Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/7e070e-7930-43c8-a66d-215c3d8f8914/1/ii8jaOJ-eOE1iIMtX8xa-DpsciU.roa
File: ii8jaOJ-eOE1iIMtX8xa-DpsciU.roa (raw, json)
Hash identifier: 9cvrQbYMPHMUDQsw0JeR5BcTZLknPwcVO0Q5YnJ45p4=
Subject key identifier: 8A:2F:23:68:E2:7E:78:E1:35:88:83:2D:5F:CC:5A:F8:3A:6C:72:25
Certificate issuer: /CN=88796992df883be1bab2a52f45f5254ebb52b697
Certificate serial: 01D68AB8
Authority key identifier: 88:79:69:92:DF:88:3B:E1:BA:B2:A5:2F:45:F5:25:4E:BB:52:B6:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iHlpkt-IO-G6sqUvRfUlTrtStpc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/7e070e-7930-43c8-a66d-215c3d8f8914/1/ii8jaOJ-eOE1iIMtX8xa-DpsciU.roa
Signing time: Fri 11 Feb 2022 18:49:07 +0000
ROA not before: Fri 11 Feb 2022 18:49:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 0
IP address blocks: 195.16.74.0/24 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 30837432 (0x1d68ab8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88796992df883be1bab2a52f45f5254ebb52b697
Validity
Not Before: Feb 11 18:49:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8a2f2368e27e78e13588832d5fcc5af83a6c7225
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:dc:15:ca:7c:2d:26:46:a1:c3:37:90:1e:7d:
bc:73:2a:4d:19:f8:f2:e5:73:0b:cf:d3:0c:96:33:
93:35:11:57:a7:ac:fb:a8:32:e3:7a:6f:f8:f0:d3:
f9:8e:9f:f5:d7:d6:e1:ff:f8:60:42:ed:1d:73:3b:
57:a8:f3:a7:01:f9:b4:f4:c5:3b:60:46:18:31:fa:
9b:c7:62:83:68:d1:a6:37:ef:ca:3e:2e:04:9b:71:
20:71:c9:6c:42:97:1c:fe:85:0b:8b:93:e9:b4:6b:
f1:5b:22:59:4c:c8:f8:7e:ef:f8:d7:df:98:d2:85:
a0:62:a1:e1:a8:18:f3:38:29:59:de:d9:f3:15:89:
3b:d2:b0:d8:9f:97:f7:32:95:83:bc:aa:25:49:f5:
d2:26:c3:32:2f:01:4d:1d:91:7b:2b:59:ce:bc:ab:
63:12:2e:dc:96:a4:88:82:53:f1:95:ad:94:57:26:
3c:ea:61:e3:97:c2:e4:33:03:a3:3b:6e:db:8a:35:
52:60:ea:13:90:2c:79:23:c7:0e:14:9a:60:ec:5e:
ae:31:73:b9:12:19:d0:2d:ed:37:6b:f8:42:9a:2a:
43:16:0d:d6:e5:e6:76:e8:df:42:ed:16:78:10:49:
16:9b:8f:39:06:d5:b7:ef:51:65:d4:1e:dc:eb:fd:
7d:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:2F:23:68:E2:7E:78:E1:35:88:83:2D:5F:CC:5A:F8:3A:6C:72:25
X509v3 Authority Key Identifier:
keyid:88:79:69:92:DF:88:3B:E1:BA:B2:A5:2F:45:F5:25:4E:BB:52:B6:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iHlpkt-IO-G6sqUvRfUlTrtStpc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/7e070e-7930-43c8-a66d-215c3d8f8914/1/ii8jaOJ-eOE1iIMtX8xa-DpsciU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/7e070e-7930-43c8-a66d-215c3d8f8914/1/iHlpkt-IO-G6sqUvRfUlTrtStpc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.16.74.0/24
Signature Algorithm: sha256WithRSAEncryption
43:98:d5:41:0a:24:e3:3a:30:12:6f:26:53:1b:0c:27:27:59:
30:65:bd:53:62:93:f4:4e:38:fa:f0:39:38:68:b9:65:93:47:
d7:71:a9:c8:aa:e5:99:43:de:43:40:25:ff:78:01:6c:ac:a6:
04:76:25:00:cc:8a:fe:4b:04:52:0d:09:8c:f7:c7:77:ba:0d:
f8:8e:58:c7:32:d8:92:57:d0:fd:98:a4:ad:92:d5:b1:93:55:
a1:8e:f7:4e:ed:61:75:90:bb:28:74:a4:61:e4:3f:ee:97:65:
17:11:4f:f6:be:c9:e1:ca:43:6f:07:47:d7:9e:b9:ff:9e:ee:
b7:f2:42:8b:c1:aa:7e:64:bf:fc:fc:f2:b2:13:1f:b7:94:1a:
61:fa:2d:57:83:7b:f5:20:7c:0f:a4:31:6e:83:fa:38:c2:0e:
f4:44:72:25:16:6c:d4:59:99:78:9f:87:33:1e:ba:28:c9:34:
89:5a:7e:be:05:f7:16:5d:7c:e4:48:05:f6:9c:fa:a7:5e:e5:
2e:3b:0c:7f:26:d5:bf:c0:99:20:50:d6:36:d9:77:db:9a:ac:
6c:79:64:32:34:02:d7:d9:f8:68:1d:63:8b:ef:8d:af:0a:18:
be:2e:c0:39:3b:62:5f:ac:03:08:a2:2c:a4:27:68:5b:5a:18:
e8:d4:65:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 12 13:34:39 2025 by rpki-client