Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/1fe4dd-91b0-42b8-b5d6-1637c7681720/1/FzM0H-uN-1a91jDodp-HPtXtaig.roa
File: FzM0H-uN-1a91jDodp-HPtXtaig.roa (raw, json)
Hash identifier: bwiidNcK8mByjG0E0N101hz8yReb6SZoAyd3DqsXyGo=
Subject key identifier: 17:33:34:1F:EB:8D:FB:56:BD:D6:30:E8:76:9F:87:3E:D5:ED:6A:28
Certificate issuer: /CN=bb09489b611085b902f15b78e597ba914337acf5
Certificate serial: 37789461
Authority key identifier: BB:09:48:9B:61:10:85:B9:02:F1:5B:78:E5:97:BA:91:43:37:AC:F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uwlIm2EQhbkC8Vt45Ze6kUM3rPU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/1fe4dd-91b0-42b8-b5d6-1637c7681720/1/FzM0H-uN-1a91jDodp-HPtXtaig.roa
Signing time: Sat 01 Jan 2022 13:02:53 +0000
ROA not before: Sat 01 Jan 2022 13:02:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44286
IP address blocks: 89.207.144.0/21 maxlen: 24
2a02:2410::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 930649185 (0x37789461)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb09489b611085b902f15b78e597ba914337acf5
Validity
Not Before: Jan 1 13:02:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1733341feb8dfb56bdd630e8769f873ed5ed6a28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:71:aa:72:96:a3:5d:5d:6a:20:13:92:51:bf:
59:63:c0:7d:47:22:d1:9c:fc:75:eb:b2:97:8f:d4:
30:4b:57:1a:d6:66:0b:30:e6:02:3f:0c:d7:90:9e:
ed:d8:5e:34:b9:8f:fc:b1:71:b1:3c:cf:91:e3:3e:
46:24:d8:c4:54:b3:5c:bf:ec:21:f9:57:04:57:6b:
7e:15:a0:cb:3f:68:f9:98:4a:0e:3b:25:d0:45:16:
51:40:20:47:01:1a:87:aa:82:a7:36:d2:28:b9:a4:
a0:58:46:5e:53:29:35:d5:80:fa:ca:a0:00:0e:4b:
a3:8c:20:c9:44:b4:83:e1:7f:5e:75:01:28:bc:52:
7f:d2:7e:cc:80:c0:f4:8e:b7:7b:da:61:ed:c9:13:
f5:72:a9:0f:49:de:c3:61:84:bf:2c:43:bd:ef:41:
53:fc:41:73:ba:07:ad:ee:fe:32:2c:f7:7c:bc:6d:
54:70:db:d8:cd:c8:56:8d:01:7e:4e:5a:7e:39:83:
be:6f:af:63:65:c8:03:44:78:70:98:e0:82:9b:c4:
9f:bf:60:b7:6d:7b:22:ad:e7:c3:df:b7:59:70:d5:
f9:6d:00:26:df:b0:db:8e:47:e2:38:f8:b4:18:fc:
36:3c:52:c6:1f:aa:e0:bf:86:79:a8:10:0b:bb:13:
ce:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:33:34:1F:EB:8D:FB:56:BD:D6:30:E8:76:9F:87:3E:D5:ED:6A:28
X509v3 Authority Key Identifier:
keyid:BB:09:48:9B:61:10:85:B9:02:F1:5B:78:E5:97:BA:91:43:37:AC:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uwlIm2EQhbkC8Vt45Ze6kUM3rPU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/1fe4dd-91b0-42b8-b5d6-1637c7681720/1/FzM0H-uN-1a91jDodp-HPtXtaig.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/1fe4dd-91b0-42b8-b5d6-1637c7681720/1/uwlIm2EQhbkC8Vt45Ze6kUM3rPU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.207.144.0/21
IPv6:
2a02:2410::/32
Signature Algorithm: sha256WithRSAEncryption
ac:7e:2d:9c:4e:ae:06:7a:1d:78:e3:48:f1:68:bb:99:ec:e6:
e3:aa:68:13:50:b8:8c:cd:e7:2c:56:df:a4:57:69:57:d0:7d:
a4:42:64:26:d7:41:73:d1:19:ca:31:8c:75:20:66:97:53:98:
06:6c:0c:ae:2d:60:6a:78:1a:b6:26:df:30:cc:d0:09:81:b1:
e6:6c:4c:f1:0d:c8:68:ad:5d:62:23:98:2d:9f:88:25:33:0c:
49:56:bc:73:b2:1d:69:af:45:19:5d:2a:3d:7d:39:4e:93:86:
3a:92:c9:f4:ad:2c:ad:1a:58:f2:59:5b:5f:30:f5:8d:6a:3d:
dc:b2:d0:36:8c:10:0e:07:70:2a:1a:17:5b:bd:67:da:0e:e6:
85:9c:85:9a:86:6e:63:f5:b8:61:e1:7f:e6:95:da:87:c2:60:
19:cc:52:f3:81:3e:70:7c:e1:5e:88:c6:18:d9:eb:02:67:60:
65:c1:6b:ba:6b:39:f2:2b:cb:1a:b1:79:08:95:31:a2:63:68:
8a:09:5f:ab:4c:a2:bd:b0:6c:39:f0:fe:a1:3f:e9:ef:da:91:
25:a1:dc:8c:38:53:68:19:32:87:38:10:c9:56:9b:44:2a:e4:
31:b3:8b:af:8a:ca:ff:70:b7:6b:bd:97:c0:3f:40:7b:4d:6a:
5b:17:75:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 12:36:06 2025 by rpki-client