Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/_pMTPkwMQsNo0DwlKpN3TlpxYf8.roa
File: _pMTPkwMQsNo0DwlKpN3TlpxYf8.roa (raw, json)
Hash identifier: zpHiadMXmTSbn8H9f2/ebi2zW9RZk9T4c4WI6kBkUR0=
Subject key identifier: FE:93:13:3E:4C:0C:42:C3:68:D0:3C:25:2A:93:77:4E:5A:71:61:FF
Certificate issuer: /CN=52cd9a6512dbf25a5f19b827d7a2c7e22a2ee8dd
Certificate serial: 0187EB8C4637853606C6854CBAFCAE15F091
Authority key identifier: 52:CD:9A:65:12:DB:F2:5A:5F:19:B8:27:D7:A2:C7:E2:2A:2E:E8:DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Us2aZRLb8lpfGbgn16LH4iou6N0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/_pMTPkwMQsNo0DwlKpN3TlpxYf8.roa
Signing time: Fri 05 May 2023 10:54:11 +0000
ROA not before: Fri 05 May 2023 10:54:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51713
IP address blocks: 77.95.113.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:eb:8c:46:37:85:36:06:c6:85:4c:ba:fc:ae:15:f0:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52cd9a6512dbf25a5f19b827d7a2c7e22a2ee8dd
Validity
Not Before: May 5 10:54:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fe93133e4c0c42c368d03c252a93774e5a7161ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:d6:4a:6a:10:2a:04:00:e4:58:16:37:15:1f:
e8:59:ee:38:35:64:e8:ee:9c:48:12:92:01:61:ed:
99:63:e5:62:8c:b2:24:ba:e5:34:c2:bb:9f:8b:e6:
b0:bd:c6:4b:e0:5f:e9:e4:a9:e8:87:e9:d5:f3:02:
14:69:eb:ab:05:9e:08:9f:d9:f3:01:ae:b7:c2:e8:
2b:55:c3:80:1b:8c:8d:27:4e:70:0c:19:80:f2:52:
a6:40:34:32:e1:02:b2:60:3d:54:d5:5a:90:0a:8f:
04:ce:ba:d4:36:89:5b:fa:2c:3e:43:ee:50:fa:46:
b6:ab:05:88:95:a6:9e:e2:3d:01:ce:43:37:40:4f:
74:83:f4:c6:d4:e1:38:d4:d6:13:6c:59:f1:bf:09:
01:f6:ae:09:39:6a:fe:3a:6b:8d:e4:6b:b3:c4:54:
4f:0e:e1:f2:5a:50:32:0a:eb:c8:f4:71:8e:4c:64:
fa:91:c8:d3:33:f5:ec:25:8e:6c:d6:fd:49:68:dd:
b8:16:1c:a0:55:42:3d:86:8a:e5:de:35:b9:0b:7c:
cd:f6:29:6e:08:72:f5:f4:41:1a:3f:6a:c0:f8:e1:
0d:0c:48:0c:3b:62:63:f5:6c:ec:02:de:f4:3e:9b:
c5:2a:16:19:27:47:06:e9:50:cf:44:78:61:7f:9e:
fb:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:93:13:3E:4C:0C:42:C3:68:D0:3C:25:2A:93:77:4E:5A:71:61:FF
X509v3 Authority Key Identifier:
keyid:52:CD:9A:65:12:DB:F2:5A:5F:19:B8:27:D7:A2:C7:E2:2A:2E:E8:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Us2aZRLb8lpfGbgn16LH4iou6N0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/_pMTPkwMQsNo0DwlKpN3TlpxYf8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/Us2aZRLb8lpfGbgn16LH4iou6N0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.95.113.0/24
Signature Algorithm: sha256WithRSAEncryption
39:43:f9:e1:7c:10:d4:86:a2:25:d8:61:ea:ec:fc:87:aa:10:
94:42:34:8e:a4:7b:7c:3c:aa:33:4e:30:d2:9c:6f:0d:64:95:
2a:77:c5:c4:f9:de:d4:9a:cc:4b:b0:ce:61:ac:42:00:93:d7:
ac:1d:08:99:0b:35:9e:ef:51:e3:4a:cc:55:8e:9b:20:5d:23:
26:e4:7e:1c:8b:29:1c:6a:4c:34:79:d3:af:91:a1:9c:44:fd:
e5:aa:cc:2c:a4:86:8e:da:d1:ac:d5:aa:29:22:3a:98:3e:d8:
cb:b2:bb:b0:4c:45:e6:56:4d:87:6d:c2:9d:2d:96:87:7b:f0:
2d:ad:ec:29:1d:4d:57:53:16:ca:ea:46:3f:bc:32:82:4b:ec:
78:7e:44:dd:be:56:73:52:5e:ce:51:39:fa:34:de:51:2f:7a:
1d:09:ae:86:4f:9f:b0:20:f9:5b:26:ff:e5:07:10:f9:ff:78:
e5:c8:11:ac:ac:a5:ca:82:90:44:ad:dd:5b:a3:d1:7d:76:dd:
fa:b5:42:33:c0:bd:c6:70:16:cd:b4:23:4f:23:94:22:60:64:
9d:4d:6f:15:e7:6c:13:15:cd:9d:50:2a:cb:54:4a:65:b7:5c:
75:d9:3e:b0:20:6b:00:21:22:8f:95:94:57:df:c9:bb:1b:57:
0e:fa:4d:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 15:01:02 2025 by rpki-client