Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/c37497-6376-461e-93c6-9778674edc97/1/DhD3h7pokbA5Rsar_Qb1cKs_ZOw.roa
File: DhD3h7pokbA5Rsar_Qb1cKs_ZOw.roa (raw, json)
Hash identifier: vqmt5wNwG4ZXV7rsSL1aVcoPHP6yiCiHI5k0O26DzQE=
Subject key identifier: 0E:10:F7:87:BA:68:91:B0:39:46:C6:AB:FD:06:F5:70:AB:3F:64:EC
Certificate issuer: /CN=7df132df13e4be53d8250c8c48420264eef6c14c
Certificate serial: 01941FFA38ACEF78687486754D48B40AAC6E
Authority key identifier: 7D:F1:32:DF:13:E4:BE:53:D8:25:0C:8C:48:42:02:64:EE:F6:C1:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ffEy3xPkvlPYJQyMSEICZO72wUw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/c37497-6376-461e-93c6-9778674edc97/1/DhD3h7pokbA5Rsar_Qb1cKs_ZOw.roa
Signing time: Wed 01 Jan 2025 03:47:59 +0000
ROA not before: Wed 01 Jan 2025 03:47:59 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 49298
IP address blocks: 93.119.172.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:fa:38:ac:ef:78:68:74:86:75:4d:48:b4:0a:ac:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7df132df13e4be53d8250c8c48420264eef6c14c
Validity
Not Before: Jan 1 03:47:59 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=0e10f787ba6891b03946c6abfd06f570ab3f64ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:a3:14:2e:5e:1a:2c:0d:30:8f:e5:c7:21:1e:
05:ad:ed:e3:3e:9c:19:4d:8b:05:f6:7c:3e:bc:9c:
5b:a4:dc:29:fd:87:b3:87:0f:3d:0f:ac:5e:34:09:
d2:04:dc:b6:bd:16:52:83:1b:34:d2:42:41:29:b6:
6f:ac:ff:5a:80:9f:bf:7c:b0:66:33:81:35:03:d2:
a5:ef:01:77:f8:85:83:74:24:0a:12:86:e0:7c:32:
b0:fb:97:21:1e:02:f9:4a:17:ce:d2:a5:8a:8d:da:
af:fc:34:2a:21:cc:f4:ec:f4:1b:3b:9a:21:66:a8:
10:8e:33:75:02:6e:08:56:47:ef:9b:79:86:bc:0d:
df:d3:17:14:a2:6b:ba:d6:7b:40:f3:89:18:d8:cd:
de:05:d7:e4:9a:16:8a:a7:2b:cc:2b:c3:51:83:ff:
91:2d:b2:73:fa:1f:b1:01:c3:a1:40:b4:d8:f6:8f:
67:aa:fc:1f:0b:b7:51:c5:cb:fd:2f:6a:54:45:90:
e5:49:48:9b:92:4d:2f:6f:4d:c1:ee:b5:db:72:cd:
87:0f:2c:44:68:89:79:f4:b3:1b:ec:b0:02:ed:ee:
30:93:92:13:12:cb:9c:f1:30:60:b5:a0:b7:5d:46:
35:eb:5a:f3:eb:80:9f:53:3a:1b:bd:8b:bb:68:1d:
5a:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:10:F7:87:BA:68:91:B0:39:46:C6:AB:FD:06:F5:70:AB:3F:64:EC
X509v3 Authority Key Identifier:
keyid:7D:F1:32:DF:13:E4:BE:53:D8:25:0C:8C:48:42:02:64:EE:F6:C1:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ffEy3xPkvlPYJQyMSEICZO72wUw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/c37497-6376-461e-93c6-9778674edc97/1/DhD3h7pokbA5Rsar_Qb1cKs_ZOw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/c37497-6376-461e-93c6-9778674edc97/1/ffEy3xPkvlPYJQyMSEICZO72wUw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.119.172.0/22
Signature Algorithm: sha256WithRSAEncryption
12:5d:bc:bd:10:35:c0:51:10:cb:36:44:77:e1:b0:08:34:c2:
57:4a:7c:9b:6e:71:c9:ba:55:2c:27:e4:20:ca:dc:41:78:5c:
53:84:fd:cf:e9:8e:8e:20:c5:fa:b6:c7:31:36:f6:f2:94:13:
e4:64:87:02:33:a6:7a:b4:a0:c0:45:b6:76:e4:83:b5:c8:2b:
61:2e:7f:c4:08:31:c2:5b:b6:63:05:0e:b0:1d:3a:d1:a3:87:
d6:22:55:6d:9e:c7:91:7f:97:ff:45:eb:84:8a:cf:f5:12:84:
5b:21:81:dd:0c:b1:e5:20:63:34:d7:d9:dd:36:4a:5d:c2:6d:
d3:d0:7f:90:26:a3:62:50:e7:3f:cc:46:8a:ed:ab:d6:fd:4d:
48:f0:34:2d:00:d9:ec:4c:19:2a:d5:31:90:50:96:79:0e:e9:
1b:32:47:8b:f0:6d:4e:38:44:6f:f6:19:66:b7:bd:21:7e:54:
b7:34:62:34:f8:aa:c4:c9:47:02:18:33:a5:d3:db:37:f3:c3:
05:ad:69:49:47:a1:7b:35:2a:a5:56:67:83:44:9e:0c:9f:b5:
86:33:94:4e:52:69:be:ac:18:39:ac:a6:b5:e0:d3:eb:b8:ad:
b3:0d:d4:34:49:c5:ce:de:39:b7:cc:e0:be:8b:36:c9:b7:f2:
bc:70:46:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 02:51:21 2025 by rpki-client