Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/4f211e-79d7-4504-9ead-871f9ed708e0/1/rkibYHT_X_hZ2nd9BgTzt6IusOU.roa
File: rkibYHT_X_hZ2nd9BgTzt6IusOU.roa (raw, json)
Hash identifier: h1imHsayfWF3du5CsuQGNZ88tRyaDKXWH/QcGHvbiOQ=
Subject key identifier: AE:48:9B:60:74:FF:5F:F8:59:DA:77:7D:06:04:F3:B7:A2:2E:B0:E5
Certificate issuer: /CN=1ba51a0bc0f0afebbf6d5d927fe1f9816f52352d
Certificate serial: 018330DC4B7D96A244ABA741B630DD21983B
Authority key identifier: 1B:A5:1A:0B:C0:F0:AF:EB:BF:6D:5D:92:7F:E1:F9:81:6F:52:35:2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G6UaC8Dwr-u_bV2Sf-H5gW9SNS0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/4f211e-79d7-4504-9ead-871f9ed708e0/1/rkibYHT_X_hZ2nd9BgTzt6IusOU.roa
Signing time: Mon 12 Sep 2022 08:41:27 +0000
ROA not before: Mon 12 Sep 2022 08:41:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207990
IP address blocks: 89.19.42.0/23 maxlen: 32
83.229.76.0/22 maxlen: 32
93.114.10.0/23 maxlen: 32
45.142.92.0/22 maxlen: 32
209.20.176.0/21 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:30:dc:4b:7d:96:a2:44:ab:a7:41:b6:30:dd:21:98:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1ba51a0bc0f0afebbf6d5d927fe1f9816f52352d
Validity
Not Before: Sep 12 08:41:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ae489b6074ff5ff859da777d0604f3b7a22eb0e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:f1:6d:57:fa:f8:32:67:03:ae:bd:fb:0a:36:
5a:20:a8:c8:69:9f:98:30:bc:1d:0d:77:db:3b:80:
22:2b:f4:2d:7d:96:70:56:99:86:14:80:c6:10:4e:
9d:90:ec:4f:c4:73:18:0b:8b:e6:cd:a7:f1:c2:19:
85:ec:a5:e6:56:bc:58:a2:4a:69:88:76:70:f4:db:
23:00:c5:80:95:7b:70:c7:91:6e:c5:bb:b6:ed:b3:
06:1d:05:d2:ee:f1:33:45:3b:da:43:6e:68:6e:d1:
ca:f7:dd:26:7e:71:38:0f:5a:38:f0:2a:0b:2d:9c:
f9:34:c9:24:93:96:6d:af:45:9a:b2:22:9d:6f:fa:
88:c8:27:18:02:31:04:02:d0:f6:f9:14:e2:7e:42:
a1:28:36:e5:94:66:3a:ef:a2:64:6c:c6:45:0d:56:
f6:aa:e1:ca:25:98:7b:ca:c6:68:86:7a:82:5a:36:
6d:b7:b7:6c:21:e5:f0:48:7b:af:3d:2d:89:da:89:
35:57:d7:99:c6:f6:5b:5d:da:6f:d3:6e:48:f0:dd:
44:fb:37:c1:a8:ed:76:21:a4:48:76:a2:dc:2e:86:
0b:ae:d5:66:cd:ee:65:d6:88:65:e5:6e:06:8b:00:
18:e5:7f:0f:b7:8e:15:7d:fc:01:a8:65:71:e0:59:
08:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:48:9B:60:74:FF:5F:F8:59:DA:77:7D:06:04:F3:B7:A2:2E:B0:E5
X509v3 Authority Key Identifier:
keyid:1B:A5:1A:0B:C0:F0:AF:EB:BF:6D:5D:92:7F:E1:F9:81:6F:52:35:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G6UaC8Dwr-u_bV2Sf-H5gW9SNS0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/4f211e-79d7-4504-9ead-871f9ed708e0/1/rkibYHT_X_hZ2nd9BgTzt6IusOU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/4f211e-79d7-4504-9ead-871f9ed708e0/1/G6UaC8Dwr-u_bV2Sf-H5gW9SNS0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.142.92.0/22
83.229.76.0/22
89.19.42.0/23
93.114.10.0/23
209.20.176.0/21
Signature Algorithm: sha256WithRSAEncryption
72:aa:69:df:90:02:a3:26:2b:2a:9f:0c:f5:91:93:7b:db:e3:
ab:42:c1:fe:33:3e:e4:65:4a:75:d6:38:5d:cd:05:73:97:06:
a3:a1:4f:82:de:8e:d6:cc:7a:a5:cb:bb:2c:80:ad:33:ed:a1:
b9:db:76:b8:f3:32:78:23:61:35:6b:e4:ef:de:53:44:74:e3:
a0:8c:0e:8f:cf:ac:9f:cd:d3:f2:da:78:5c:67:ab:ae:95:64:
dc:c8:77:64:a6:46:1d:d7:ca:28:ac:6b:93:04:14:24:b1:7d:
5a:86:e5:b1:c0:8c:54:40:6f:6b:aa:d6:d9:ae:7d:f0:4e:9e:
7a:54:eb:6e:15:7b:c4:e9:04:ea:75:8f:6b:ec:cb:56:89:81:
57:9e:7d:12:6d:90:18:52:70:bc:fe:c2:db:e1:b1:4f:2c:5c:
ac:c0:46:86:7d:45:22:cb:11:ab:47:eb:19:55:a0:1e:1c:4c:
74:fc:2d:80:1f:31:fd:26:9a:01:c5:73:cd:7a:8a:ca:04:03:
61:74:72:3f:b5:05:9a:fb:bc:45:af:e9:a4:a1:78:49:3a:7d:
58:18:d7:bd:d0:8b:aa:1f:50:e6:7d:25:02:b5:42:32:58:b5:
7d:d1:c8:a2:97:6b:d8:51:f5:49:09:4e:84:63:71:a2:35:79:
53:e5:b9:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 21:28:30 2025 by rpki-client