Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/617e64-e4ed-4e4e-9466-c46caf64e710/1/EHDZB3hmIgHpLjbOnCLUPzgtGXs.roa
File: EHDZB3hmIgHpLjbOnCLUPzgtGXs.roa (raw, json)
Hash identifier: HXNJ2kBnEogLfqd4smpzvsISy+7S9lFVJV1SPUZ5blk=
Subject key identifier: 10:70:D9:07:78:66:22:01:E9:2E:36:CE:9C:22:D4:3F:38:2D:19:7B
Certificate issuer: /CN=483c9d9d09e3ff7d728c03792d74ad19968ce27d
Certificate serial: C1B4D9
Authority key identifier: 48:3C:9D:9D:09:E3:FF:7D:72:8C:03:79:2D:74:AD:19:96:8C:E2:7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SDydnQnj_31yjAN5LXStGZaM4n0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/617e64-e4ed-4e4e-9466-c46caf64e710/1/EHDZB3hmIgHpLjbOnCLUPzgtGXs.roa
Signing time: Tue 26 Apr 2022 14:45:33 +0000
ROA not before: Tue 26 Apr 2022 14:45:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58061
IP address blocks: 93.177.105.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12694745 (0xc1b4d9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=483c9d9d09e3ff7d728c03792d74ad19968ce27d
Validity
Not Before: Apr 26 14:45:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1070d90778662201e92e36ce9c22d43f382d197b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:36:10:42:4b:da:86:8c:a4:05:cb:fd:a9:1f:
b8:4d:6c:1e:65:55:f5:46:c0:2a:b2:ee:0b:d9:e9:
c8:66:32:11:9d:3a:83:e1:db:2b:ed:ca:29:24:80:
dc:b4:1f:66:f3:ae:e7:02:5b:ff:42:2c:76:13:fa:
e7:bd:6e:b7:e9:f0:01:32:6c:12:d7:80:73:de:1e:
d6:44:1a:fc:69:15:a2:40:cb:85:8d:41:ed:1e:07:
f1:18:b4:45:4a:87:1b:ff:99:32:65:a8:10:76:73:
b5:df:6c:21:28:a4:ce:e9:05:bd:d2:5f:18:6b:95:
aa:fa:57:b0:66:a4:39:c7:c1:40:d6:48:7b:f3:72:
56:5f:a2:7b:65:ce:3f:09:b8:b4:6f:bc:c4:b8:8a:
bf:9c:43:86:3b:38:5b:71:85:0f:14:b3:90:b6:12:
cc:9d:1a:07:a9:30:49:27:27:8e:ad:dc:eb:ef:08:
5c:78:2a:9a:c6:0e:f4:83:10:37:db:7c:da:b3:c3:
a0:16:9d:b4:0a:08:6b:19:7b:6d:75:3e:8f:fa:2f:
4d:b2:46:df:54:1c:67:df:47:ab:60:e8:1d:0a:bb:
1c:c2:0b:c8:b5:c9:4e:b7:d8:48:4f:17:ad:62:ae:
2e:b2:79:bd:b8:49:52:d2:cd:ea:2f:90:5e:f2:47:
b0:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:70:D9:07:78:66:22:01:E9:2E:36:CE:9C:22:D4:3F:38:2D:19:7B
X509v3 Authority Key Identifier:
keyid:48:3C:9D:9D:09:E3:FF:7D:72:8C:03:79:2D:74:AD:19:96:8C:E2:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SDydnQnj_31yjAN5LXStGZaM4n0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/617e64-e4ed-4e4e-9466-c46caf64e710/1/EHDZB3hmIgHpLjbOnCLUPzgtGXs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/617e64-e4ed-4e4e-9466-c46caf64e710/1/SDydnQnj_31yjAN5LXStGZaM4n0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.177.105.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:5f:db:f9:15:62:a3:57:64:bb:dd:19:12:28:c5:29:10:73:
a5:4f:8e:42:42:2f:e5:ef:1c:01:5a:26:f4:9b:4e:21:1a:91:
97:6c:77:1d:b6:75:cf:12:8d:c0:37:c3:78:ba:99:a0:63:3c:
68:45:71:3b:23:7c:f3:04:f4:3b:a1:28:23:71:e0:cd:6f:aa:
9e:6b:5d:81:62:b1:53:96:fd:13:01:9e:81:6a:47:67:04:09:
b2:20:ee:fe:d3:6c:bf:96:94:82:21:d4:ea:49:74:82:0c:9e:
8a:93:33:4a:11:ff:88:5c:01:6d:ae:5d:20:af:ee:b3:cc:13:
ad:9a:52:06:3f:37:2d:39:db:e3:79:88:60:0e:03:35:d5:fc:
0a:5c:b0:75:af:51:79:24:e7:22:96:ff:ee:45:e3:2d:f4:4e:
19:f0:a3:e4:e5:54:12:e6:15:5d:64:02:32:4b:95:60:4d:9e:
7c:42:d4:f2:6e:3e:23:f6:82:60:c5:e4:7b:c8:f4:01:33:68:
0d:89:79:27:a6:87:82:0d:39:21:22:51:fa:f6:e1:ce:a5:77:
10:f4:7e:5d:0e:cd:2e:1e:24:42:d3:75:41:fe:eb:fb:b3:7e:
02:29:2e:d8:3c:e4:05:f3:4e:af:d2:1b:7a:9c:44:1e:02:01:
1f:fc:b7:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 23:32:54 2025 by rpki-client