:8a:eb:b3:8a:2e:fc:0c:2e:2e:91:1b:
e3:7f:7f:e3:d4:50:1a:ee:40:f3:7d:db:50:8c:56:
5c:26:ce:1e:8e:d8:24:5d:91:f7:48:f7:92:e2:19:
89:2c:d1:10:ac:90:6f:ad:28:2f:5b:db:09:a8:8b:
0f:bb:a5:d1:3e:41:ca:15:a1:03:ee:f2:0d:63:6b:
1f:8b:cd:35:63:c8:57:3f:e3:4b:04:27:60:bf:a4:
86:c5:60:96:ea:91:07:04:08:82:30:76:f3:5c:eb:
fe:6f:7e:62:ce:61:46:c9:66:b0:ec:bf:c6:5a:ad:
57:bb:61:5c:14:bb:7e:fd:82:2f:77:c1:eb:79:9c:
20:ac:c5:5a:9e:1a:6b:82:f8:37:56:cc:e1:00:9a:
c1:cc:3f:da:0b:c2:5d:be:0c:1e:9e:9a:89:be:d7:
b7:c9:cf:57:16:76:6f:10:66:83:14:fb:ff:a6:35:
80:8f:76:f0:d5:0f:e8:d0:25:43:3c:2e:b1:71:d5:
e7:0d:92:cf:4b:d2:1b:b2:52:4e:56:0d:39:a1:26:
ff:89:16:88:96:68:7f:48:a0:06:25:85:f3:ec:8f:
75:38:15:0d:52:f2:71:91:6b:99:49:36:ca:85:53:
8b:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:FD:78:4B:0A:6E:CF:DA:F2:F7:35:C8:4D:9A:79:E2:A6:18:C8:87
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/sv14Swpuz9ry9zXITZp54qYYyIc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.171.228.0/23
Signature Algorithm: sha256WithRSAEncryption
68:88:6c:12:77:06:4f:48:95:0c:97:b6:ad:d4:26:50:fd:6f:
10:f3:aa:96:9c:ae:63:f9:e7:a1:28:ee:c6:69:c5:ac:09:90:
7c:31:cd:72:72:d3:e6:0e:4f:b3:c9:85:27:da:2f:45:a5:5c:
86:d6:26:96:0f:fe:7c:e4:ea:11:02:58:4f:fd:bd:23:a1:90:
9d:c8:a9:e2:90:0c:56:df:a4:37:75:dd:56:68:e5:b5:55:fe:
86:82:92:4c:a3:46:75:45:5e:88:97:81:ea:68:e2:40:23:79:
db:89:3c:e7:95:bf:46:3d:3e:c7:1c:81:bf:9d:e2:08:16:23:
4c:9d:ee:ed:77:c8:34:5f:0f:71:41:18:6d:f7:81:87:f7:d4:
d1:c4:c2:df:39:ff:51:61:1c:14:c7:c2:1d:33:9c:a4:95:86:
3b:22:44:0b:d8:1d:a2:41:a4:df:d5:74:0c:55:ef:97:94:6a:
da:e4:1c:f8:f6:ba:87:23:49:e1:88:f1:91:47:ed:bc:04:ca:
8b:35:d3:e4:4b:86:41:52:27:ee:69:73:40:b8:e5:eb:8e:ac:
ad:a5:80:98:6a:5f:ba:cd:cf:f9:ae:f7:c2:48:b6:94:10:6b:
6d:ec:2f:28:18:85:ae:e9:e9:ed:33:d0:f1:66:9c:99:66:53:
02:72:84:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 23:56:12 2025 by rpki-client