Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/871064-8ab3-406d-9170-ed63cbb56e33/1/gZIEYHiaxU3Q0_AHmS83vyGvpuw.roa
File: gZIEYHiaxU3Q0_AHmS83vyGvpuw.roa (raw, json)
Hash identifier: L1q4bQqLYcJA7uhwAeTbhQyAy3t5AZkpUMzeQV4Z5lg=
Subject key identifier: 81:92:04:60:78:9A:C5:4D:D0:D3:F0:07:99:2F:37:BF:21:AF:A6:EC
Certificate issuer: /CN=6f6a32ddbc6531015e77d36d10c969d86013da4d
Certificate serial: 0210CA6D
Authority key identifier: 6F:6A:32:DD:BC:65:31:01:5E:77:D3:6D:10:C9:69:D8:60:13:DA:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b2oy3bxlMQFed9NtEMlp2GAT2k0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/871064-8ab3-406d-9170-ed63cbb56e33/1/gZIEYHiaxU3Q0_AHmS83vyGvpuw.roa
Signing time: Sat 01 Jan 2022 05:57:14 +0000
ROA not before: Sat 01 Jan 2022 05:57:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 81.90.176.0/22 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 34654829 (0x210ca6d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f6a32ddbc6531015e77d36d10c969d86013da4d
Validity
Not Before: Jan 1 05:57:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=81920460789ac54dd0d3f007992f37bf21afa6ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:c0:7f:d7:cb:6a:0f:41:fc:d7:28:66:aa:41:
f5:f0:e6:ad:c8:e2:9c:f9:48:23:d0:64:1b:b9:4f:
37:40:04:78:0c:e9:7a:44:49:d9:24:d7:00:97:d8:
c3:52:99:1c:7c:66:c8:7e:70:b8:b7:28:c6:38:f1:
6e:f5:7f:d9:56:89:bd:b8:f7:48:28:cd:57:6b:7f:
59:7a:24:96:09:ee:3b:89:e9:d8:f3:52:ef:03:dd:
11:6c:84:33:b2:f6:86:8f:4a:03:1f:3a:49:46:d9:
aa:99:3d:f2:13:1b:f2:e2:14:d4:f3:c5:f4:70:73:
94:08:6d:93:4c:11:3e:96:cd:80:f2:e1:f3:36:8f:
5f:c2:20:e2:f6:00:07:f2:bd:86:86:2a:bc:f5:e9:
0b:7d:13:f8:2e:de:51:19:da:d2:f0:ab:de:80:87:
62:01:e2:e6:2d:30:9d:ca:9a:fb:f4:3f:49:4b:f4:
20:e9:80:e7:7e:7a:83:0c:6d:1a:fe:3f:4e:50:45:
5b:ec:e2:e0:a5:e9:dd:fa:3f:e2:db:49:bf:22:8e:
5f:51:5b:f2:94:a6:7d:8b:0f:0e:03:06:2d:fa:2b:
34:70:0f:fc:0c:63:d9:f7:d6:8f:72:b9:a1:ac:15:
a1:53:b8:96:86:d4:8f:84:73:90:4f:39:06:25:2f:
f5:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:92:04:60:78:9A:C5:4D:D0:D3:F0:07:99:2F:37:BF:21:AF:A6:EC
X509v3 Authority Key Identifier:
keyid:6F:6A:32:DD:BC:65:31:01:5E:77:D3:6D:10:C9:69:D8:60:13:DA:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2oy3bxlMQFed9NtEMlp2GAT2k0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/871064-8ab3-406d-9170-ed63cbb56e33/1/gZIEYHiaxU3Q0_AHmS83vyGvpuw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/871064-8ab3-406d-9170-ed63cbb56e33/1/b2oy3bxlMQFed9NtEMlp2GAT2k0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.90.176.0/22
Signature Algorithm: sha256WithRSAEncryption
20:d6:09:f2:03:12:90:ec:19:ef:56:6f:e5:0c:f8:a7:ee:88:
15:78:94:b9:bc:d1:c3:d8:e5:1b:38:73:58:b8:2e:c6:c9:5f:
30:f0:9b:af:4e:85:dd:19:6a:2a:9d:1e:e7:30:36:f5:a7:d4:
fc:af:ad:0a:6a:8a:9f:79:f6:2f:f3:8d:51:00:94:67:04:55:
0a:dd:23:36:0d:8d:8c:db:f4:de:ce:46:46:b9:67:80:ce:a1:
46:9f:7b:e1:e2:30:78:c3:6e:8e:0f:c8:fa:20:6e:b4:04:e0:
dd:21:68:76:59:f3:a1:ea:f9:b5:63:d1:e5:b4:4b:cd:e5:8a:
54:8a:bd:c1:74:a2:5c:3a:89:60:d9:a1:04:bc:79:fb:78:c0:
66:99:34:22:a0:16:8c:f9:ac:d9:b9:61:f3:f8:50:4e:be:a1:
a1:d6:7f:f9:87:bc:60:81:c2:96:bf:e5:be:78:53:d3:4a:2a:
6e:f9:9d:3c:0f:43:2a:0b:2b:47:33:25:68:c6:5e:d5:d7:1f:
9f:38:94:b4:44:3c:cd:e4:74:fd:47:a8:f8:a5:ca:68:b6:fe:
f1:25:dc:74:50:18:80:7b:ad:46:7d:24:4f:6f:0a:fb:62:69:
77:c5:c3:7c:9a:14:1d:95:8d:76:4d:ca:69:e9:f3:46:56:f4:
93:86:4d:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 15:26:19 2025 by rpki-client