Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/1df875-2a23-4fe8-b1f0-cebded36f878/1/5KOBPZC7lUcLgEVbomTQqh5SneQ.roa
File: 5KOBPZC7lUcLgEVbomTQqh5SneQ.roa (raw, json)
Hash identifier: oDNXv4556SXtyHxaKTcQ2mkzHRnz9pNFIIohkupYIRo=
Subject key identifier: E4:A3:81:3D:90:BB:95:47:0B:80:45:5B:A2:64:D0:AA:1E:52:9D:E4
Certificate issuer: /CN=c518644ac461ddd2cf4bc5ad5c2b4262535c38c8
Certificate serial: 0187F741A1B47154603788F91CC16FEAD347
Authority key identifier: C5:18:64:4A:C4:61:DD:D2:CF:4B:C5:AD:5C:2B:42:62:53:5C:38:C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xRhkSsRh3dLPS8WtXCtCYlNcOMg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/1df875-2a23-4fe8-b1f0-cebded36f878/1/5KOBPZC7lUcLgEVbomTQqh5SneQ.roa
Signing time: Sun 07 May 2023 17:28:06 +0000
ROA not before: Sun 07 May 2023 17:28:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210718
IP address blocks: 93.113.25.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:f7:41:a1:b4:71:54:60:37:88:f9:1c:c1:6f:ea:d3:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c518644ac461ddd2cf4bc5ad5c2b4262535c38c8
Validity
Not Before: May 7 17:28:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e4a3813d90bb95470b80455ba264d0aa1e529de4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:be:45:a8:bf:e0:67:1d:8e:d4:6c:e9:8a:1b:
ad:57:a2:a0:68:04:67:ea:b9:c2:6d:b2:fb:43:b5:
bf:cd:5e:8f:35:c9:75:a0:21:b7:87:44:21:36:c2:
94:09:9b:25:8c:03:08:15:98:0a:11:4f:df:6c:7b:
f5:cb:f5:d5:f8:84:fe:01:23:4e:fe:2f:68:6c:b9:
16:0b:b1:6e:b0:d9:9e:db:d3:13:c8:44:54:24:14:
e5:86:7c:3f:71:5f:bf:af:ee:1d:7a:8d:99:9b:b0:
71:9c:37:c7:2d:ed:38:32:5d:e0:e9:2e:bf:24:e9:
56:40:87:9d:f9:9e:f4:f8:97:de:e6:5e:83:a6:3f:
e1:27:17:bf:aa:f2:9c:1f:9a:9a:69:3d:62:9d:3b:
29:00:3c:f2:bc:58:ed:ad:4a:c3:da:35:75:9e:14:
b2:80:64:8e:0a:7e:bf:8a:da:81:fb:43:79:71:a7:
b7:58:a2:51:d1:5b:1d:66:2d:f0:de:69:b7:0e:ca:
39:b8:bd:5d:d0:c3:2a:14:1a:d6:86:1c:2a:cb:2c:
4a:be:5a:bc:b1:f1:aa:ad:fa:66:54:88:68:5e:46:
7a:fd:33:8f:11:5a:27:14:73:e1:95:40:e0:c7:bc:
2f:8c:7e:e3:dd:64:a6:9b:a5:33:18:73:84:04:82:
e1:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:A3:81:3D:90:BB:95:47:0B:80:45:5B:A2:64:D0:AA:1E:52:9D:E4
X509v3 Authority Key Identifier:
keyid:C5:18:64:4A:C4:61:DD:D2:CF:4B:C5:AD:5C:2B:42:62:53:5C:38:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xRhkSsRh3dLPS8WtXCtCYlNcOMg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/1df875-2a23-4fe8-b1f0-cebded36f878/1/5KOBPZC7lUcLgEVbomTQqh5SneQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/1df875-2a23-4fe8-b1f0-cebded36f878/1/xRhkSsRh3dLPS8WtXCtCYlNcOMg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.113.25.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:ed:04:d8:1f:5c:e0:48:96:57:9c:4f:f4:f7:e9:76:4a:0f:
1a:94:5a:7a:dc:2a:a9:a7:aa:bc:10:ec:dc:82:69:3a:db:c7:
8d:b4:03:4c:3f:f0:bc:46:9b:f5:eb:26:73:37:b3:d7:66:02:
b3:0d:f6:eb:fc:dd:51:96:3c:fa:23:47:e7:c3:25:ed:a2:cd:
cd:9f:2d:24:91:59:e1:cd:da:26:0c:7d:e1:6a:c5:3d:62:47:
c5:5f:2b:db:25:1a:03:06:2c:e7:e1:c1:d4:9a:d4:f6:3a:53:
b9:bc:16:8d:0f:0b:8d:05:0d:01:bb:19:3a:dd:69:d0:56:f9:
d3:79:7b:6e:b7:f8:fa:d6:76:0c:f4:78:88:e5:45:a7:b1:dc:
52:d3:64:d2:55:c4:bc:29:00:2a:4e:f1:33:2d:91:eb:65:f9:
3c:f5:cf:5f:69:af:88:11:4d:17:25:79:30:1d:34:c1:61:f1:
ac:4b:36:95:9f:de:67:33:cf:25:f5:a6:4d:49:3f:04:a4:fa:
0a:29:61:4b:4d:a0:19:f8:c9:2a:7d:3e:a7:01:96:a8:6c:85:
ca:26:77:cf:b0:59:73:6a:1e:58:19:38:8a:6c:68:d6:31:a1:
ae:5b:8d:5d:98:8e:5e:fe:0f:53:a2:89:c6:0a:86:5c:97:8a:
00:36:d8:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 10:53:21 2025 by rpki-client