Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/48cb86-2750-4d6a-8a71-1be525576863/1/Swgoxbg6-WBTtB7Vnd_qSVNU6kk.roa
File: Swgoxbg6-WBTtB7Vnd_qSVNU6kk.roa (raw, json)
Hash identifier: a4pK9IYXg9Wx8HaONARN8idtjWEslYwBhKj0gKB8QaM=
Subject key identifier: 4B:08:28:C5:B8:3A:F9:60:53:B4:1E:D5:9D:DF:EA:49:53:54:EA:49
Certificate issuer: /CN=c8f6f5dec09bc7a1203045699ba058295d38e346
Certificate serial: 03E35C8D
Authority key identifier: C8:F6:F5:DE:C0:9B:C7:A1:20:30:45:69:9B:A0:58:29:5D:38:E3:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yPb13sCbx6EgMEVpm6BYKV0440Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/48cb86-2750-4d6a-8a71-1be525576863/1/Swgoxbg6-WBTtB7Vnd_qSVNU6kk.roa
Signing time: Sat 01 Jan 2022 00:57:11 +0000
ROA not before: Sat 01 Jan 2022 00:57:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201515
IP address blocks: 109.167.251.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65232013 (0x3e35c8d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c8f6f5dec09bc7a1203045699ba058295d38e346
Validity
Not Before: Jan 1 00:57:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4b0828c5b83af96053b41ed59ddfea495354ea49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:8f:6a:64:47:34:cd:31:b2:a5:42:15:cf:b9:
6b:86:cc:76:5e:54:04:a4:b2:8b:20:ed:95:0e:2d:
2e:36:cb:83:0d:8f:5f:3d:af:4f:55:c1:7d:b6:a8:
fd:34:c1:7e:b6:ab:43:1b:95:29:a1:24:cd:f3:1a:
78:d4:80:14:28:f8:a6:ff:a3:10:94:35:80:fc:d0:
a6:fc:41:51:2e:8a:94:1c:96:7b:06:db:ec:a4:3e:
30:35:66:24:86:63:9b:56:63:03:35:3e:7a:a2:07:
d6:56:40:20:18:df:e9:91:d7:65:b6:7f:e5:49:48:
21:6e:64:fd:f2:9c:3e:35:0a:5c:dd:5c:de:7d:b7:
5f:09:0d:55:06:f9:70:e7:7d:70:83:98:22:59:1a:
03:7b:2f:1c:77:be:99:fc:fb:99:e4:42:67:ae:88:
eb:58:ad:d6:ca:6e:61:1c:72:da:86:2a:0b:f1:b0:
df:61:1c:6d:f1:0a:32:cb:09:26:42:a6:04:29:7f:
3c:99:63:81:70:33:8c:60:3d:74:66:0e:6f:ce:50:
87:83:f5:5c:b1:7f:2f:38:e5:80:6d:fa:8b:d9:5b:
f7:41:39:d1:b0:0b:df:db:68:b9:35:6e:af:cb:16:
55:46:1e:cc:89:5d:83:1d:37:43:a3:da:18:b9:0e:
fd:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:08:28:C5:B8:3A:F9:60:53:B4:1E:D5:9D:DF:EA:49:53:54:EA:49
X509v3 Authority Key Identifier:
keyid:C8:F6:F5:DE:C0:9B:C7:A1:20:30:45:69:9B:A0:58:29:5D:38:E3:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yPb13sCbx6EgMEVpm6BYKV0440Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/48cb86-2750-4d6a-8a71-1be525576863/1/Swgoxbg6-WBTtB7Vnd_qSVNU6kk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/48cb86-2750-4d6a-8a71-1be525576863/1/yPb13sCbx6EgMEVpm6BYKV0440Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.167.251.0/24
Signature Algorithm: sha256WithRSAEncryption
26:4f:13:b3:13:6d:20:19:17:88:ce:0e:d1:e0:6a:9a:1c:61:
4d:51:d8:a1:17:cf:8b:48:95:f3:82:e5:94:4d:39:c5:53:d7:
67:0a:81:36:6f:23:96:9c:49:b4:a6:01:a0:53:df:1d:27:99:
cb:e6:8a:0e:b3:6c:9f:18:2e:97:41:ad:3b:19:24:28:83:21:
b2:94:c2:28:78:fb:35:d0:6b:10:cc:48:ac:17:60:8c:0a:d7:
9e:dc:42:4f:cf:7f:c6:7a:0e:04:39:2f:16:87:cd:8e:86:eb:
4b:43:5b:dc:e4:fe:13:5c:9c:c5:0e:cb:21:f4:84:b7:7d:6b:
53:51:71:61:96:8b:35:75:67:7f:2b:f7:e0:9d:09:6f:0e:61:
98:2b:38:63:e3:cc:68:65:fa:17:db:1d:7d:cb:a1:36:e3:e9:
05:83:7c:03:9f:7f:fb:0f:31:d0:f3:8c:a2:28:0c:5a:94:60:
86:5f:a3:77:b7:96:9b:dc:1f:7a:ac:3e:97:bc:e4:34:45:19:
5b:05:fb:66:ce:80:ee:8f:de:12:2f:d8:cc:e9:fb:03:7a:d0:
f8:0f:93:8c:df:38:ae:bf:38:c7:f4:85:6c:dc:3a:98:f6:a5:
9a:eb:ec:d2:0a:44:17:66:a4:2e:6a:85:1c:83:db:29:24:3e:
d8:fd:3a:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 18:30:21 2025 by rpki-client