Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/9ba940-0078-4fd0-afde-537a2b0b4dda/1/22dU6SeEOk5lA-ybXbkk_F-RHPI.roa
File: 22dU6SeEOk5lA-ybXbkk_F-RHPI.roa (raw, json)
Hash identifier: opc+OMEhIAAy9MN7L41tT+6qaGIbCCKGC8RYJFu35pA=
Subject key identifier: DB:67:54:E9:27:84:3A:4E:65:03:EC:9B:5D:B9:24:FC:5F:91:1C:F2
Certificate issuer: /CN=e1e8f41f6b02b93f85d1a7b48b48cfa322f088f8
Certificate serial: 019425FD7983CF6EA3233E3078B29DF7143B
Authority key identifier: E1:E8:F4:1F:6B:02:B9:3F:85:D1:A7:B4:8B:48:CF:A3:22:F0:88:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4ej0H2sCuT-F0ae0i0jPoyLwiPg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/9ba940-0078-4fd0-afde-537a2b0b4dda/1/22dU6SeEOk5lA-ybXbkk_F-RHPI.roa
Signing time: Thu 02 Jan 2025 07:49:16 +0000
ROA not before: Thu 02 Jan 2025 07:49:16 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 5588
IP address blocks: 195.90.98.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:fd:79:83:cf:6e:a3:23:3e:30:78:b2:9d:f7:14:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e1e8f41f6b02b93f85d1a7b48b48cfa322f088f8
Validity
Not Before: Jan 2 07:49:16 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=db6754e927843a4e6503ec9b5db924fc5f911cf2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:3c:e1:a4:ad:ae:73:80:b6:fa:33:df:ba:78:
a7:e4:ee:0c:b4:13:96:ff:7f:60:73:5c:e4:89:6c:
31:96:ba:60:b9:6e:a8:f9:91:38:73:ec:55:e3:d2:
2b:eb:ea:2a:db:a0:ad:cf:df:40:ee:fe:2a:d5:2f:
c6:72:6c:8b:54:23:c5:00:74:2e:5d:da:0b:0a:b2:
ab:c9:50:8d:ab:25:79:a3:e9:a8:b8:e9:ae:37:07:
e5:a7:76:39:87:57:da:9d:6d:6c:f3:c4:33:9c:29:
3f:35:45:7a:fc:69:0c:59:25:3d:17:d5:03:73:27:
10:98:af:95:f3:c0:f0:56:24:33:b1:1d:c4:5f:e9:
73:c5:6a:b8:4e:03:3e:84:c1:36:bc:60:94:1c:1b:
09:a3:8b:0c:0a:65:6e:68:53:1c:fe:09:87:2d:c3:
63:74:cc:55:b9:28:aa:d1:f8:a6:e0:c7:ce:e3:8f:
73:d7:93:84:e1:3b:df:fa:ee:d3:1e:cc:ac:c5:a2:
7d:d6:fa:c6:25:8e:fa:53:4e:e2:9a:a9:f8:b0:1a:
5a:dd:3e:06:ca:f0:44:f3:01:ee:1e:d8:b6:2f:f6:
32:f4:1e:6d:7a:45:45:03:e7:4b:d7:e4:43:ab:e6:
9b:9f:ef:7c:7e:b5:30:68:75:18:41:73:ef:b4:68:
d5:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:67:54:E9:27:84:3A:4E:65:03:EC:9B:5D:B9:24:FC:5F:91:1C:F2
X509v3 Authority Key Identifier:
keyid:E1:E8:F4:1F:6B:02:B9:3F:85:D1:A7:B4:8B:48:CF:A3:22:F0:88:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4ej0H2sCuT-F0ae0i0jPoyLwiPg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/9ba940-0078-4fd0-afde-537a2b0b4dda/1/22dU6SeEOk5lA-ybXbkk_F-RHPI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/9ba940-0078-4fd0-afde-537a2b0b4dda/1/4ej0H2sCuT-F0ae0i0jPoyLwiPg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.90.98.0/24
Signature Algorithm: sha256WithRSAEncryption
a4:f0:6c:30:04:4a:61:79:eb:83:65:d0:bf:c5:6f:2e:00:81:
5a:ea:f6:de:b3:38:78:1a:eb:78:48:7b:b7:15:92:24:bb:a4:
77:07:f5:9c:28:8b:07:50:0a:cd:b7:f8:46:01:4d:ac:b0:5d:
db:91:ba:39:5e:1b:1c:e0:c0:74:eb:48:2b:94:7e:fb:11:26:
f1:6d:51:81:8c:28:75:22:1f:dd:b2:58:e9:c4:da:6e:a5:cb:
70:22:17:8e:85:5f:e3:18:d8:f9:8c:b7:9d:20:21:3d:14:76:
ed:71:ae:7c:1b:c7:54:5d:7a:88:fa:fa:6b:f6:37:12:c1:a5:
95:64:c7:58:f6:f9:ec:02:95:25:c1:dc:a5:1f:a7:8a:69:bb:
c9:b3:d2:13:38:88:8d:84:bc:a7:c9:99:f5:88:d4:d5:ee:71:
83:81:b9:45:23:d5:0a:a0:51:23:11:c3:ff:8f:44:34:94:1a:
d9:81:9b:04:4d:c1:f2:b8:2c:5a:81:21:96:c2:3d:8b:5f:2e:
31:c9:01:a8:0c:3c:b1:83:16:ba:a7:57:f9:d0:b5:a9:a6:40:
02:fa:f0:37:85:60:2f:3b:33:12:22:7c:36:52:34:f6:2d:88:
76:af:ef:75:43:91:6e:c4:bf:18:18:0b:45:87:1f:40:c0:56:
92:2b:6c:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 05:38:58 2025 by rpki-client