Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/7e070e-7930-43c8-a66d-215c3d8f8914/1/4dOmnV4qYtmoIo3RsqCctnHiJmI.roa
File: 4dOmnV4qYtmoIo3RsqCctnHiJmI.roa (raw, json)
Hash identifier: gciaEK2LneUSiFWQijei7vtFJ3wZ9a+T0UMhFn11518=
Subject key identifier: E1:D3:A6:9D:5E:2A:62:D9:A8:22:8D:D1:B2:A0:9C:B6:71:E2:26:62
Certificate issuer: /CN=88796992df883be1bab2a52f45f5254ebb52b697
Certificate serial: 01EDA231
Authority key identifier: 88:79:69:92:DF:88:3B:E1:BA:B2:A5:2F:45:F5:25:4E:BB:52:B6:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iHlpkt-IO-G6sqUvRfUlTrtStpc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/7e070e-7930-43c8-a66d-215c3d8f8914/1/4dOmnV4qYtmoIo3RsqCctnHiJmI.roa
Signing time: Wed 16 Feb 2022 15:46:07 +0000
ROA not before: Wed 16 Feb 2022 15:46:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61087
IP address blocks: 195.16.74.0/24 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 32350769 (0x1eda231)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88796992df883be1bab2a52f45f5254ebb52b697
Validity
Not Before: Feb 16 15:46:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e1d3a69d5e2a62d9a8228dd1b2a09cb671e22662
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:c1:4e:26:55:06:52:3d:65:c4:c2:33:07:82:
42:99:a2:bc:f9:c9:3e:04:45:69:0e:f6:6f:73:4f:
c7:28:64:53:d3:a5:ff:1a:af:96:94:f1:5c:dd:0d:
8e:fc:80:67:8c:3d:2b:5a:6a:cd:3c:32:c4:14:c8:
ee:e1:e7:82:de:b6:12:18:2d:25:f7:c0:00:49:3d:
d0:01:c2:b2:95:95:31:f6:e9:da:a6:4b:29:fe:da:
4d:52:81:4d:74:f1:d6:e4:47:6e:50:6a:f0:8d:8d:
a9:09:aa:78:12:85:00:7f:3c:a5:79:2f:2d:11:06:
33:4d:7c:ab:ed:a0:9c:4f:ef:ef:33:d3:79:1a:77:
bd:99:68:fc:c9:27:1b:d4:22:67:d1:24:37:25:27:
3e:a1:3e:ae:f0:a1:74:f0:da:a8:96:3a:67:71:05:
ee:d9:de:b9:89:07:b5:30:29:28:7d:69:1e:54:cb:
96:60:1d:6b:08:6f:b7:bb:31:ce:13:7c:4c:de:d0:
b7:ae:88:91:6c:3b:e5:b5:63:77:60:d5:79:da:34:
84:a7:3a:e5:ae:6d:8c:1a:ae:e8:e3:ef:f6:e4:73:
c3:49:60:5f:6a:78:80:67:b6:52:e2:9f:e6:a7:db:
4c:81:10:44:7f:ee:98:05:54:e1:15:22:70:27:b1:
50:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:D3:A6:9D:5E:2A:62:D9:A8:22:8D:D1:B2:A0:9C:B6:71:E2:26:62
X509v3 Authority Key Identifier:
keyid:88:79:69:92:DF:88:3B:E1:BA:B2:A5:2F:45:F5:25:4E:BB:52:B6:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iHlpkt-IO-G6sqUvRfUlTrtStpc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/7e070e-7930-43c8-a66d-215c3d8f8914/1/4dOmnV4qYtmoIo3RsqCctnHiJmI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/7e070e-7930-43c8-a66d-215c3d8f8914/1/iHlpkt-IO-G6sqUvRfUlTrtStpc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.16.74.0/24
Signature Algorithm: sha256WithRSAEncryption
19:07:80:ea:7f:b3:70:8b:a0:4c:61:e5:e0:37:0f:b7:77:dd:
33:af:b3:1d:b1:14:dc:17:42:06:cb:69:4a:4d:ab:9a:16:56:
40:2c:5f:b3:3c:9a:d7:dd:34:5d:67:c5:f0:cf:47:d6:df:01:
9b:63:52:42:d5:ec:17:c5:d8:61:8a:a5:19:71:20:a2:bd:c4:
4f:be:e9:bd:2a:18:ee:79:28:71:00:da:74:5d:bb:e5:2a:42:
87:a3:fc:f2:23:87:ac:f3:1c:e6:f5:58:5d:27:a5:82:1b:09:
c7:91:d0:fa:85:9a:a7:e5:e5:94:30:37:24:01:1e:4b:e4:13:
90:e4:0b:3d:39:33:a8:d0:66:46:d4:a5:c0:57:59:a8:ef:85:
81:fa:bf:67:e7:fb:d9:e4:6d:03:f0:ca:a9:de:14:8a:93:38:
7c:40:62:d2:c6:27:e9:06:d0:1f:c2:11:0c:a2:1f:bb:89:39:
1f:ef:54:dd:2f:12:98:99:97:b9:1d:42:90:04:53:0c:8f:8e:
18:76:22:c6:b4:b4:9f:a2:21:95:0d:08:8e:3b:1f:a5:b5:40:
72:13:31:e4:93:58:91:97:b5:da:c0:0f:f1:60:b1:a2:63:55:
eb:30:d7:8d:52:e6:db:99:00:57:4e:d2:bd:76:fd:4b:f0:94:
90:c6:ad:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 12 13:37:28 2025 by rpki-client