Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/207823-8bc3-45be-af9c-3c5127926612/1/_ZNCY8MbuV2FeVibOGD-u8IqWGU.roa
File: _ZNCY8MbuV2FeVibOGD-u8IqWGU.roa (raw, json)
Hash identifier: FDfMTpJhk4L431Pp7owG5AFIK/adoP+Dxw6Cf3q8xDY=
Subject key identifier: FD:93:42:63:C3:1B:B9:5D:85:79:58:9B:38:60:FE:BB:C2:2A:58:65
Certificate issuer: /CN=9c68d58b2d658ff20fdd0a44272c1db6f3cf7fc6
Certificate serial: 5689C2
Authority key identifier: 9C:68:D5:8B:2D:65:8F:F2:0F:DD:0A:44:27:2C:1D:B6:F3:CF:7F:C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nGjViy1lj_IP3QpEJywdtvPPf8Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/207823-8bc3-45be-af9c-3c5127926612/1/_ZNCY8MbuV2FeVibOGD-u8IqWGU.roa
Signing time: Thu 28 Apr 2022 10:17:08 +0000
ROA not before: Thu 28 Apr 2022 10:17:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 195.8.47.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5671362 (0x5689c2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9c68d58b2d658ff20fdd0a44272c1db6f3cf7fc6
Validity
Not Before: Apr 28 10:17:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fd934263c31bb95d8579589b3860febbc22a5865
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:e2:a0:eb:ba:e9:2b:36:d3:ee:4f:e3:bb:db:
5b:8e:a0:a8:3a:be:27:a3:7d:6c:be:ab:db:33:e7:
51:b0:f4:37:38:30:9b:2d:cb:ea:b3:1d:b8:44:25:
cd:49:7e:ff:b3:6a:61:fc:57:23:39:d8:9f:de:b9:
4e:ba:b3:6d:04:e0:32:34:8e:91:14:10:d5:fa:91:
d7:52:77:29:34:4e:4d:d7:5f:60:b5:b4:68:a1:27:
40:db:84:23:bf:e3:99:b2:9a:82:73:db:39:90:6e:
46:42:ae:86:3c:6d:25:46:b3:d2:c5:88:4b:43:00:
dc:dd:9e:3e:12:4c:e1:46:82:45:61:81:51:6e:61:
a7:80:db:b0:b2:24:c8:34:c4:8b:92:fe:cc:86:05:
c7:6a:6f:86:05:fa:2d:7a:e3:41:16:43:90:9c:f1:
4a:4b:b6:48:a9:ac:19:89:fb:f8:61:60:e8:ef:45:
b7:1c:fe:ff:4c:0d:3d:53:b9:70:90:d4:ca:e1:c7:
a3:92:83:6f:fb:54:7f:46:5a:38:ad:ac:32:50:53:
26:20:7b:fa:27:53:91:f1:01:40:5a:60:ac:34:6e:
cf:79:1f:e4:dc:e0:67:f5:21:de:51:15:b8:20:6d:
a8:d8:80:0b:06:39:83:fc:4c:e5:da:8a:8e:72:07:
96:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:93:42:63:C3:1B:B9:5D:85:79:58:9B:38:60:FE:BB:C2:2A:58:65
X509v3 Authority Key Identifier:
keyid:9C:68:D5:8B:2D:65:8F:F2:0F:DD:0A:44:27:2C:1D:B6:F3:CF:7F:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nGjViy1lj_IP3QpEJywdtvPPf8Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/207823-8bc3-45be-af9c-3c5127926612/1/_ZNCY8MbuV2FeVibOGD-u8IqWGU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/207823-8bc3-45be-af9c-3c5127926612/1/nGjViy1lj_IP3QpEJywdtvPPf8Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.8.47.0/24
Signature Algorithm: sha256WithRSAEncryption
11:dd:5e:62:ab:8e:25:6c:cd:4d:38:65:ff:69:dc:45:54:43:
a4:6c:5d:ac:6f:00:89:cd:f2:88:b5:9f:09:3a:df:9d:ea:2f:
72:aa:27:bc:7a:43:0f:04:bd:47:9f:1d:59:5d:3b:7b:0e:cd:
cd:ea:f3:9f:76:59:ff:7e:f3:bc:85:44:e0:fd:c4:99:b0:4f:
16:de:e4:11:32:bc:65:58:bc:42:16:1e:06:88:0c:95:fb:71:
2d:78:9f:33:7d:7b:c8:76:d6:81:bd:2e:13:3d:38:20:87:ed:
a6:aa:62:6a:96:d2:53:23:14:da:d3:c1:cd:76:e3:d9:8f:44:
73:0f:27:df:be:67:c2:d7:03:cf:5a:45:ef:6e:bd:5c:d3:a1:
a6:67:b9:52:43:2e:8d:e1:d0:a8:ca:91:5a:f8:db:8d:72:7c:
a9:42:31:c5:60:38:90:fd:0a:8e:0d:3c:41:33:30:13:71:be:
9f:97:69:34:0a:44:4d:9a:a9:00:40:8b:83:9d:bd:4a:e2:3e:
d3:41:71:c5:eb:f7:d2:a3:01:b8:11:f5:01:02:30:af:85:4b:
6f:a9:31:54:fd:66:c6:27:e8:b1:31:ff:0e:85:0e:43:d5:1b:
09:27:48:c3:94:b8:8d:10:d2:a1:a9:72:43:04:51:34:5f:f8:
e5:27:9d:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 12:39:38 2025 by rpki-client