Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/79fb00-8d51-4712-929a-8cfb2e73f70d/1/FWpWnDESm_tk9pyBREm0HuZk6kE.roa
File: FWpWnDESm_tk9pyBREm0HuZk6kE.roa (raw, json)
Hash identifier: 6cEYQBcC1nnEFZD/4CdONnYL1bhIFLgcV7bwRSUzttk=
Subject key identifier: 15:6A:56:9C:31:12:9B:FB:64:F6:9C:81:44:49:B4:1E:E6:64:EA:41
Certificate issuer: /CN=5c9f01985a3f410f92370d6600a14ee783b044e9
Certificate serial: 017968B7
Authority key identifier: 5C:9F:01:98:5A:3F:41:0F:92:37:0D:66:00:A1:4E:E7:83:B0:44:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XJ8BmFo_QQ-SNw1mAKFO54OwROk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/79fb00-8d51-4712-929a-8cfb2e73f70d/1/FWpWnDESm_tk9pyBREm0HuZk6kE.roa
Signing time: Sat 01 Jan 2022 05:53:10 +0000
ROA not before: Sat 01 Jan 2022 05:53:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206679
IP address blocks: 84.205.168.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 24733879 (0x17968b7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c9f01985a3f410f92370d6600a14ee783b044e9
Validity
Not Before: Jan 1 05:53:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=156a569c31129bfb64f69c814449b41ee664ea41
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:62:cc:c5:ed:8b:fd:e6:3d:03:83:cf:f6:f1:
03:41:c0:ed:4c:46:15:3b:62:2a:e2:3e:7e:59:3f:
fe:62:3b:28:ab:21:6e:b0:eb:28:69:5a:98:44:60:
17:0e:d5:d9:97:70:1a:7b:2f:09:a7:42:c6:b8:cd:
f1:24:aa:8e:6e:10:1c:2b:4c:8a:e1:fb:7f:3f:87:
50:51:c3:70:3f:9b:cc:76:ac:e0:2e:4f:37:e7:09:
86:05:ab:f0:e3:47:d7:85:36:38:d1:b6:cd:7c:03:
71:4f:4c:12:c9:d7:21:b5:e3:d2:88:b3:0b:81:c2:
1f:e9:60:ce:4b:27:a5:d8:82:ed:ac:ed:c2:1d:fb:
a3:34:36:70:40:e2:0d:55:1c:51:b6:db:8b:21:44:
99:e4:c4:38:c6:e3:80:5a:22:a4:3d:84:3b:ec:9c:
fb:59:cf:3d:d9:a7:88:e8:a7:67:57:d5:ff:9b:b1:
fc:67:05:c1:ee:11:06:61:50:50:96:2c:14:84:41:
87:f9:9d:da:cc:99:86:7d:d6:15:0c:7a:da:f8:b3:
3f:39:d0:c2:50:67:3d:97:c2:a3:68:7a:b1:ef:db:
e4:82:f8:8c:f0:f4:f0:ee:92:d5:7d:40:6d:f4:52:
17:e4:e5:23:91:19:f8:4f:ac:9c:90:02:20:32:fc:
fd:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:6A:56:9C:31:12:9B:FB:64:F6:9C:81:44:49:B4:1E:E6:64:EA:41
X509v3 Authority Key Identifier:
keyid:5C:9F:01:98:5A:3F:41:0F:92:37:0D:66:00:A1:4E:E7:83:B0:44:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XJ8BmFo_QQ-SNw1mAKFO54OwROk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/79fb00-8d51-4712-929a-8cfb2e73f70d/1/FWpWnDESm_tk9pyBREm0HuZk6kE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/79fb00-8d51-4712-929a-8cfb2e73f70d/1/XJ8BmFo_QQ-SNw1mAKFO54OwROk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.205.168.0/24
Signature Algorithm: sha256WithRSAEncryption
12:6c:0a:8b:fe:b6:c0:c8:da:a4:7d:a2:16:fd:15:3f:e0:21:
66:46:9f:19:d3:68:a5:aa:34:23:c5:e2:38:f7:ff:6e:09:26:
fc:ea:0f:6d:6b:c9:05:dc:6d:18:98:51:61:c6:98:7e:f9:d1:
39:90:26:73:47:20:70:ff:8b:aa:dd:a4:75:76:2d:41:64:1a:
62:70:52:bf:a0:0d:4f:59:69:e6:04:43:17:98:1e:96:75:86:
47:71:4f:2e:9f:58:7b:53:a3:8b:ee:47:bf:8c:f0:d7:5a:a5:
f1:ba:a7:ab:80:53:08:91:07:f3:d7:5f:b4:ee:01:e7:0b:d9:
48:be:f2:bb:a2:44:f5:17:ab:8f:14:02:f0:d5:58:89:3e:06:
95:0c:5a:6b:79:11:98:f8:64:b0:23:5b:fb:9e:ab:71:75:8c:
b6:37:9e:33:80:d8:ea:19:ff:00:14:9f:7c:e2:17:28:b6:86:
fa:51:4d:49:12:8d:7a:62:b9:a2:e0:b9:c9:cc:ce:3d:8d:90:
23:af:f2:23:5b:dd:52:71:26:73:bb:31:63:ca:c3:73:a0:c4:
c9:7e:be:33:1d:84:cc:78:59:82:2d:f9:b5:a7:3b:05:af:2d:
7c:d5:cb:af:d0:c4:77:5c:f7:cf:8d:ab:1a:6b:44:43:56:1d:
c5:3b:15:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:40:07 2025 by rpki-client