Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/5d56e5-838a-43f3-b52c-14efc982867f/1/xNHcuBMhw2V5GiISUq__wNS1WCQ.roa
File: xNHcuBMhw2V5GiISUq__wNS1WCQ.roa (raw, json)
Hash identifier: 9h2UCG4dxQxZmmwHoJTGkpzalCetkuGka9WUCePEG58=
Subject key identifier: C4:D1:DC:B8:13:21:C3:65:79:1A:22:12:52:AF:FF:C0:D4:B5:58:24
Certificate issuer: /CN=fc5b53dfa8316093c172b4315922ef17e65f051d
Certificate serial: 01841E27C72961249DE3AB037658F8B8FC32
Authority key identifier: FC:5B:53:DF:A8:31:60:93:C1:72:B4:31:59:22:EF:17:E6:5F:05:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_FtT36gxYJPBcrQxWSLvF-ZfBR0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/5d56e5-838a-43f3-b52c-14efc982867f/1/xNHcuBMhw2V5GiISUq__wNS1WCQ.roa
Signing time: Fri 28 Oct 2022 10:33:54 +0000
ROA not before: Fri 28 Oct 2022 10:33:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 32181
IP address blocks: 89.116.91.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:1e:27:c7:29:61:24:9d:e3:ab:03:76:58:f8:b8:fc:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fc5b53dfa8316093c172b4315922ef17e65f051d
Validity
Not Before: Oct 28 10:33:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c4d1dcb81321c365791a221252afffc0d4b55824
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:ce:d6:6d:d9:95:ee:5d:53:15:7a:ae:2a:30:
95:d0:70:b4:5f:87:a5:10:20:49:90:f5:ce:c5:ce:
81:0c:37:d4:dc:8d:bf:ca:0e:ab:75:ac:f7:aa:3d:
e9:ce:a0:6d:dd:ed:9b:8e:f8:42:86:fb:73:07:5c:
07:8a:c1:4e:5f:95:45:90:57:23:85:d6:7f:a6:51:
ff:9e:21:ab:71:bf:cf:4a:68:9c:fe:29:1a:c1:b9:
40:c5:d9:fa:e5:33:ca:6c:e8:da:92:3f:a1:2b:9f:
40:16:d9:4f:48:7a:b3:5b:fc:22:1e:5e:a0:ed:ac:
c4:4c:c3:06:d6:eb:1e:64:e0:22:22:d0:c7:17:d8:
63:58:d9:98:ba:53:92:87:5c:0b:45:6d:12:9a:eb:
68:eb:bd:d6:32:29:70:98:aa:37:2b:78:4b:53:8e:
88:7e:7d:91:b7:9e:51:60:c2:35:77:25:3f:d9:8d:
f6:a2:47:73:1f:65:18:8f:56:af:1a:b5:04:68:93:
81:cd:9d:66:04:c8:b8:a7:36:7b:f3:61:f1:39:f7:
cf:44:65:28:9c:3c:7e:01:90:a6:ae:79:ce:23:c7:
de:0e:39:1d:a1:df:41:33:2a:1a:5b:25:b2:00:78:
6c:2e:6b:a7:a5:55:42:8f:5a:ff:02:43:36:57:40:
b3:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:D1:DC:B8:13:21:C3:65:79:1A:22:12:52:AF:FF:C0:D4:B5:58:24
X509v3 Authority Key Identifier:
keyid:FC:5B:53:DF:A8:31:60:93:C1:72:B4:31:59:22:EF:17:E6:5F:05:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_FtT36gxYJPBcrQxWSLvF-ZfBR0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/5d56e5-838a-43f3-b52c-14efc982867f/1/xNHcuBMhw2V5GiISUq__wNS1WCQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/5d56e5-838a-43f3-b52c-14efc982867f/1/_FtT36gxYJPBcrQxWSLvF-ZfBR0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.116.91.0/24
Signature Algorithm: sha256WithRSAEncryption
0b:d3:ca:fc:a5:53:27:d4:f8:eb:bc:8b:3f:4f:d2:ca:5a:b1:
79:4f:72:11:e9:28:78:37:52:ca:40:10:4a:bd:f3:3f:9d:c4:
86:91:db:ca:e0:db:cb:b5:83:5b:a4:e8:e8:56:9a:4d:7b:30:
d1:f2:97:ec:e0:b9:ba:b6:70:9f:47:fa:cd:14:71:bc:56:bc:
02:75:5f:5f:92:00:34:40:a6:2e:72:5e:13:2a:1a:f0:c7:d6:
9d:4c:81:7d:36:c7:87:91:06:14:c3:45:e8:85:0c:7e:d4:a0:
f5:62:67:0a:16:5f:5e:e3:59:8f:c7:1f:97:37:c7:a8:6f:b2:
19:2c:d7:1a:f2:ce:cb:54:69:94:60:dd:ad:c0:99:71:a6:5d:
d1:21:39:65:82:42:3e:0b:3c:c2:f2:1f:db:80:4d:96:72:51:
69:8a:51:27:ba:60:8e:2e:5d:d3:7c:22:db:d4:94:ad:10:60:
08:50:d9:d1:99:e8:56:46:e4:65:fb:ae:bc:6e:f1:88:e5:fe:
ac:2b:6b:df:f7:ee:aa:cb:e7:1a:ae:d7:dd:a1:ff:89:6c:68:
c6:51:8e:bd:72:14:30:1d:3b:d1:e8:f7:ca:83:e4:95:a2:f5:
e2:74:db:f8:c6:3e:66:72:c3:0d:b4:7d:cf:e2:eb:0d:17:d3:
eb:41:eb:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:41:26 2025 by rpki-client