Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/mE-FAf6F2bCAr_pWqC7KI8yrNDo.roa
File: mE-FAf6F2bCAr_pWqC7KI8yrNDo.roa (raw, json)
Hash identifier: OZWmSOoBWASgBW4qQIXT9bD1joQp55QlXT+GpBfZyZ4=
Subject key identifier: 98:4F:85:01:FE:85:D9:B0:80:AF:FA:56:A8:2E:CA:23:CC:AB:34:3A
Certificate issuer: /CN=c4698585e5ebd11c969c7ed4a320edafc9d17822
Certificate serial: 09549A66
Authority key identifier: C4:69:85:85:E5:EB:D1:1C:96:9C:7E:D4:A3:20:ED:AF:C9:D1:78:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xGmFheXr0RyWnH7UoyDtr8nReCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/mE-FAf6F2bCAr_pWqC7KI8yrNDo.roa
Signing time: Fri 04 Feb 2022 05:55:26 +0000
ROA not before: Fri 04 Feb 2022 05:55:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 22773
IP address blocks: 89.117.40.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 156539494 (0x9549a66)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4698585e5ebd11c969c7ed4a320edafc9d17822
Validity
Not Before: Feb 4 05:55:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=984f8501fe85d9b080affa56a82eca23ccab343a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:9c:eb:d8:ff:a5:92:26:14:5c:fe:c5:38:75:
1d:fa:ba:36:3b:21:a5:a2:50:5b:90:a6:a4:55:4f:
dd:17:5a:03:e1:3d:be:51:b2:d6:84:6a:05:93:91:
05:22:4e:4b:58:08:2d:e8:85:e2:f4:5c:26:54:99:
24:3c:5d:53:01:4c:ff:40:f9:c0:ab:37:c4:4e:dd:
fa:4b:2c:69:2b:b7:86:c7:70:ba:b3:71:fc:5c:46:
32:5c:d8:3a:b8:6e:1c:13:27:53:9d:7b:05:52:ed:
ac:e2:23:b0:5a:40:64:43:ac:e2:8e:d8:8a:c7:e4:
78:bf:03:08:b5:37:83:5e:d1:e7:b0:9d:40:f9:1b:
4f:45:18:df:75:65:8b:13:21:c5:fa:2c:05:ef:36:
b0:15:aa:89:98:d5:f1:d9:99:6b:41:2a:38:a4:6f:
da:2e:32:7b:a0:94:05:ad:72:29:ce:22:41:b9:3a:
da:c2:cc:a4:96:cd:2e:c6:06:9f:b6:05:0e:26:41:
a6:bc:aa:f3:16:21:6f:85:00:c1:ac:1a:08:e9:95:
b4:83:ee:af:37:63:10:3e:59:92:6d:07:7c:0c:6e:
94:9f:59:d7:bf:25:33:1c:22:dc:53:79:49:17:5f:
8c:06:a3:d9:c8:ca:5e:fc:ac:05:34:de:fe:b6:cd:
70:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:4F:85:01:FE:85:D9:B0:80:AF:FA:56:A8:2E:CA:23:CC:AB:34:3A
X509v3 Authority Key Identifier:
keyid:C4:69:85:85:E5:EB:D1:1C:96:9C:7E:D4:A3:20:ED:AF:C9:D1:78:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xGmFheXr0RyWnH7UoyDtr8nReCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/mE-FAf6F2bCAr_pWqC7KI8yrNDo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/xGmFheXr0RyWnH7UoyDtr8nReCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.117.40.0/21
Signature Algorithm: sha256WithRSAEncryption
86:a7:b1:0c:e4:b6:d6:53:fc:cc:ec:83:2e:0e:6c:ae:71:ac:
fe:da:f9:ad:51:c1:b6:b9:f2:2e:79:8e:a3:dc:55:29:da:d4:
90:1c:82:ef:22:2b:fb:24:48:37:85:49:1b:dc:38:53:88:95:
4c:e8:dc:2d:26:39:e6:9e:51:aa:ca:e9:8e:06:58:5f:e1:e7:
66:b5:67:76:d9:d9:b9:21:e4:d0:8c:d7:15:94:82:95:81:c7:
31:16:6a:be:f8:3a:64:50:66:fd:43:7a:b6:a9:02:b8:e0:21:
f5:64:e4:0f:bc:40:f5:32:ff:30:c3:38:65:66:36:87:d6:83:
7b:90:07:42:6c:93:d3:b8:43:9a:08:e2:d3:e2:cc:b8:b9:6b:
ca:bc:6c:b8:ab:07:88:f6:3c:aa:04:35:35:7a:b4:57:0b:4e:
40:83:b0:2b:01:2a:e8:10:1f:5c:92:27:7b:a2:73:21:09:1a:
ed:7c:2b:89:9f:b6:5c:0f:43:20:6b:cd:1a:49:a6:23:c1:00:
97:00:6a:6a:a9:5c:a3:a1:24:01:63:41:26:3e:4a:50:a3:b6:
c9:10:2e:9d:bd:98:c4:1b:cf:c2:d7:3d:97:76:c7:8f:5e:27:
4b:b0:50:58:ab:a2:be:04:ec:05:eb:be:b4:10:c1:ba:18:b8:
ff:ce:4e:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:33:04 2025 by rpki-client