Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/cf6c24-ed3d-41ea-98f7-173f2e7a36f1/1/FCaMRUDex32PZMT7uyPAm4C5W1g.roa
File: FCaMRUDex32PZMT7uyPAm4C5W1g.roa (raw, json)
Hash identifier: KDWLE1VZwmTRs9jQVr5JHLKACOlrOjwO5oyUmavK/BU=
Subject key identifier: 14:26:8C:45:40:DE:C7:7D:8F:64:C4:FB:BB:23:C0:9B:80:B9:5B:58
Certificate issuer: /CN=b53e5447ca064e98ae083556c721d14f2d9a6a52
Certificate serial: 018456EC2158DD57311FB4C16DCF0AD43F1A
Authority key identifier: B5:3E:54:47:CA:06:4E:98:AE:08:35:56:C7:21:D1:4F:2D:9A:6A:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tT5UR8oGTpiuCDVWxyHRTy2aalI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/cf6c24-ed3d-41ea-98f7-173f2e7a36f1/1/FCaMRUDex32PZMT7uyPAm4C5W1g.roa
Signing time: Tue 08 Nov 2022 11:07:06 +0000
ROA not before: Tue 08 Nov 2022 11:07:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8100
IP address blocks: 2.58.95.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:56:ec:21:58:dd:57:31:1f:b4:c1:6d:cf:0a:d4:3f:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b53e5447ca064e98ae083556c721d14f2d9a6a52
Validity
Not Before: Nov 8 11:07:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=14268c4540dec77d8f64c4fbbb23c09b80b95b58
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:09:59:f0:5d:25:e6:5c:9f:e1:89:60:bc:3f:
3b:bc:dd:5c:75:9f:15:28:ac:39:d8:24:fe:ca:6e:
cb:69:e9:92:9f:51:88:d3:42:c6:1c:7b:2b:b6:e4:
2a:07:78:92:a4:ee:24:34:90:7d:40:2e:30:39:02:
81:e6:5d:77:de:d6:58:bf:2e:bc:50:a6:db:6e:d2:
c1:8b:74:33:0d:ef:71:71:8d:5d:c6:a4:3b:c5:33:
43:8a:28:03:7f:17:43:45:93:cb:13:f1:fa:7d:19:
ef:bd:e1:d1:b2:2d:3e:39:6b:63:6b:f2:92:e1:54:
f1:f7:23:6c:00:4c:fd:86:0c:ac:6d:38:ce:4d:30:
3f:06:91:44:d7:79:72:12:8c:18:c5:4b:99:5b:7e:
0e:22:df:2b:88:0c:58:a2:ea:1b:3a:e9:9c:99:02:
58:63:5b:05:63:fb:62:bf:96:3b:91:b6:6e:49:44:
16:6b:63:ae:15:70:35:7a:8f:63:a0:ec:3e:51:0e:
78:c8:f1:4c:97:13:1a:52:6c:d3:bf:05:c3:4d:b5:
f8:b3:44:86:2e:21:8e:77:2b:66:2a:2c:0a:0c:cd:
e2:79:28:17:2f:74:b4:66:98:97:5d:87:70:e9:54:
e7:61:d0:db:96:c4:97:7b:ac:d0:7a:12:a7:19:0c:
23:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:26:8C:45:40:DE:C7:7D:8F:64:C4:FB:BB:23:C0:9B:80:B9:5B:58
X509v3 Authority Key Identifier:
keyid:B5:3E:54:47:CA:06:4E:98:AE:08:35:56:C7:21:D1:4F:2D:9A:6A:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tT5UR8oGTpiuCDVWxyHRTy2aalI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/cf6c24-ed3d-41ea-98f7-173f2e7a36f1/1/FCaMRUDex32PZMT7uyPAm4C5W1g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/cf6c24-ed3d-41ea-98f7-173f2e7a36f1/1/tT5UR8oGTpiuCDVWxyHRTy2aalI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.58.95.0/24
Signature Algorithm: sha256WithRSAEncryption
0b:67:61:04:8f:1a:9a:66:f3:4a:2d:45:90:3b:d2:75:fc:a1:
50:d3:2d:02:d0:4d:59:b1:9a:09:f9:79:38:36:2a:9a:45:69:
95:83:9c:ec:97:14:d4:65:5e:55:bc:dc:0c:88:25:c0:b4:10:
70:51:27:15:7f:e8:91:35:15:50:78:f4:cb:09:13:22:16:cc:
ae:0f:89:a7:34:df:ff:ba:28:95:1c:29:0d:3b:59:e0:53:49:
d2:23:5f:01:42:f7:d4:5e:2c:e4:2d:94:48:2c:f5:8e:4f:17:
b9:db:f8:d8:cd:b2:b7:10:77:98:33:c3:03:e9:6f:97:6d:ee:
d0:69:22:80:d4:be:ac:1a:ab:a9:0e:aa:87:c9:ba:c4:ec:f5:
54:d3:dd:28:e2:f9:f4:83:77:5e:ad:41:77:87:b0:ef:61:7a:
c9:bc:40:d1:0d:2d:ec:7f:6c:ef:59:ab:6a:7e:83:33:53:08:
19:4e:8c:9b:57:23:c4:83:5d:82:47:90:5c:ff:49:1f:ed:fe:
44:e8:a2:e9:83:bf:c7:d1:cf:1e:e1:9d:a6:07:dd:04:77:b7:
df:2c:d5:8f:b9:fb:31:eb:4c:30:35:3c:a6:a2:a3:6f:89:5f:
73:36:59:14:f9:40:ee:ad:4e:21:27:6c:bb:2d:e6:5c:ff:5c:
7c:a9:8e:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 23 06:30:58 2025 by rpki-client