Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/lPzd1aEeyFabmrhbqMW9yeQjpAI.roa
File: lPzd1aEeyFabmrhbqMW9yeQjpAI.roa (raw, json)
Hash identifier: aPjBXgOylRWGQkWLau+eN6zLxDArm7/WRTlpNghw1OM=
Subject key identifier: 94:FC:DD:D5:A1:1E:C8:56:9B:9A:B8:5B:A8:C5:BD:C9:E4:23:A4:02
Certificate issuer: /CN=546834e68890f3986a1b0457ce0f54ae03c2d76b
Certificate serial: 3A72772B
Authority key identifier: 54:68:34:E6:88:90:F3:98:6A:1B:04:57:CE:0F:54:AE:03:C2:D7:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/lPzd1aEeyFabmrhbqMW9yeQjpAI.roa
Signing time: Sat 01 Jan 2022 04:51:55 +0000
ROA not before: Sat 01 Jan 2022 04:51:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43153
IP address blocks: 195.136.160.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 980580139 (0x3a72772b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=546834e68890f3986a1b0457ce0f54ae03c2d76b
Validity
Not Before: Jan 1 04:51:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=94fcddd5a11ec8569b9ab85ba8c5bdc9e423a402
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:5f:49:a0:27:29:1b:e6:7a:30:bc:b9:09:d9:
91:5a:fc:52:65:1a:e9:f2:88:fe:47:91:4b:9c:96:
b9:3d:cb:b6:ee:7f:93:25:1a:b7:bc:ec:1d:d5:c5:
bc:40:59:4d:d1:15:c5:8f:cb:0f:b3:73:1a:60:b9:
a5:82:46:2a:b9:53:72:f7:01:2b:48:90:d3:4d:ec:
61:6b:69:81:cf:5b:44:ba:b0:0a:33:a5:bb:54:39:
4f:21:e0:c9:2f:86:39:71:be:9b:44:4c:56:9d:53:
85:ea:d8:ae:ff:00:eb:03:24:7f:19:5e:65:09:8d:
32:ba:38:81:2d:21:7f:cf:f5:af:1f:2f:af:8f:67:
34:1b:75:7e:2d:24:3a:16:9a:b7:70:19:66:f6:45:
fb:7d:3e:d4:6a:67:5c:af:98:30:89:82:ad:e0:7c:
7e:5e:e5:e2:d2:cd:e0:d6:da:db:e4:0b:1b:f4:dc:
1d:74:df:67:a7:46:3c:0e:34:d3:e9:92:89:d5:21:
79:35:63:6c:23:0a:27:2c:b8:0d:82:d9:58:f1:70:
50:9f:db:4c:12:13:b6:1f:78:d9:d7:62:fe:dd:0b:
d3:6e:9f:7d:af:f8:bb:ec:0e:d2:59:06:ca:cb:12:
44:51:e9:9d:c4:5a:a6:6f:5e:9f:4d:2e:8d:50:f9:
5b:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:FC:DD:D5:A1:1E:C8:56:9B:9A:B8:5B:A8:C5:BD:C9:E4:23:A4:02
X509v3 Authority Key Identifier:
keyid:54:68:34:E6:88:90:F3:98:6A:1B:04:57:CE:0F:54:AE:03:C2:D7:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/lPzd1aEeyFabmrhbqMW9yeQjpAI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/VGg05oiQ85hqGwRXzg9UrgPC12s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.136.160.0/23
Signature Algorithm: sha256WithRSAEncryption
73:57:31:04:b3:43:b0:c9:56:41:c6:44:b0:77:f7:ed:e2:ee:
4d:1a:53:5e:50:88:61:b7:d1:a6:34:68:5e:b0:98:93:43:8b:
ed:17:05:4e:1e:31:69:b6:36:7c:8e:ac:f3:2c:52:b9:90:8b:
ab:a6:38:26:1e:97:4b:6b:a1:cd:18:f6:76:8d:38:cb:7d:8e:
3c:54:fc:72:96:e2:13:e4:73:37:83:a8:24:18:ff:4d:e8:41:
18:0e:e0:63:6c:f8:2b:9c:a8:e3:fc:c5:2d:76:e5:ed:36:52:
c3:8f:de:8b:d1:f4:10:b8:b4:29:d2:d4:0a:94:51:34:c3:60:
3f:4d:5d:ac:ee:33:e3:84:94:38:46:6a:27:54:81:04:bb:1f:
07:78:f5:5a:80:71:56:8d:df:81:5c:f8:42:99:33:05:98:c1:
08:de:3b:6e:cc:c3:8b:d3:2f:af:8e:49:1e:9b:23:05:5e:60:
c2:48:bc:43:11:1c:05:48:df:d7:a3:b4:18:ac:bd:12:8a:43:
1a:62:44:64:32:a5:24:97:96:f3:49:c7:d1:76:97:91:4c:50:
51:ea:a0:17:4b:e0:a9:fe:2a:88:6b:6f:dd:8f:4c:1c:99:59:
70:10:29:8d:59:db:08:33:3d:bb:28:96:c5:fd:d9:8e:5f:9b:
9e:91:e4:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 21:57:43 2025 by rpki-client