Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/494455-1d2e-4e2b-8f0e-9a0cfce878a4/1/XzBINlVuVnnK97CNs8c3xwxsJyc.roa
File: XzBINlVuVnnK97CNs8c3xwxsJyc.roa (raw, json)
Hash identifier: aufe2sI+d90F62eHg2IjrIChWN19FWYZhBy1IUCpGbY=
Subject key identifier: 5F:30:48:36:55:6E:56:79:CA:F7:B0:8D:B3:C7:37:C7:0C:6C:27:27
Certificate issuer: /CN=42f48f7fae012916a775d5e3b6fa231098343ea0
Certificate serial: 02FD8FEF
Authority key identifier: 42:F4:8F:7F:AE:01:29:16:A7:75:D5:E3:B6:FA:23:10:98:34:3E:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QvSPf64BKRanddXjtvojEJg0PqA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/494455-1d2e-4e2b-8f0e-9a0cfce878a4/1/XzBINlVuVnnK97CNs8c3xwxsJyc.roa
Signing time: Sat 01 Jan 2022 04:57:55 +0000
ROA not before: Sat 01 Jan 2022 04:57:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203589
IP address blocks: 188.211.166.0/24 maxlen: 24
2a05:8880:4::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 50171887 (0x2fd8fef)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=42f48f7fae012916a775d5e3b6fa231098343ea0
Validity
Not Before: Jan 1 04:57:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5f304836556e5679caf7b08db3c737c70c6c2727
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:fc:d8:e5:28:64:6d:3d:a6:4b:f2:7a:d8:81:
58:22:c0:36:fd:37:48:fd:ea:dc:33:ab:b1:97:c2:
75:f7:c6:ad:99:bd:27:b7:e9:41:e6:fb:5e:1f:de:
0c:e4:ab:3c:ad:06:5a:07:b9:a6:4a:3c:9f:56:6f:
70:ac:48:58:2d:e3:40:6f:ff:a7:9e:72:77:20:90:
f9:8f:4f:a2:e2:54:8a:a7:b2:d3:a6:07:a4:45:e1:
ce:a1:b6:ca:99:59:11:05:8b:f8:45:93:a7:1a:9c:
cf:1c:e1:27:26:7e:dc:fe:21:00:43:f1:29:74:5e:
b8:c0:bf:3e:6c:42:cf:d7:87:0d:a2:f4:4d:7c:8d:
16:e4:9b:bc:de:a4:a2:99:aa:15:d8:3b:1d:6f:92:
5d:d3:bd:a3:53:b7:20:19:d9:28:a0:fe:fa:96:35:
06:42:0b:ac:08:7f:fb:86:97:dd:c1:a1:60:57:2c:
61:96:19:fe:2a:7e:36:95:59:17:4c:2d:8b:01:82:
1b:c2:ec:7c:1d:9e:58:fc:57:d0:93:40:aa:1e:eb:
06:7a:3a:fa:14:96:62:e8:29:33:e2:51:26:7a:bd:
ce:8f:83:64:35:3d:e3:85:53:2d:a1:85:af:30:5f:
56:ec:f9:22:34:7c:59:8c:87:21:85:f4:ab:7a:7c:
35:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:30:48:36:55:6E:56:79:CA:F7:B0:8D:B3:C7:37:C7:0C:6C:27:27
X509v3 Authority Key Identifier:
keyid:42:F4:8F:7F:AE:01:29:16:A7:75:D5:E3:B6:FA:23:10:98:34:3E:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QvSPf64BKRanddXjtvojEJg0PqA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/494455-1d2e-4e2b-8f0e-9a0cfce878a4/1/XzBINlVuVnnK97CNs8c3xwxsJyc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/494455-1d2e-4e2b-8f0e-9a0cfce878a4/1/QvSPf64BKRanddXjtvojEJg0PqA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.211.166.0/24
IPv6:
2a05:8880:4::/48
Signature Algorithm: sha256WithRSAEncryption
79:37:cd:d4:a8:d7:68:6d:ba:58:36:98:d0:3c:1f:8e:c9:9c:
0f:5c:25:49:a1:0b:03:e7:0f:6c:c4:04:94:da:57:95:a6:f4:
f9:05:39:75:d2:82:69:c5:a6:75:d9:fd:2c:b9:d9:88:3b:09:
63:01:be:b0:2c:ff:ed:4b:2b:e0:53:f1:df:1c:af:bd:39:88:
ba:76:0d:8c:52:9b:b7:52:36:e5:0b:4a:d8:38:29:21:b6:29:
2b:48:4e:bf:dd:5b:40:e5:44:1c:97:33:c9:80:8a:ad:6f:34:
6c:59:14:dc:c9:d8:af:a8:de:98:77:ef:e2:31:25:4f:a6:7f:
9d:1e:00:d6:b3:c3:4d:5d:46:a6:10:74:39:c6:50:96:5c:39:
90:73:08:6b:fe:30:13:b7:cf:e8:a8:59:e1:29:e3:12:3b:38:
c7:2f:a2:68:c4:d3:72:f4:20:7b:a6:4d:5f:37:dc:7c:30:35:
8b:bb:e2:28:58:59:03:02:c1:c9:80:0b:9f:4e:5a:fe:77:a7:
02:df:35:92:6a:14:07:73:d7:a9:48:d8:82:f6:c3:36:a0:1a:
17:80:5d:37:e5:12:8f:1f:df:03:88:2a:0a:22:9f:6f:1b:78:
d2:bd:6d:38:a0:b2:3d:ca:56:9e:d7:95:70:15:9b:4e:57:cf:
12:08:fe:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 20:56:32 2025 by rpki-client