Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/1fa945-50e7-479a-9d92-ddcd4d935030/1/W-73pMkNHv8HftHniN2e8WOZHnY.roa
File: W-73pMkNHv8HftHniN2e8WOZHnY.roa (raw, json)
Hash identifier: Is/tQYtv73up1uWE5Zq6iTFzCA48VzlN6VFV7HFABm4=
Subject key identifier: 5B:EE:F7:A4:C9:0D:1E:FF:07:7E:D1:E7:88:DD:9E:F1:63:99:1E:76
Certificate issuer: /CN=78d636c505d56af42a414c167d52407d356b3d0b
Certificate serial: 095A9A8C
Authority key identifier: 78:D6:36:C5:05:D5:6A:F4:2A:41:4C:16:7D:52:40:7D:35:6B:3D:0B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eNY2xQXVavQqQUwWfVJAfTVrPQs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/1fa945-50e7-479a-9d92-ddcd4d935030/1/W-73pMkNHv8HftHniN2e8WOZHnY.roa
Signing time: Sat 01 Jan 2022 07:53:39 +0000
ROA not before: Sat 01 Jan 2022 07:53:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 33891
IP address blocks: 188.65.144.0/21 maxlen: 21
91.204.168.0/22 maxlen: 22
2a00:1aa0::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 156932748 (0x95a9a8c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=78d636c505d56af42a414c167d52407d356b3d0b
Validity
Not Before: Jan 1 07:53:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5beef7a4c90d1eff077ed1e788dd9ef163991e76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:e0:3f:75:ba:3d:0a:41:95:6c:d9:60:a2:d6:
35:65:d1:2f:1a:48:da:29:3e:26:29:35:ea:46:5f:
25:06:7c:85:90:d6:9f:4a:1e:79:10:f2:f5:48:6c:
ec:99:e7:83:6d:d0:a3:6e:52:31:ce:a1:4d:78:50:
fc:d8:6d:13:fd:e9:32:b9:99:fd:4b:45:59:e6:02:
55:73:34:be:61:10:8d:72:a8:3a:82:3a:bd:7f:14:
f3:54:17:bb:88:b8:61:d4:54:d8:2d:3e:7e:b7:f6:
50:f7:d2:b8:fc:ac:64:06:7b:f8:5f:25:91:37:31:
46:d4:93:f4:05:d5:15:e3:78:a6:5a:03:d7:8a:ca:
35:d3:c9:67:f3:cb:0d:8e:6f:09:e8:5c:c4:45:50:
24:23:91:0c:50:a0:ed:5f:33:36:53:65:8b:0f:e5:
9b:7f:56:90:d5:45:be:28:55:5f:27:5a:0a:2c:9d:
38:1a:7c:0a:20:20:d7:65:a8:d9:e7:06:b0:91:9b:
ad:bf:f4:ac:5b:92:43:cc:ef:25:fe:b0:94:8a:55:
c3:70:3a:f9:0f:35:05:41:f3:05:4f:cb:85:49:b3:
d0:c8:cd:f5:d1:97:eb:a2:ce:54:f2:f2:43:60:d9:
72:71:c8:2b:f0:f0:89:b9:c6:54:7c:3f:88:9d:60:
61:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:EE:F7:A4:C9:0D:1E:FF:07:7E:D1:E7:88:DD:9E:F1:63:99:1E:76
X509v3 Authority Key Identifier:
keyid:78:D6:36:C5:05:D5:6A:F4:2A:41:4C:16:7D:52:40:7D:35:6B:3D:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eNY2xQXVavQqQUwWfVJAfTVrPQs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/1fa945-50e7-479a-9d92-ddcd4d935030/1/W-73pMkNHv8HftHniN2e8WOZHnY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/1fa945-50e7-479a-9d92-ddcd4d935030/1/eNY2xQXVavQqQUwWfVJAfTVrPQs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.204.168.0/22
188.65.144.0/21
IPv6:
2a00:1aa0::/32
Signature Algorithm: sha256WithRSAEncryption
10:a1:c0:01:ef:40:9c:17:ab:f5:86:d1:45:d5:08:db:68:04:
89:0b:8c:b9:30:69:eb:43:dd:37:27:33:a6:e0:8b:fd:17:f2:
4b:d3:03:98:a5:60:f3:da:da:3e:d1:22:26:67:0e:91:ce:b2:
14:c6:dd:df:cf:07:15:c8:09:fc:55:8e:15:8c:07:fb:6c:dd:
f9:b1:56:dc:88:92:00:f4:5d:88:c5:6b:92:1e:72:4f:12:d3:
a6:f6:5e:22:6b:9f:89:75:0f:98:3e:2f:a4:df:c7:67:77:97:
82:22:32:33:d8:4d:66:75:b8:5e:21:7d:96:26:6c:ed:52:88:
a7:af:4e:93:ec:42:3f:be:41:e2:be:30:39:15:da:80:09:a8:
f7:df:dc:4a:21:0e:40:73:d4:19:ad:c2:3f:49:aa:92:7a:2f:
66:d1:9b:03:43:68:8a:3f:49:1f:2b:32:3f:68:16:30:26:fe:
2c:6c:36:67:43:22:f2:81:2c:22:48:ab:a0:52:76:8d:51:20:
35:4c:07:38:45:44:ee:ef:88:87:1d:6a:f0:ce:1f:ee:7a:8f:
a7:cc:53:c0:c4:41:73:24:33:bf:df:9a:76:2f:44:5e:2b:0c:
f6:8f:46:b5:2a:14:ce:09:bf:6c:a8:72:62:90:7c:ca:4f:1c:
91:75:51:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 09:52:59 2025 by rpki-client