Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/fd596a-3f54-4e06-8620-6e0d213f484a/1/PF9DjGUGzZQmrbwP9d7IiynGgp8.roa
File: PF9DjGUGzZQmrbwP9d7IiynGgp8.roa (raw, json)
Hash identifier: K3C5+Lquj+UExYUDqRifSqW6WGLkS6K1BLYbCxztc3M=
Subject key identifier: 3C:5F:43:8C:65:06:CD:94:26:AD:BC:0F:F5:DE:C8:8B:29:C6:82:9F
Certificate issuer: /CN=af88fde6fadbb6b2c1db6fe41f829d1f2015be0b
Certificate serial: 01A656
Authority key identifier: AF:88:FD:E6:FA:DB:B6:B2:C1:DB:6F:E4:1F:82:9D:1F:20:15:BE:0B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r4j95vrbtrLB22_kH4KdHyAVvgs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/fd596a-3f54-4e06-8620-6e0d213f484a/1/PF9DjGUGzZQmrbwP9d7IiynGgp8.roa
Signing time: Mon 23 May 2022 14:31:30 +0000
ROA not before: Mon 23 May 2022 14:31:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205282
IP address blocks: 5.181.161.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 108118 (0x1a656)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af88fde6fadbb6b2c1db6fe41f829d1f2015be0b
Validity
Not Before: May 23 14:31:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3c5f438c6506cd9426adbc0ff5dec88b29c6829f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:b0:04:e8:e5:b9:51:70:39:96:14:87:76:85:
12:7a:96:0b:10:c0:c7:9f:ad:03:86:34:3c:98:e7:
15:92:5b:a8:e4:c5:2b:91:e0:1d:68:f0:6b:e7:67:
f8:53:eb:b8:b1:a0:57:ae:93:f8:ff:2b:bd:92:9f:
56:00:23:78:7d:03:03:f6:8d:aa:27:5b:80:9f:de:
19:0a:b5:fd:d4:f5:a6:a0:9c:5b:82:1e:ee:32:b9:
05:4a:62:bb:64:a9:59:2d:9c:03:ba:3f:f7:15:d3:
02:b0:2d:b2:15:24:ae:6d:01:eb:5b:78:e9:3d:97:
28:8d:a4:c5:0a:a7:4c:dd:07:bb:aa:72:23:5d:26:
2f:8d:09:99:a5:c7:1e:9e:c8:5d:ed:2e:8e:1c:a8:
34:40:52:92:04:13:7c:96:e2:82:27:75:ea:25:9b:
e7:48:4a:f9:0a:01:0d:9b:0c:65:05:ad:46:f3:dd:
ca:e0:e4:19:c6:1d:59:95:30:e4:f7:75:8d:7d:25:
c9:6d:a5:7e:8c:82:89:a2:3a:48:60:fd:db:87:1b:
98:cd:e6:40:df:10:c6:a8:58:af:98:c8:15:e6:51:
8e:8f:ac:27:75:85:00:0f:5b:65:b6:fc:77:88:b6:
35:6f:b9:05:c4:36:e4:d3:8b:ce:1d:6c:80:51:7e:
f4:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:5F:43:8C:65:06:CD:94:26:AD:BC:0F:F5:DE:C8:8B:29:C6:82:9F
X509v3 Authority Key Identifier:
keyid:AF:88:FD:E6:FA:DB:B6:B2:C1:DB:6F:E4:1F:82:9D:1F:20:15:BE:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r4j95vrbtrLB22_kH4KdHyAVvgs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/fd596a-3f54-4e06-8620-6e0d213f484a/1/PF9DjGUGzZQmrbwP9d7IiynGgp8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/fd596a-3f54-4e06-8620-6e0d213f484a/1/r4j95vrbtrLB22_kH4KdHyAVvgs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.181.161.0/24
Signature Algorithm: sha256WithRSAEncryption
09:22:24:38:26:43:b6:d9:a0:6d:48:d3:d3:f7:60:92:b0:6c:
43:1a:71:d5:0f:07:5c:db:e6:5c:36:0b:f4:79:af:e8:62:8b:
b5:4c:31:44:7f:41:15:22:57:92:b2:93:17:69:e7:ed:11:ae:
ea:3a:7d:b8:5d:96:9d:e3:41:95:2d:19:f0:7b:44:b4:93:67:
77:7f:01:ec:5e:e9:68:82:41:94:62:32:4a:25:28:71:5a:5d:
58:8c:10:db:48:3d:ec:10:8a:81:fb:2a:a7:cc:07:e1:99:de:
e4:09:16:42:ba:70:02:9d:80:54:94:5c:4d:17:7b:80:a4:f6:
e3:ad:e5:1e:49:8b:e3:f5:e7:e0:fa:de:e3:4d:e5:4d:0f:4d:
c2:7f:46:81:44:ac:e6:d7:fe:c9:d1:08:2d:96:a7:07:01:0b:
9c:6b:98:80:4e:a0:41:f6:20:ea:0d:7f:08:7d:db:d3:2e:74:
3f:4e:79:7b:32:13:9b:eb:ff:8b:df:a3:eb:c0:32:63:d5:ac:
db:38:c5:7b:2b:49:dc:77:36:4c:c7:4b:2e:1d:8f:8e:d0:51:
1e:dd:24:ac:60:1e:61:75:53:58:e3:53:b6:ab:50:2c:d1:ae:
18:9d:3f:55:cb:e7:b4:03:58:44:1e:c8:e5:3d:c3:16:97:96:
10:62:e2:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 03:51:13 2025 by rpki-client