Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/ySD_Q_pOi6-4fpBKCl3JeMh6QTE.roa
File: ySD_Q_pOi6-4fpBKCl3JeMh6QTE.roa (raw, json)
Hash identifier: P5txptMEsMoHWpKIKztit/o03CcxU6hiRPUYD1w/qEg=
Subject key identifier: C9:20:FF:43:FA:4E:8B:AF:B8:7E:90:4A:0A:5D:C9:78:C8:7A:41:31
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 27A3A8AD
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/ySD_Q_pOi6-4fpBKCl3JeMh6QTE.roa
Signing time: Sat 01 Jan 2022 16:08:29 +0000
ROA not before: Sat 01 Jan 2022 16:08:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48323
IP address blocks: 93.170.128.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 665036973 (0x27a3a8ad)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 1 16:08:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c920ff43fa4e8bafb87e904a0a5dc978c87a4131
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:36:f0:14:ee:30:4b:8c:2c:0e:ba:38:a0:48:
17:7f:4c:bb:81:f8:45:b1:ba:b5:73:3a:f4:60:d6:
3d:48:3e:f4:a5:f1:e6:e3:a3:32:11:d6:08:ef:b3:
cf:35:01:b4:06:bd:8e:dd:d3:c5:75:cc:2a:8c:3f:
b9:8f:4e:b7:fc:84:4a:84:73:a9:9d:0f:b5:76:57:
39:47:86:a7:d3:73:f7:51:1b:40:30:f4:f2:e1:c9:
e2:ea:5c:ae:08:92:20:ae:9f:5c:cb:b6:3c:b0:38:
17:a3:b4:44:83:b5:ce:1e:8d:9c:e5:a7:d1:02:2f:
d5:23:c8:33:24:3d:bc:d1:c2:a5:23:9f:d2:39:b3:
b0:9c:19:c2:e9:a0:35:04:f6:38:76:db:fe:52:ed:
a2:ca:db:00:12:a6:d4:75:fb:12:cf:97:a8:59:3f:
08:80:22:0f:be:0d:75:3e:41:03:29:78:80:a4:57:
3f:a8:42:bc:71:b7:5b:50:09:07:73:11:63:0d:6e:
2f:e7:b3:78:d2:b9:c9:86:58:71:9a:bd:8f:36:4f:
7b:5d:77:4c:67:8c:6d:ec:8a:40:10:9f:94:dd:cd:
6f:5d:28:24:fe:d8:30:8e:60:23:c2:31:4e:bb:2d:
ff:4f:3d:e2:47:40:33:1b:57:49:60:f9:3f:d0:09:
1e:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:20:FF:43:FA:4E:8B:AF:B8:7E:90:4A:0A:5D:C9:78:C8:7A:41:31
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/ySD_Q_pOi6-4fpBKCl3JeMh6QTE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.170.128.0/22
Signature Algorithm: sha256WithRSAEncryption
b1:e3:94:9b:1e:7c:65:16:51:64:01:e3:62:43:64:e4:81:6b:
e4:41:4f:45:36:88:0b:5f:4e:66:1b:77:c5:63:1b:6c:77:53:
a3:be:a6:35:66:38:44:41:c8:8e:ee:63:98:3c:3e:99:fd:d4:
3c:29:ff:2c:4b:35:61:58:25:d4:2d:12:43:6f:95:52:fa:5b:
72:12:8a:1f:f2:44:30:79:31:7d:33:a7:d6:c4:7d:05:67:44:
49:14:08:04:3f:61:96:34:80:b5:f7:44:4c:0a:9f:99:20:d7:
08:66:91:24:b9:ec:a9:83:37:46:28:50:74:6d:3c:19:47:ef:
c2:16:fb:d9:3d:c0:6e:8a:7a:5a:89:5f:aa:6c:6b:e7:46:4d:
56:1e:88:af:eb:1f:8c:6f:bf:41:59:0f:88:e8:12:68:ba:51:
06:13:ed:53:90:61:2a:d0:10:1b:27:ff:fc:00:09:f3:e4:c7:
e6:89:93:8e:c2:76:ba:a6:ba:56:ec:3e:3d:3a:5d:ed:e8:07:
06:83:a2:17:f2:69:b6:3b:40:aa:5c:14:29:f4:1e:ce:b2:0d:
3d:5d:87:27:33:d2:ea:94:89:c0:a3:7a:f9:94:f6:79:78:d7:
91:a6:e2:9c:de:87:6c:52:15:4f:08:45:e4:64:58:a7:62:e2:
74:7f:d2:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 23:41:37 2025 by rpki-client