Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/0d2b6c-abd7-43bb-97b7-4596d65b54f8/1/L-GiRKwd2rkiGca1EHNJbjYlCRU.roa
File: L-GiRKwd2rkiGca1EHNJbjYlCRU.roa (raw, json)
Hash identifier: TUL3y5pPqRQXQS0VXaQOj6HQJ2xlnzheUGHOo3C/e94=
Subject key identifier: 2F:E1:A2:44:AC:1D:DA:B9:22:19:C6:B5:10:73:49:6E:36:25:09:15
Certificate issuer: /CN=9e962a44217b8ed45d0e567108313f04bbf050e5
Certificate serial: 16037737
Authority key identifier: 9E:96:2A:44:21:7B:8E:D4:5D:0E:56:71:08:31:3F:04:BB:F0:50:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/npYqRCF7jtRdDlZxCDE_BLvwUOU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/0d2b6c-abd7-43bb-97b7-4596d65b54f8/1/L-GiRKwd2rkiGca1EHNJbjYlCRU.roa
Signing time: Sat 01 Jan 2022 03:54:37 +0000
ROA not before: Sat 01 Jan 2022 03:54:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 28863
IP address blocks: 109.234.168.0/24 maxlen: 24
109.234.168.0/21 maxlen: 21
109.234.169.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 369325879 (0x16037737)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e962a44217b8ed45d0e567108313f04bbf050e5
Validity
Not Before: Jan 1 03:54:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2fe1a244ac1ddab92219c6b51073496e36250915
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:4c:5a:d6:96:45:d3:38:60:62:b8:dd:4e:55:
ae:17:19:d0:70:30:0a:46:5e:4f:6d:74:92:a8:24:
1b:d3:82:bd:90:ed:12:8c:00:78:8d:de:ee:22:c1:
ea:93:0f:31:b6:e7:07:83:a1:b5:52:b6:02:42:93:
ec:b8:ea:80:76:46:87:b2:d7:85:f3:8f:70:60:4e:
74:bd:1f:45:84:75:a3:a2:83:ff:6a:dc:13:f3:60:
76:c4:cd:77:4f:aa:7c:cd:64:ee:37:a5:86:32:7a:
b6:cf:f6:3f:7d:a3:8c:68:e0:6f:2a:51:62:2d:0c:
f4:96:ad:ce:9b:38:33:02:d4:6b:1a:7d:32:3e:de:
f7:d1:93:bd:35:4d:f3:90:6e:e4:08:f4:d7:89:24:
c2:1a:94:e3:79:f5:de:f0:3b:73:97:8b:56:72:c8:
20:86:57:fe:57:f5:d8:84:d4:5c:d2:32:7f:ba:79:
6f:78:f3:40:58:fc:c7:5f:6b:8e:65:b4:31:44:b2:
8c:76:bc:03:0b:0c:23:b9:22:36:a2:44:05:42:61:
aa:99:13:57:4a:6f:bd:ff:d7:34:26:54:e9:ab:51:
b9:8f:29:73:bc:09:2c:8b:9e:97:c2:96:62:c0:ec:
d0:dd:86:44:77:49:d1:81:91:4c:c0:2e:86:95:84:
29:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:E1:A2:44:AC:1D:DA:B9:22:19:C6:B5:10:73:49:6E:36:25:09:15
X509v3 Authority Key Identifier:
keyid:9E:96:2A:44:21:7B:8E:D4:5D:0E:56:71:08:31:3F:04:BB:F0:50:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/npYqRCF7jtRdDlZxCDE_BLvwUOU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/0d2b6c-abd7-43bb-97b7-4596d65b54f8/1/L-GiRKwd2rkiGca1EHNJbjYlCRU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/0d2b6c-abd7-43bb-97b7-4596d65b54f8/1/npYqRCF7jtRdDlZxCDE_BLvwUOU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.234.168.0/21
Signature Algorithm: sha256WithRSAEncryption
21:df:95:40:9b:3b:ec:cb:a1:b3:63:a3:aa:a4:2e:b9:81:00:
8a:eb:0c:f5:96:73:df:52:8e:82:92:3e:2c:f7:95:10:94:d1:
d6:7e:5d:e4:e8:e8:6b:b8:15:11:f3:16:a1:94:26:56:a6:d1:
67:4e:db:75:ff:33:ae:bf:82:d0:e3:68:c6:af:29:71:e6:ff:
51:ab:92:5d:00:c3:c2:76:36:f8:ed:6a:44:87:00:8e:60:76:
ce:69:72:9f:6c:71:06:07:af:24:a8:2d:80:4b:0a:42:ac:ee:
42:e5:16:00:6b:99:c2:ad:68:a6:b5:f6:34:d9:d2:c2:94:33:
3b:e7:5c:93:20:ad:28:f3:75:5c:a0:31:73:45:e8:39:6a:c6:
a2:39:a2:92:ad:7f:5e:04:06:66:25:b7:b0:3f:e3:be:8a:2b:
d4:01:22:d5:62:07:43:8d:f4:61:d5:63:7c:36:f0:56:89:f7:
79:19:0f:15:da:f9:3c:e3:1d:63:6a:73:ba:25:bc:80:db:2d:
c6:cd:f9:f5:e6:37:de:60:e3:1d:14:fb:87:8a:e7:a3:79:c7:
05:9e:6d:28:26:06:8d:21:68:29:a9:4e:10:23:ad:54:d2:af:
46:de:b1:0d:4c:a0:55:b0:0a:84:df:be:88:14:3c:e8:d2:cf:
64:b5:4a:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:30:36 2025 by rpki-client