Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/5d56e5-838a-43f3-b52c-14efc982867f/1/4L8gJuxdftEz-FX5r66AhWRIJwo.roa
File: 4L8gJuxdftEz-FX5r66AhWRIJwo.roa (raw, json)
Hash identifier: DNsTAbEBnSyn9XUtmnU1LrNJfsWL7UVgwmKiWuIEFTo=
Subject key identifier: E0:BF:20:26:EC:5D:7E:D1:33:F8:55:F9:AF:AE:80:85:64:48:27:0A
Certificate issuer: /CN=fc5b53dfa8316093c172b4315922ef17e65f051d
Certificate serial: 01841E27C4ED1411538377DBDC096438799D
Authority key identifier: FC:5B:53:DF:A8:31:60:93:C1:72:B4:31:59:22:EF:17:E6:5F:05:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_FtT36gxYJPBcrQxWSLvF-ZfBR0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/5d56e5-838a-43f3-b52c-14efc982867f/1/4L8gJuxdftEz-FX5r66AhWRIJwo.roa
Signing time: Fri 28 Oct 2022 10:33:53 +0000
ROA not before: Fri 28 Oct 2022 10:33:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 86.38.232.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:1e:27:c4:ed:14:11:53:83:77:db:dc:09:64:38:79:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fc5b53dfa8316093c172b4315922ef17e65f051d
Validity
Not Before: Oct 28 10:33:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e0bf2026ec5d7ed133f855f9afae80856448270a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:1f:e2:64:04:3f:31:0c:aa:49:64:ec:24:8b:
02:b5:49:21:7b:e3:c7:26:e2:a6:2e:47:1b:c6:33:
cd:de:4c:c5:26:f0:07:ca:40:6e:bb:6c:2f:4b:3f:
75:71:f1:2a:bc:61:77:91:fc:8b:d2:4d:cf:fc:1f:
de:e8:90:61:12:40:45:20:9a:21:f5:be:1a:f5:99:
03:0e:d3:cb:4d:aa:fe:bf:b7:f3:7d:14:05:e5:91:
69:f5:5a:ad:24:36:73:08:21:2a:26:1b:c2:2e:be:
a4:69:de:cc:a1:c8:91:00:5f:9d:7f:f3:13:dc:27:
8d:71:38:fb:e6:5e:9a:da:d9:2e:8a:48:ff:09:5a:
91:92:6f:27:be:24:31:05:cf:8d:84:e3:1b:36:66:
8f:28:8f:68:d4:23:63:ab:48:32:a6:07:66:21:b6:
6f:a6:c6:29:a1:d0:3a:d0:79:fc:cb:d2:fd:67:a4:
4e:01:07:70:19:3b:04:21:f2:f0:d8:fd:75:11:67:
29:e8:5e:09:61:62:ed:57:ca:10:04:0d:df:99:80:
06:6c:71:5e:9e:c7:2f:22:cc:a5:57:80:c4:8e:96:
74:70:6f:e8:33:86:f9:c7:76:b0:9e:8f:88:ef:99:
63:c0:35:0f:fa:61:4d:ac:4b:db:c7:04:7b:3b:b6:
a3:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:BF:20:26:EC:5D:7E:D1:33:F8:55:F9:AF:AE:80:85:64:48:27:0A
X509v3 Authority Key Identifier:
keyid:FC:5B:53:DF:A8:31:60:93:C1:72:B4:31:59:22:EF:17:E6:5F:05:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_FtT36gxYJPBcrQxWSLvF-ZfBR0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/5d56e5-838a-43f3-b52c-14efc982867f/1/4L8gJuxdftEz-FX5r66AhWRIJwo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/5d56e5-838a-43f3-b52c-14efc982867f/1/_FtT36gxYJPBcrQxWSLvF-ZfBR0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.38.232.0/24
Signature Algorithm: sha256WithRSAEncryption
ac:48:3e:8a:ac:b1:fa:d0:95:0b:8b:c6:1b:e0:b6:ca:77:4a:
ba:19:ee:83:bb:e1:8e:9b:15:0d:db:98:6a:d5:ae:23:02:9a:
42:ed:43:98:f3:3d:3a:81:80:f0:61:b5:d0:6a:1a:d6:4f:28:
2b:a1:7e:8a:a3:b5:57:46:55:80:57:c6:9d:36:5b:a0:45:f5:
10:76:4d:90:56:57:4b:96:92:cc:d3:22:c6:bf:cb:c3:13:aa:
b3:2f:91:48:13:06:e7:86:9e:e5:b3:4a:77:af:c4:24:1d:36:
54:9d:e6:59:d9:a5:e0:b6:dd:b6:18:17:f7:4f:60:a7:f7:57:
58:6f:a5:77:99:33:1f:2b:02:e1:b0:b1:5b:b7:33:35:26:9d:
56:bb:34:c0:d2:58:4d:8e:3c:ca:3f:05:a1:8c:cc:ab:31:b5:
3d:ba:81:ed:9d:94:fc:56:b5:3f:e6:61:dc:57:76:c6:8a:66:
a7:98:6b:15:86:06:e1:fe:f0:ef:1a:76:e7:9c:07:75:81:d5:
49:34:11:66:b3:54:ca:d1:39:e5:f2:e2:6e:8d:93:26:4a:43:
a2:5f:36:df:60:a9:43:fa:db:34:03:4d:c2:d0:cf:fb:f4:e9:
f2:86:ab:92:06:33:1f:d7:9a:84:7a:ad:f1:32:49:c9:28:2d:
05:b6:02:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 20:48:00 2025 by rpki-client