Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/5d56e5-838a-43f3-b52c-14efc982867f/1/rDA6LkgO7fpg9Vh0XYfXeAVCDSI.roa
File: rDA6LkgO7fpg9Vh0XYfXeAVCDSI.roa (raw, json)
Hash identifier: RfmRI9qIVkc3h86S6b8oFnuor4OUwIErPbGe+irSHaA=
Subject key identifier: AC:30:3A:2E:48:0E:ED:FA:60:F5:58:74:5D:87:D7:78:05:42:0D:22
Certificate issuer: /CN=fc5b53dfa8316093c172b4315922ef17e65f051d
Certificate serial: 01841E27C537754ACC093A97A21421F0A972
Authority key identifier: FC:5B:53:DF:A8:31:60:93:C1:72:B4:31:59:22:EF:17:E6:5F:05:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_FtT36gxYJPBcrQxWSLvF-ZfBR0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/5d56e5-838a-43f3-b52c-14efc982867f/1/rDA6LkgO7fpg9Vh0XYfXeAVCDSI.roa
Signing time: Fri 28 Oct 2022 10:33:53 +0000
ROA not before: Fri 28 Oct 2022 10:33:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 19437
IP address blocks: 86.38.189.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:1e:27:c5:37:75:4a:cc:09:3a:97:a2:14:21:f0:a9:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fc5b53dfa8316093c172b4315922ef17e65f051d
Validity
Not Before: Oct 28 10:33:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ac303a2e480eedfa60f558745d87d77805420d22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:d3:2b:32:67:ff:89:62:b5:98:e7:87:9b:62:
f3:1f:b1:7c:52:8d:9d:87:42:5f:01:d2:19:f0:34:
cc:b9:bf:a2:ea:61:76:42:3d:3b:12:37:e8:d0:ac:
88:49:8a:59:03:c8:60:e5:08:48:7a:3d:2d:23:8a:
9e:2d:08:80:a7:0b:31:56:79:98:55:90:c6:d5:2e:
6f:c8:3b:03:22:2e:16:67:02:5b:c5:8c:a2:ce:b1:
d1:6e:cb:ae:ab:f1:ea:1b:b4:d9:76:0b:f2:73:2f:
1d:4d:66:45:9f:70:54:a6:1a:d2:eb:f3:aa:d9:e8:
55:a3:9f:21:7c:06:cc:21:fc:95:8e:e5:fc:25:d3:
4c:33:7f:78:c9:3d:d5:66:49:16:42:4f:5b:a7:e7:
9c:80:b3:13:36:fe:6f:66:2d:b4:f7:b5:22:d9:98:
ed:4f:3e:d5:18:7e:76:87:ba:d1:15:c0:c0:7c:49:
dd:2d:1d:f6:42:d8:f8:c1:cf:7c:bc:54:d2:00:ad:
59:5a:b9:de:08:2b:79:c2:49:63:88:35:66:45:8b:
53:d7:5c:8e:87:92:5d:ed:b3:56:b8:56:12:d5:06:
41:53:6e:cb:6a:ae:f8:cd:6b:e1:0d:a8:df:0a:b0:
40:16:79:7c:b6:57:b3:1d:ab:ad:7d:53:90:14:7d:
59:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:30:3A:2E:48:0E:ED:FA:60:F5:58:74:5D:87:D7:78:05:42:0D:22
X509v3 Authority Key Identifier:
keyid:FC:5B:53:DF:A8:31:60:93:C1:72:B4:31:59:22:EF:17:E6:5F:05:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_FtT36gxYJPBcrQxWSLvF-ZfBR0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/5d56e5-838a-43f3-b52c-14efc982867f/1/rDA6LkgO7fpg9Vh0XYfXeAVCDSI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/5d56e5-838a-43f3-b52c-14efc982867f/1/_FtT36gxYJPBcrQxWSLvF-ZfBR0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.38.189.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:0a:46:ef:4b:1f:b3:e2:58:64:9c:b2:23:03:77:33:c4:9d:
b2:56:5c:44:f1:69:7f:63:16:5f:53:28:de:68:49:c0:17:1f:
b8:28:69:fa:49:17:a1:9a:7e:05:c5:44:a3:97:c5:3b:15:fd:
8f:fd:6f:52:14:14:2e:2c:6e:3b:f8:d5:05:86:51:13:dd:41:
9a:56:59:1e:89:ea:e3:cf:4a:fa:7d:cf:e4:42:1b:96:43:25:
60:e9:7c:b1:18:72:00:d7:11:dd:9b:35:a2:98:71:25:83:b3:
c5:89:f3:bb:67:2d:ce:96:a7:8f:97:ff:2e:28:98:40:8f:23:
d9:3b:23:ac:fb:8a:38:50:3f:9a:a9:1a:1c:88:3c:d5:9a:96:
31:5f:22:c0:8a:95:b4:95:b0:a9:3c:6c:dc:ef:80:a3:ec:71:
c8:f2:93:ef:df:d9:47:4e:4b:27:86:9f:60:ab:83:16:a4:49:
b1:d5:6f:3a:f0:51:86:62:ef:5b:51:ac:b3:64:b3:04:6f:5c:
c5:33:78:5b:9a:40:11:6f:99:18:3e:06:c3:20:74:69:19:c5:
1f:f0:4a:36:03:52:f1:5f:50:78:44:7b:b5:2e:b8:e0:1d:d4:
97:8c:b4:b7:e4:57:e6:29:c8:2b:bf:58:de:bc:15:45:e2:c6:
6b:bf:20:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 20:07:18 2025 by rpki-client