Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/7dc9ce-9862-4277-823f-5e090a30f4dc/1/W094IgUAZGtoEfEdLjkdeN_UlmA.roa
File: W094IgUAZGtoEfEdLjkdeN_UlmA.roa (raw, json)
Hash identifier: 2xR/Kg6kR3lfnM0+G2+wK82JiUYHL69Astjkd27FJNM=
Subject key identifier: 5B:4F:78:22:05:00:64:6B:68:11:F1:1D:2E:39:1D:78:DF:D4:96:60
Certificate issuer: /CN=b2ddd07ccd9da3ad3e80a2a7ac34ac9666d7d3dd
Certificate serial: A28681
Authority key identifier: B2:DD:D0:7C:CD:9D:A3:AD:3E:80:A2:A7:AC:34:AC:96:66:D7:D3:DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/st3QfM2do60-gKKnrDSslmbX090.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/7dc9ce-9862-4277-823f-5e090a30f4dc/1/W094IgUAZGtoEfEdLjkdeN_UlmA.roa
Signing time: Sat 01 Jan 2022 02:02:10 +0000
ROA not before: Sat 01 Jan 2022 02:02:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211261
IP address blocks: 5.253.158.0/24 maxlen: 24
5.253.159.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10651265 (0xa28681)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2ddd07ccd9da3ad3e80a2a7ac34ac9666d7d3dd
Validity
Not Before: Jan 1 02:02:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5b4f78220500646b6811f11d2e391d78dfd49660
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:67:6d:c2:7f:30:a6:b5:5a:94:2b:d7:f8:38:
47:39:0a:67:d1:94:46:1c:84:02:68:1a:6f:4a:3f:
b4:7e:70:ed:30:3e:f9:c2:4c:2c:27:bd:71:f8:60:
dc:08:75:4c:5f:d5:d6:85:38:74:28:e0:3f:a3:99:
0a:6c:b7:b4:1c:f6:8c:d1:70:f1:64:2c:ec:fd:c2:
ae:cb:59:3a:1f:fc:bc:eb:c4:3c:9c:70:c8:b2:9b:
ff:d9:a7:8a:56:42:41:51:ae:bf:b1:8e:ef:c3:c9:
b0:75:bb:79:e5:a1:19:8f:02:67:95:e5:a0:dd:56:
19:c1:70:17:1f:08:cd:e7:13:bd:e8:06:ed:16:90:
3a:1f:0f:93:53:12:ad:60:74:46:ea:4a:e5:b5:43:
23:13:ac:bd:85:05:e0:bb:f4:b6:a0:23:ec:23:45:
f4:75:97:ea:35:09:ea:bc:da:ee:0d:52:2f:99:c0:
a1:22:c4:c2:35:25:24:72:5d:9d:be:ba:47:ec:21:
d3:df:f4:17:8c:48:45:61:7d:c1:d8:48:db:6d:65:
9e:a4:54:4b:93:34:f4:28:22:d3:1b:a0:a3:33:80:
bb:dc:67:aa:af:b7:77:53:ed:00:e4:98:71:23:b4:
48:44:2b:a1:ca:29:6c:28:2a:f3:51:f0:4b:4d:13:
43:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:4F:78:22:05:00:64:6B:68:11:F1:1D:2E:39:1D:78:DF:D4:96:60
X509v3 Authority Key Identifier:
keyid:B2:DD:D0:7C:CD:9D:A3:AD:3E:80:A2:A7:AC:34:AC:96:66:D7:D3:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/st3QfM2do60-gKKnrDSslmbX090.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/7dc9ce-9862-4277-823f-5e090a30f4dc/1/W094IgUAZGtoEfEdLjkdeN_UlmA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/7dc9ce-9862-4277-823f-5e090a30f4dc/1/st3QfM2do60-gKKnrDSslmbX090.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.253.158.0/23
Signature Algorithm: sha256WithRSAEncryption
9b:ff:de:30:4a:a0:b3:fa:e0:8a:e2:56:5e:5f:cd:d0:46:a7:
ac:91:67:c7:66:b9:72:7c:98:4d:46:a0:15:6f:db:df:f2:d4:
f8:57:2a:8d:25:f1:a6:7d:ed:0c:9e:e7:73:88:9d:de:e9:74:
63:78:43:b1:70:55:03:e1:e8:fd:a4:f2:8a:43:33:3c:aa:3e:
4c:9f:c6:d2:66:c7:30:3f:c8:1f:f5:45:48:45:ae:22:2e:a5:
a8:11:24:90:49:83:44:0f:13:b1:99:bf:b8:a4:f6:42:b5:c2:
a9:6a:49:93:fa:06:92:6c:61:9c:f9:e7:17:cd:d7:97:a5:85:
6d:cc:30:16:95:4c:6f:7b:81:f5:5d:0e:01:4e:a3:15:31:0b:
f6:24:d5:1d:fb:e7:7b:ea:dd:f6:de:b5:93:7a:e2:3f:8d:9a:
1c:4e:0a:0f:6a:51:93:41:54:ae:17:61:b2:ca:34:ba:f3:c3:
7c:81:0b:70:93:99:0c:8a:b8:e3:a8:59:55:7b:dd:ab:6a:cc:
b5:35:8e:98:84:21:18:17:98:c7:c0:5b:8f:f5:17:51:76:03:
ef:3f:8f:7a:55:36:28:d9:c2:9b:68:55:af:5c:5b:97:f6:e6:
75:92:1e:77:0f:62:44:fe:46:dd:6b:72:e1:86:12:8e:06:41:
f5:56:15:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 00:47:50 2025 by rpki-client