Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/7df77e-dcd5-435a-8832-a9148c1bf5f9/1/1-U93vkX4Yb_VWIBq9kJnKTvcSBM.roa
File: 1-U93vkX4Yb_VWIBq9kJnKTvcSBM.roa (raw, json)
Hash identifier: 7pQCZjS2z6+K/Y8xg7yaKW/1hpPkt6DGDMD6QllNOeo=
Subject key identifier: F9:4F:77:BE:45:F8:61:BF:D5:58:80:6A:F6:42:67:29:3B:DC:48:13
Certificate issuer: /CN=90af987383865a4afc67403b60d3f3389f695f5b
Certificate serial: 0185700B887832776618681360958CE03DE9
Authority key identifier: 90:AF:98:73:83:86:5A:4A:FC:67:40:3B:60:D3:F3:38:9F:69:5F:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kK-Yc4OGWkr8Z0A7YNPzOJ9pX1s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/7df77e-dcd5-435a-8832-a9148c1bf5f9/1/1-U93vkX4Yb_VWIBq9kJnKTvcSBM.roa
Signing time: Mon 02 Jan 2023 01:14:42 +0000
ROA not before: Mon 02 Jan 2023 01:14:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39855
IP address blocks: 185.76.149.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:0b:88:78:32:77:66:18:68:13:60:95:8c:e0:3d:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90af987383865a4afc67403b60d3f3389f695f5b
Validity
Not Before: Jan 2 01:14:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f94f77be45f861bfd558806af64267293bdc4813
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:d8:3f:3e:1d:75:27:b9:d1:28:5d:b3:fa:f2:
9f:a7:aa:7a:de:79:22:7d:81:7b:d2:bc:f5:fd:25:
db:81:7c:19:70:d6:28:80:cf:09:1b:41:3c:2f:df:
92:61:d9:d2:75:f9:5f:8a:87:fc:f0:6d:19:af:45:
41:85:6b:71:b4:cf:3e:71:ee:04:b4:00:54:39:3b:
a8:7d:30:2e:43:b9:d9:23:31:69:df:d2:73:4f:eb:
3d:57:c0:03:13:b7:b9:83:8f:6e:07:e5:57:c4:e8:
5a:0e:54:c4:cb:22:17:5e:82:02:d6:c0:ba:e5:1e:
8b:41:d5:be:c7:50:ee:17:23:93:32:5a:ee:d7:47:
1c:81:cc:f3:3c:8e:71:fb:4c:02:54:36:0d:1a:b5:
cb:5f:ad:67:6e:9b:b3:04:68:9c:82:7a:28:73:2e:
56:5d:34:51:04:20:81:50:32:a4:86:0c:f3:7c:03:
02:52:f2:c0:8d:d4:22:77:32:4c:3a:6e:52:76:f5:
3d:e9:32:09:82:a7:09:a9:38:79:f8:da:c9:ca:00:
ed:eb:ed:e9:03:c3:0b:29:98:da:ff:00:0f:cb:82:
a8:0b:ac:82:fa:eb:62:72:bd:76:11:f0:ff:91:c9:
3a:50:07:8d:18:49:69:00:78:9a:78:7e:23:c5:57:
b5:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:4F:77:BE:45:F8:61:BF:D5:58:80:6A:F6:42:67:29:3B:DC:48:13
X509v3 Authority Key Identifier:
keyid:90:AF:98:73:83:86:5A:4A:FC:67:40:3B:60:D3:F3:38:9F:69:5F:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kK-Yc4OGWkr8Z0A7YNPzOJ9pX1s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/7df77e-dcd5-435a-8832-a9148c1bf5f9/1/1-U93vkX4Yb_VWIBq9kJnKTvcSBM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/7df77e-dcd5-435a-8832-a9148c1bf5f9/1/kK-Yc4OGWkr8Z0A7YNPzOJ9pX1s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.76.149.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:80:6f:df:ff:a4:c1:ab:73:4b:b9:bc:dd:c9:25:3b:d7:23:
64:86:98:de:1f:22:9e:1f:27:2f:43:5e:c4:20:56:d4:76:2c:
37:a0:cd:79:25:5b:0d:ae:77:e3:0a:47:99:08:94:19:08:48:
1b:d3:3f:d7:ea:6c:5c:e9:31:42:c0:84:f7:74:be:93:7b:1e:
e1:50:0f:e6:62:d7:ce:59:89:d6:8e:cc:61:1d:dd:4b:73:7e:
a8:64:2e:c1:68:31:1c:48:9a:74:53:90:02:cf:79:d3:52:46:
41:db:20:04:fe:8f:60:a9:22:e8:ed:91:f5:31:b9:e9:92:71:
28:ed:bd:2f:81:ee:b3:b9:cd:7f:40:2b:8b:2d:0e:78:4c:84:
a2:57:85:78:ef:b4:92:b1:77:96:10:89:93:1f:33:7b:4c:35:
48:da:f1:c3:3c:31:84:39:54:79:f2:2d:c6:4b:67:50:7d:f7:
2c:4f:0a:2c:f4:d3:c6:7a:2f:29:f7:a6:3d:f3:9a:01:38:55:
72:77:e5:81:4f:72:df:8c:62:39:d5:8a:46:12:e1:0c:a9:90:
d0:c7:c6:91:ed:54:b2:98:0b:b9:cc:37:69:d7:4f:c3:33:ad:
f7:d4:a0:55:4b:9c:81:a2:b4:03:0f:a1:e0:ee:e7:22:f6:3a:
2e:09:fc:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 16:18:16 2025 by rpki-client