Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/7e070e-7930-43c8-a66d-215c3d8f8914/1/c5LPhXuODDBxFuViYfSXx_riv74.roa
File: c5LPhXuODDBxFuViYfSXx_riv74.roa (raw, json)
Hash identifier: usUpr0yxI5jUtv9Q2x+cYZYEpWyoAm5TVx+7zA43Kkk=
Subject key identifier: 73:92:CF:85:7B:8E:0C:30:71:16:E5:62:61:F4:97:C7:FA:E2:BF:BE
Certificate issuer: /CN=88796992df883be1bab2a52f45f5254ebb52b697
Certificate serial: 01856B6E895BFCB41331DB3647DC36690877
Authority key identifier: 88:79:69:92:DF:88:3B:E1:BA:B2:A5:2F:45:F5:25:4E:BB:52:B6:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iHlpkt-IO-G6sqUvRfUlTrtStpc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/7e070e-7930-43c8-a66d-215c3d8f8914/1/c5LPhXuODDBxFuViYfSXx_riv74.roa
Signing time: Sun 01 Jan 2023 03:44:44 +0000
ROA not before: Sun 01 Jan 2023 03:44:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57844
IP address blocks: 195.16.74.0/24 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:6e:89:5b:fc:b4:13:31:db:36:47:dc:36:69:08:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88796992df883be1bab2a52f45f5254ebb52b697
Validity
Not Before: Jan 1 03:44:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7392cf857b8e0c307116e56261f497c7fae2bfbe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:24:d2:07:dd:3c:8f:85:29:80:fe:83:2d:ba:
f8:d7:c9:1a:b1:86:eb:60:5f:f2:50:3e:b9:df:ef:
55:71:84:f9:86:34:b6:ff:f9:68:4a:86:cc:66:c8:
c6:de:d1:88:27:1d:b7:04:8a:22:09:5c:9a:27:b1:
d5:49:49:66:bf:98:47:1f:69:85:53:75:bb:27:73:
db:36:ce:0b:53:9f:3d:0c:bc:95:9e:3b:b5:f9:4e:
22:88:45:7e:5a:e4:da:c7:32:6e:26:bf:b2:d2:95:
3b:8e:01:12:db:a8:38:2a:b8:c6:99:d7:83:9c:ac:
78:ea:f3:aa:81:71:ee:27:68:3d:36:9f:1b:a0:08:
b2:aa:4a:05:58:f1:eb:71:7d:e0:a3:01:08:38:0a:
0e:99:a9:86:76:dd:0d:3b:2e:91:e6:62:45:04:65:
5a:cc:fd:38:3a:1f:b2:40:7c:47:fa:5b:c4:be:dc:
53:56:f2:39:02:84:5f:43:d2:fc:af:8b:44:1e:81:
1b:07:c5:3d:2a:39:d3:fd:b2:44:97:b1:16:94:91:
46:c0:ed:da:bc:4f:3a:a8:ec:8d:61:14:e7:7f:cd:
e9:d6:b7:30:5f:b7:41:2d:2f:dd:8c:81:0c:03:65:
ff:c5:94:65:77:b7:35:cd:0f:de:df:a9:89:8a:a4:
fe:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:92:CF:85:7B:8E:0C:30:71:16:E5:62:61:F4:97:C7:FA:E2:BF:BE
X509v3 Authority Key Identifier:
keyid:88:79:69:92:DF:88:3B:E1:BA:B2:A5:2F:45:F5:25:4E:BB:52:B6:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iHlpkt-IO-G6sqUvRfUlTrtStpc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/7e070e-7930-43c8-a66d-215c3d8f8914/1/c5LPhXuODDBxFuViYfSXx_riv74.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/7e070e-7930-43c8-a66d-215c3d8f8914/1/iHlpkt-IO-G6sqUvRfUlTrtStpc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.16.74.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:99:98:52:f7:a8:3a:fe:f9:3c:d4:54:3c:fa:e7:e8:48:ac:
91:03:43:8a:69:c6:52:29:89:28:67:50:9d:8f:cc:6a:a0:cf:
f1:41:1d:d9:21:83:c1:25:35:ef:d2:96:06:dd:7a:c6:eb:20:
00:99:7f:60:a4:fa:0c:63:f1:bd:2b:9d:2d:a5:0f:cc:dc:69:
05:f9:7b:56:59:9e:6a:5b:67:13:5c:3b:fb:b0:0d:f2:2a:65:
7b:75:53:4a:38:6f:9f:21:f9:a8:bb:0e:84:a4:75:e3:6a:94:
bb:64:bf:61:3e:43:1c:db:e5:e7:77:5e:6a:26:8b:a6:a0:82:
92:18:d3:4e:9d:38:ce:a4:b1:9a:a3:15:91:2b:6f:6a:28:54:
a5:db:86:59:96:27:24:94:1c:f9:f2:92:0b:e1:6d:c5:d2:80:
62:79:bd:57:0d:82:ce:a3:85:b8:0d:4a:ca:c2:cb:1c:0f:0e:
f0:a1:4c:68:37:46:b1:0b:a8:01:26:ed:15:80:17:e8:ce:12:
8f:8f:b6:96:f4:04:53:38:4b:0d:bf:58:32:94:68:6a:4b:1b:
7a:e4:5c:8e:3b:32:45:3f:72:8c:01:5a:45:a3:4f:1f:b4:bc:
2a:82:db:2b:ee:3e:1e:88:24:f8:e6:26:67:f0:57:de:5d:4f:
a8:b9:76:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 12 14:02:32 2025 by rpki-client