Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/89fea1-0e31-40a8-bc84-fd040767e199/1/Kp8oRVZEwaX_qIbofIngPzXZ2hM.roa
File: Kp8oRVZEwaX_qIbofIngPzXZ2hM.roa (raw, json)
Hash identifier: 6S2zzN4bcxSTLaFAXEoHMQQofGiI9zkadrC3/ZsL//8=
Subject key identifier: 2A:9F:28:45:56:44:C1:A5:FF:A8:86:E8:7C:89:E0:3F:35:D9:DA:13
Certificate issuer: /CN=823c757e5ffbde563f27a95d6d97a498c312252e
Certificate serial: 1486A9DE
Authority key identifier: 82:3C:75:7E:5F:FB:DE:56:3F:27:A9:5D:6D:97:A4:98:C3:12:25:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gjx1fl_73lY_J6ldbZekmMMSJS4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/89fea1-0e31-40a8-bc84-fd040767e199/1/Kp8oRVZEwaX_qIbofIngPzXZ2hM.roa
Signing time: Sat 01 Jan 2022 03:01:48 +0000
ROA not before: Sat 01 Jan 2022 03:01:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 19330
IP address blocks: 193.58.199.0/24 maxlen: 24
212.121.37.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 344369630 (0x1486a9de)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=823c757e5ffbde563f27a95d6d97a498c312252e
Validity
Not Before: Jan 1 03:01:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2a9f28455644c1a5ffa886e87c89e03f35d9da13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fa:d0:f1:cf:94:8d:09:56:09:e5:94:3a:8b:61:
87:78:c5:96:3b:49:58:fe:ad:46:4e:45:c1:ab:d9:
f4:e9:b9:83:70:6a:4d:a8:88:b1:37:e0:4f:a5:bc:
0c:32:41:b7:12:26:5b:64:50:52:53:f8:f1:11:2e:
13:1d:02:44:77:65:2f:8b:6f:97:a5:26:66:e1:ff:
85:6c:00:f3:98:d4:25:f8:c6:a6:54:e1:a8:93:34:
af:cc:39:3c:7a:9a:9f:d8:f5:74:91:0f:d4:e9:88:
a6:63:25:cd:97:60:47:7b:bb:47:33:70:a1:92:56:
ff:d9:c6:5d:c0:81:88:2c:de:ee:40:26:4f:16:cd:
65:c9:8f:5d:a6:83:3f:bb:d3:dc:23:f1:be:4a:c8:
dd:08:58:05:1d:a6:e0:35:c7:5a:b7:3b:f4:00:50:
22:75:66:d9:4a:4b:52:3d:c5:fc:3b:f3:92:b5:ab:
bb:c5:d2:61:65:33:74:05:17:d6:dc:ad:d0:3c:42:
81:38:9e:64:6d:b6:cf:f1:1a:66:ca:6d:16:ec:91:
55:b6:77:be:0a:e3:60:27:04:79:45:03:88:d8:a1:
a1:5b:b6:93:84:a7:fe:69:d9:a8:33:95:6b:5a:7a:
4d:f2:51:a6:28:b8:d7:2d:65:1e:05:85:f3:a8:df:
b3:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:9F:28:45:56:44:C1:A5:FF:A8:86:E8:7C:89:E0:3F:35:D9:DA:13
X509v3 Authority Key Identifier:
keyid:82:3C:75:7E:5F:FB:DE:56:3F:27:A9:5D:6D:97:A4:98:C3:12:25:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gjx1fl_73lY_J6ldbZekmMMSJS4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/89fea1-0e31-40a8-bc84-fd040767e199/1/Kp8oRVZEwaX_qIbofIngPzXZ2hM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/89fea1-0e31-40a8-bc84-fd040767e199/1/gjx1fl_73lY_J6ldbZekmMMSJS4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.58.199.0/24
212.121.37.0/24
Signature Algorithm: sha256WithRSAEncryption
50:fc:10:3f:93:37:0a:2d:c6:6f:87:4b:0b:c6:b4:d0:ae:32:
f5:42:a4:ce:27:c6:d7:4b:f4:c6:68:2e:5a:62:30:12:a3:e2:
62:3b:5d:33:43:1f:a8:5a:05:e4:09:01:db:89:cf:f5:a3:3a:
88:05:64:d0:1d:ab:ef:c0:c6:4b:e6:aa:ac:fd:b3:1e:e3:0c:
df:77:81:c1:8c:13:98:40:63:8a:fc:b0:8b:01:57:e6:2f:12:
c7:a7:af:9a:ca:da:21:a5:54:a5:72:d8:2f:2a:6a:c4:e5:cd:
84:da:f0:cf:ff:93:d0:08:b5:10:a5:22:f8:3f:f2:bd:83:00:
c2:e1:e7:c5:02:e4:75:85:50:bf:12:61:31:43:18:6c:40:80:
66:e6:37:93:eb:b5:d0:cb:da:8f:33:4f:1d:88:4c:fc:a7:de:
fb:88:a1:4c:62:a0:63:19:63:64:f1:6d:30:72:68:7c:39:a1:
aa:00:fd:13:dc:9b:8b:df:f7:20:66:42:74:ad:ef:68:60:a2:
ea:e8:20:51:90:91:13:de:c4:1a:01:8b:33:a5:27:ac:b5:77:
4a:e6:66:b6:6a:70:0a:d6:98:e6:30:5e:59:a1:ba:63:e1:11:
93:a4:8a:23:db:85:2f:a0:c8:86:db:8e:83:03:a9:ba:59:a2:
1c:42:7d:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 18:10:33 2025 by rpki-client