Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/f116d7-8519-4924-8d1d-4c77d605afec/1/CsWK96dqC_s6L7vQ-E3w-xh3OCM.roa
File: CsWK96dqC_s6L7vQ-E3w-xh3OCM.roa (raw, json)
Hash identifier: VxOmKMo1Tam8R8AYNi5rX2MNY84z4QDtcQWrFStk5Qk=
Subject key identifier: 0A:C5:8A:F7:A7:6A:0B:FB:3A:2F:BB:D0:F8:4D:F0:FB:18:77:38:23
Certificate issuer: /CN=5f99fde0d63b11b5c2dd816c0f93c2ea58350336
Certificate serial: 090C2A62
Authority key identifier: 5F:99:FD:E0:D6:3B:11:B5:C2:DD:81:6C:0F:93:C2:EA:58:35:03:36
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X5n94NY7EbXC3YFsD5PC6lg1AzY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/f116d7-8519-4924-8d1d-4c77d605afec/1/CsWK96dqC_s6L7vQ-E3w-xh3OCM.roa
Signing time: Sat 01 Jan 2022 02:55:00 +0000
ROA not before: Sat 01 Jan 2022 02:55:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49409
IP address blocks: 185.81.14.0/23 maxlen: 23
178.22.96.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 151792226 (0x90c2a62)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5f99fde0d63b11b5c2dd816c0f93c2ea58350336
Validity
Not Before: Jan 1 02:55:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0ac58af7a76a0bfb3a2fbbd0f84df0fb18773823
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:3d:ba:92:17:ce:f3:7f:c1:0c:c1:e9:c1:0d:
32:00:21:ab:12:ce:50:ea:d3:69:a4:a0:fa:a0:2b:
e2:df:bd:2c:88:5b:b9:1e:36:92:c9:e7:dd:d6:cb:
d3:f4:c4:ec:aa:38:f8:04:73:0c:09:d8:75:ea:10:
10:26:3a:3f:f3:77:b3:ad:eb:90:5a:ad:24:56:97:
b0:db:65:72:c2:61:f4:7d:01:d8:34:ff:8d:3e:ea:
b9:87:e4:dd:dc:ca:81:9b:03:6c:9c:08:65:73:03:
cd:59:ea:4d:b9:a4:de:5d:1e:99:64:ac:c9:95:b3:
1e:c6:fc:19:0c:e6:62:6e:97:86:c5:2f:38:dd:2f:
57:c9:c5:cf:21:48:35:58:31:bd:23:df:bf:4f:34:
a2:48:81:f2:af:d3:4a:ec:20:74:7c:71:d1:29:3c:
27:b3:a4:97:90:b5:81:5b:55:41:12:57:30:65:2c:
b0:54:a7:a1:a5:f6:e2:29:9d:6f:d2:a9:1e:68:88:
39:61:30:54:d7:05:0c:15:7d:51:4c:03:fb:90:36:
6d:74:c6:0c:dd:fa:1e:26:e2:af:e1:b8:f1:14:f3:
a3:bb:7b:bd:78:94:8d:8f:9b:1d:a6:6b:65:17:0a:
f4:75:07:48:5f:f3:78:e7:ce:b1:14:1c:ff:af:71:
f4:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:C5:8A:F7:A7:6A:0B:FB:3A:2F:BB:D0:F8:4D:F0:FB:18:77:38:23
X509v3 Authority Key Identifier:
keyid:5F:99:FD:E0:D6:3B:11:B5:C2:DD:81:6C:0F:93:C2:EA:58:35:03:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X5n94NY7EbXC3YFsD5PC6lg1AzY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/f116d7-8519-4924-8d1d-4c77d605afec/1/CsWK96dqC_s6L7vQ-E3w-xh3OCM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/f116d7-8519-4924-8d1d-4c77d605afec/1/X5n94NY7EbXC3YFsD5PC6lg1AzY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.22.96.0/21
185.81.14.0/23
Signature Algorithm: sha256WithRSAEncryption
83:df:45:13:62:bb:ad:c4:f4:2e:4e:1e:48:0c:51:69:7d:45:
db:59:ba:fc:13:c3:ab:55:f0:3a:1e:e9:0c:2b:17:9f:cf:4f:
bb:c4:ae:67:2d:d1:00:cd:01:0d:fb:8c:25:03:53:3d:fb:d7:
c4:e1:bb:d5:d6:1a:05:68:9e:db:88:f2:74:e4:4a:a6:72:7e:
39:62:1c:30:8a:81:79:9d:71:b6:28:40:93:fa:e6:f9:19:90:
9d:3a:d7:a1:f7:5f:14:c7:2b:e3:47:11:12:5f:60:51:98:02:
74:35:5a:25:f1:a8:ba:d8:93:52:ec:2c:bf:27:cc:11:db:e6:
c6:c3:8b:32:20:f9:14:d3:cb:b1:47:f4:70:2a:60:f6:71:4a:
af:23:68:f8:fe:56:16:8d:e5:51:c4:53:66:a0:64:48:33:31:
51:d7:f3:76:94:7b:00:70:d3:e9:94:16:c3:9b:f5:5f:e5:f5:
98:d5:4c:1a:e9:d6:27:9b:65:e8:f8:c9:c2:14:d8:b0:66:5d:
68:ac:5a:15:0f:e1:75:39:b4:ab:95:5a:70:e8:c4:d5:51:60:
60:59:0c:bc:d5:19:c1:93:a3:c5:a1:91:52:d5:80:bc:64:49:
48:f6:a6:31:f8:67:53:dd:eb:37:71:f4:67:4d:82:e2:e5:c5:
c0:3c:b2:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 00:20:06 2025 by rpki-client