Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c9/4e4320-c384-4847-b238-ee67a966b092/1/FVmgODS618w_nymUOnerfUAnF6g.roa
File: FVmgODS618w_nymUOnerfUAnF6g.roa (raw, json)
Hash identifier: Js8D4GTMRVK+k8NIwVqxzW1Wn4laDKEpavLl57m151o=
Subject key identifier: 15:59:A0:38:34:BA:D7:CC:3F:9F:29:94:3A:77:AB:7D:40:27:17:A8
Certificate issuer: /CN=80695eb990427a585cf03b22d805878709c910d2
Certificate serial: 05594204
Authority key identifier: 80:69:5E:B9:90:42:7A:58:5C:F0:3B:22:D8:05:87:87:09:C9:10:D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gGleuZBCelhc8Dsi2AWHhwnJENI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c9/4e4320-c384-4847-b238-ee67a966b092/1/FVmgODS618w_nymUOnerfUAnF6g.roa
Signing time: Sat 01 Jan 2022 15:55:08 +0000
ROA not before: Sat 01 Jan 2022 15:55:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 2.59.128.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 89735684 (0x5594204)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=80695eb990427a585cf03b22d805878709c910d2
Validity
Not Before: Jan 1 15:55:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1559a03834bad7cc3f9f29943a77ab7d402717a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:69:01:da:dd:63:7f:e7:98:42:86:81:29:e8:
a2:9d:fe:c1:63:6b:d8:4f:a2:ae:8a:e3:01:c8:a9:
ae:a1:d9:12:c7:7a:44:12:34:5e:c9:7f:69:50:97:
e7:3a:70:2e:73:ea:97:51:34:29:e2:f0:2d:44:e3:
d6:fd:16:cf:63:6a:cc:3e:e3:c4:56:9f:82:7e:1c:
22:2e:88:2b:d6:ec:dc:40:9b:0c:57:27:11:7e:84:
a3:fd:ef:9c:ca:1a:4b:74:0b:90:e6:02:67:ff:55:
16:13:29:1d:24:19:f1:c3:6c:9b:27:ba:d1:b5:03:
ed:b8:63:d2:e9:28:68:4c:a5:45:28:4a:94:09:5b:
4d:37:60:84:44:6b:2a:5d:8e:44:36:50:dc:85:3e:
6b:c3:30:0c:f4:88:66:3b:6a:c2:c6:2e:13:5c:d1:
4d:12:c8:c8:a4:36:e1:08:5b:4b:16:5e:b6:48:52:
ef:22:53:8d:ca:02:9b:2f:ac:c7:50:ae:71:66:aa:
60:a4:76:3a:02:78:f0:5f:24:d9:d6:29:62:33:66:
c8:14:32:33:90:00:5f:84:d5:c1:40:d2:0c:88:b9:
d5:d3:3b:1f:24:53:82:bb:06:d7:9f:1e:2d:5a:15:
ae:32:fe:97:bf:27:72:9d:f4:c0:4d:a3:5f:7b:3d:
c6:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:59:A0:38:34:BA:D7:CC:3F:9F:29:94:3A:77:AB:7D:40:27:17:A8
X509v3 Authority Key Identifier:
keyid:80:69:5E:B9:90:42:7A:58:5C:F0:3B:22:D8:05:87:87:09:C9:10:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gGleuZBCelhc8Dsi2AWHhwnJENI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/4e4320-c384-4847-b238-ee67a966b092/1/FVmgODS618w_nymUOnerfUAnF6g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/4e4320-c384-4847-b238-ee67a966b092/1/gGleuZBCelhc8Dsi2AWHhwnJENI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.59.128.0/22
Signature Algorithm: sha256WithRSAEncryption
0b:6f:6e:1c:f5:72:f1:0e:83:cd:96:c1:c8:20:cc:4a:c5:ef:
27:d5:58:31:e5:76:cc:e5:5a:80:b9:1b:2a:2a:4a:d3:ee:28:
b5:94:e4:cf:de:10:fa:95:cb:51:97:42:c4:a3:60:28:5b:67:
f4:5a:b5:8b:1c:4d:2c:c7:1c:3f:12:b3:6a:82:0a:b0:70:32:
c9:14:95:44:09:20:7a:c0:09:d0:eb:eb:6e:80:42:db:90:e1:
46:8f:36:13:bc:e2:97:43:65:9f:36:41:11:c2:52:23:2b:dc:
1b:a9:62:82:6a:77:72:88:1a:2e:e9:41:6b:7e:ff:f8:9e:00:
dc:4b:b5:2a:a7:00:02:f6:fe:bc:2d:97:01:c8:a3:64:9c:ed:
f0:1f:39:05:4e:0f:17:6c:d4:65:7b:6a:8e:84:7c:c9:91:dd:
22:3e:e5:98:dd:9b:ae:00:5a:e0:e1:52:07:94:99:c7:d4:6c:
c1:ef:69:cd:27:63:53:42:ba:af:13:fc:06:f1:f2:98:3a:30:
eb:22:e3:cc:d8:c5:ec:e9:a1:ea:0a:9c:59:9f:b4:b3:6c:0b:
02:50:51:87:a6:6c:85:f3:38:e7:55:9f:22:db:b7:da:a1:b2:
e0:0a:ca:5f:7c:13:70:16:dc:25:6c:a0:6c:c9:28:da:81:26:
61:7c:c0:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 09:17:19 2025 by rpki-client