Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/015f44-0f4c-4714-8615-23b072f5b188/1/Ew_9xkX17GmqLxnTDUpXJpFk2yw.roa
File: Ew_9xkX17GmqLxnTDUpXJpFk2yw.roa (raw, json)
Hash identifier: gSO6b2r/enYMQ4bFkt52Ns0Jlwzizy7i4hOr1QcjtDA=
Subject key identifier: 13:0F:FD:C6:45:F5:EC:69:AA:2F:19:D3:0D:4A:57:26:91:64:DB:2C
Certificate issuer: /CN=3adeea3b6aac4d834b4fd7c2e5d3c397f61f43d6
Certificate serial: 33A5EEB1
Authority key identifier: 3A:DE:EA:3B:6A:AC:4D:83:4B:4F:D7:C2:E5:D3:C3:97:F6:1F:43:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ot7qO2qsTYNLT9fC5dPDl_YfQ9Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/015f44-0f4c-4714-8615-23b072f5b188/1/Ew_9xkX17GmqLxnTDUpXJpFk2yw.roa
Signing time: Sat 01 Jan 2022 15:03:54 +0000
ROA not before: Sat 01 Jan 2022 15:03:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 174
IP address blocks: 91.108.200.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 866512561 (0x33a5eeb1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3adeea3b6aac4d834b4fd7c2e5d3c397f61f43d6
Validity
Not Before: Jan 1 15:03:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=130ffdc645f5ec69aa2f19d30d4a57269164db2c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:b5:90:e2:69:6b:a1:1a:a4:80:d0:22:88:55:
68:c1:09:ab:9f:bf:e0:81:fb:5a:14:07:f4:07:04:
65:fd:ea:ec:12:74:b5:6d:e6:9e:6b:a6:be:eb:a3:
10:37:78:9d:ab:ff:13:3e:96:76:e0:f1:62:e4:b2:
b8:c0:dc:66:9d:c9:ff:63:23:7d:6c:c5:60:30:68:
f1:d4:e3:0f:4f:84:72:a4:cd:d7:0b:c3:67:8f:9a:
cd:27:22:44:8f:e3:91:2e:34:87:1a:19:16:9d:dc:
0d:c3:9c:41:7a:a2:be:ee:64:17:b3:43:a2:1b:0b:
af:7c:ef:ac:31:d0:81:f6:ba:26:16:06:5b:d5:88:
66:5c:d1:09:ed:3f:b2:c3:ab:69:4c:b5:dc:8b:f2:
08:7b:45:c2:e1:4c:e4:2a:d8:fa:1e:f4:16:1f:6b:
c7:54:a5:fd:05:ca:33:d7:fc:4f:43:cc:06:17:f8:
ae:59:84:f7:5b:ee:62:28:63:36:37:15:a1:98:24:
18:ed:2d:87:18:61:c5:62:d6:8a:59:da:87:e0:8a:
2b:99:86:ee:76:b7:7d:a1:03:2f:8f:16:37:06:c1:
08:d3:f4:de:6b:13:61:4d:7f:4b:fb:3a:88:be:8e:
3d:46:56:68:a3:4a:d4:ba:f2:8f:fd:57:a8:89:67:
76:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:0F:FD:C6:45:F5:EC:69:AA:2F:19:D3:0D:4A:57:26:91:64:DB:2C
X509v3 Authority Key Identifier:
keyid:3A:DE:EA:3B:6A:AC:4D:83:4B:4F:D7:C2:E5:D3:C3:97:F6:1F:43:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ot7qO2qsTYNLT9fC5dPDl_YfQ9Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/015f44-0f4c-4714-8615-23b072f5b188/1/Ew_9xkX17GmqLxnTDUpXJpFk2yw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/015f44-0f4c-4714-8615-23b072f5b188/1/Ot7qO2qsTYNLT9fC5dPDl_YfQ9Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.108.200.0/22
Signature Algorithm: sha256WithRSAEncryption
1f:4e:d0:51:46:21:d6:25:2b:21:bf:ac:bf:1c:9f:bb:65:18:
ce:43:e2:1d:e8:49:88:2c:fa:4c:6c:77:c8:39:cc:9a:99:ce:
8c:44:3a:38:c7:3f:97:9f:1e:3a:81:07:a9:7a:bd:31:64:25:
0d:8c:d8:8d:d7:48:1c:ea:24:02:92:0b:44:b1:c9:8d:69:07:
0b:86:7b:bf:ff:09:5f:b5:4b:ab:7d:0b:54:10:e2:49:ee:36:
b6:ba:93:a5:94:d4:07:98:93:8c:80:2a:81:bf:6e:da:ac:22:
07:1a:f1:f2:61:8b:93:e9:60:80:fd:28:ea:3b:1e:0e:cc:02:
e9:ad:14:6a:c9:86:0c:ae:3b:40:11:9f:39:2b:8a:45:06:5a:
ed:67:40:0f:54:b9:7b:0c:4c:94:8c:2a:b6:b7:25:25:08:23:
18:66:6b:45:c9:78:a7:20:20:08:81:cb:d1:8b:8d:16:a5:9c:
2c:9d:fe:8f:b0:bc:f5:cb:8d:81:55:91:a8:ce:cb:77:95:13:
2f:61:0f:da:47:9d:29:96:f6:9d:9a:a2:5f:25:c7:ef:6f:26:
52:7d:1e:0d:9c:13:f2:14:e7:31:47:60:5c:d0:57:02:e1:bf:
75:db:bd:83:d3:57:7d:b0:d3:24:18:a7:2f:5a:40:8e:ab:98:
2c:d8:08:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 20:24:31 2025 by rpki-client