Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/2phWuAsZdcOz3lc9whcieiBKDuQ.roa
File: 2phWuAsZdcOz3lc9whcieiBKDuQ.roa (raw, json)
Hash identifier: 40vbWAD2MCpEpEgpkzf3rQZ0TPoyfu0XKbdx/sD0GFw=
Subject key identifier: DA:98:56:B8:0B:19:75:C3:B3:DE:57:3D:C2:17:22:7A:20:4A:0E:E4
Certificate issuer: /CN=c4698585e5ebd11c969c7ed4a320edafc9d17822
Certificate serial: 0A6D4F80
Authority key identifier: C4:69:85:85:E5:EB:D1:1C:96:9C:7E:D4:A3:20:ED:AF:C9:D1:78:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xGmFheXr0RyWnH7UoyDtr8nReCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/2phWuAsZdcOz3lc9whcieiBKDuQ.roa
Signing time: Wed 20 Apr 2022 11:09:16 +0000
ROA not before: Wed 20 Apr 2022 11:09:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 142111
IP address blocks: 89.116.144.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 174935936 (0xa6d4f80)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4698585e5ebd11c969c7ed4a320edafc9d17822
Validity
Not Before: Apr 20 11:09:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=da9856b80b1975c3b3de573dc217227a204a0ee4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:fa:63:61:0d:77:59:83:21:66:5b:ee:3c:ab:
65:40:d3:20:b5:c3:fa:fd:eb:b1:54:90:f9:34:12:
31:f6:0f:fd:99:7f:54:06:72:6a:06:be:b8:48:5e:
39:11:10:48:19:25:7c:c0:20:bb:a1:ba:d9:8b:f2:
d0:29:86:ce:da:97:70:9a:d7:cf:ef:95:35:75:d1:
8b:c6:40:85:b5:1c:d6:5e:ea:57:5e:25:7f:a8:b8:
7c:f1:8d:3a:25:7f:cb:cb:23:32:0d:9e:a0:a3:e1:
6b:9a:6e:82:2b:be:d0:32:68:1e:95:de:74:ac:09:
d0:ce:59:98:4a:dc:3a:27:c0:f8:c6:01:7b:d5:21:
a0:85:20:78:a2:93:00:12:98:83:fe:af:d6:19:d8:
33:94:2a:78:b0:19:a4:c6:b3:c5:5a:b2:8f:db:93:
e0:cb:b3:63:3c:c1:c7:6c:b3:0a:fb:3f:44:d0:2b:
eb:41:e3:a1:58:67:fd:18:10:7b:33:64:6a:1a:9e:
f6:3e:79:f2:33:2b:fa:a6:4b:54:b6:fa:f6:b8:9b:
6c:a5:5b:3c:6f:dd:5a:63:14:77:d0:76:45:a2:9b:
82:f3:60:ef:cb:88:71:6c:1f:29:1b:4a:ea:d4:f4:
6f:c0:25:1b:28:4e:33:50:dc:d8:bf:fb:4a:41:77:
6a:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:98:56:B8:0B:19:75:C3:B3:DE:57:3D:C2:17:22:7A:20:4A:0E:E4
X509v3 Authority Key Identifier:
keyid:C4:69:85:85:E5:EB:D1:1C:96:9C:7E:D4:A3:20:ED:AF:C9:D1:78:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xGmFheXr0RyWnH7UoyDtr8nReCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/2phWuAsZdcOz3lc9whcieiBKDuQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/xGmFheXr0RyWnH7UoyDtr8nReCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.116.144.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:63:6d:b0:0a:6e:0b:3b:6c:54:78:40:24:e0:d6:99:29:43:
99:0c:4e:38:5a:bb:9d:46:32:e1:e2:de:e7:be:66:7d:75:c8:
bb:ba:f4:4b:e4:e5:4a:53:a8:19:19:4a:52:e2:d4:9a:93:33:
b9:4c:0b:8a:97:21:d4:df:0b:da:6f:4f:73:97:e6:6f:4c:b7:
5b:f8:34:6a:e5:ed:72:2f:eb:c1:71:fd:cb:d2:dd:00:e8:7d:
a0:62:1e:11:1e:25:34:6b:be:f5:04:ec:b3:e6:df:5a:14:e7:
23:85:b1:49:5e:ca:84:e7:e4:6f:be:74:b5:67:40:71:9f:99:
5c:dd:1d:fe:4b:20:4e:75:e7:a2:2a:e8:46:56:5f:b5:ba:4d:
cb:c4:8d:32:50:f0:a4:93:10:7c:bd:65:f3:60:83:5d:fc:1e:
32:c9:e3:e1:be:00:44:b3:75:b7:c5:ae:d3:a2:86:b6:68:5e:
68:f1:40:ce:01:31:ed:5d:be:45:14:78:97:1e:fb:f5:e2:14:
4e:f8:8a:a9:39:fa:67:f9:a6:ed:0e:29:af:b1:99:a2:2a:06:
e6:00:bc:12:ef:98:c6:3c:db:c1:b9:14:df:f1:a3:da:3c:94:
90:9a:2f:c9:c7:a3:6a:18:d1:9a:9e:64:a3:5d:4f:a9:f5:12:
33:f4:7d:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:24:41 2025 by rpki-client