Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/72e0ff-701c-4dae-92c2-f0e1af3fff1d/1/Lqt5bvS5uj4wnVw9-fYRvnvB0c4.roa
File: Lqt5bvS5uj4wnVw9-fYRvnvB0c4.roa (raw, json)
Hash identifier: iIIJLvvKjNaDzaScFociD5O4aWceK4PvZ4mbKJmRtq0=
Subject key identifier: 2E:AB:79:6E:F4:B9:BA:3E:30:9D:5C:3D:F9:F6:11:BE:7B:C1:D1:CE
Certificate issuer: /CN=919eed6f0c370234c9262b1f7b4138a60717bfb1
Certificate serial: 0187DBD94A2149A495669CB603463D0F1A01
Authority key identifier: 91:9E:ED:6F:0C:37:02:34:C9:26:2B:1F:7B:41:38:A6:07:17:BF:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kZ7tbww3AjTJJisfe0E4pgcXv7E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/72e0ff-701c-4dae-92c2-f0e1af3fff1d/1/Lqt5bvS5uj4wnVw9-fYRvnvB0c4.roa
Signing time: Tue 02 May 2023 09:44:23 +0000
ROA not before: Tue 02 May 2023 09:44:23 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200752
IP address blocks: 185.97.120.0/22 maxlen: 24
5.133.96.0/22 maxlen: 24
91.214.60.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:db:d9:4a:21:49:a4:95:66:9c:b6:03:46:3d:0f:1a:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=919eed6f0c370234c9262b1f7b4138a60717bfb1
Validity
Not Before: May 2 09:44:23 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2eab796ef4b9ba3e309d5c3df9f611be7bc1d1ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:32:4b:9e:1d:13:b2:83:ba:2a:24:b8:57:76:
58:d6:35:4a:bf:8a:75:84:60:d4:bf:89:ad:19:18:
8a:76:e0:20:b7:8f:bb:92:c5:65:0f:33:43:ac:a9:
f6:f4:57:4b:4b:f6:e5:36:c2:a6:77:e3:af:d4:6a:
b4:d0:cf:8f:f3:b4:1a:db:90:c5:00:cb:4e:ef:1e:
42:af:be:10:90:7a:aa:31:47:1a:6f:26:f1:82:41:
68:f9:b8:81:2a:3c:e1:55:1e:30:c7:6c:b4:e7:ed:
ed:c1:79:95:f5:e0:d3:6c:b2:2c:9b:c7:ee:4b:e0:
dc:55:06:52:64:be:27:da:55:ce:11:a4:94:c6:fe:
49:fe:0a:39:8c:0a:98:58:10:5c:8d:ad:cf:17:af:
74:a2:66:06:f0:e5:1f:61:e5:6b:7d:49:31:ec:30:
d3:91:1f:cb:38:c5:33:c1:1d:28:f3:94:f9:5a:7c:
91:ab:36:89:a1:bc:09:52:cb:ad:b4:d6:7f:c0:e1:
f1:1a:58:5f:41:10:d9:54:64:d5:9f:05:b5:8d:20:
cf:92:e1:46:d8:a6:a6:ab:77:d5:79:b6:2f:70:1c:
9c:b0:25:3d:24:04:87:98:d3:f7:ff:59:f8:7c:4a:
ae:a3:17:52:f3:43:20:e5:9a:6d:bf:6c:7c:af:ce:
91:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:AB:79:6E:F4:B9:BA:3E:30:9D:5C:3D:F9:F6:11:BE:7B:C1:D1:CE
X509v3 Authority Key Identifier:
keyid:91:9E:ED:6F:0C:37:02:34:C9:26:2B:1F:7B:41:38:A6:07:17:BF:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kZ7tbww3AjTJJisfe0E4pgcXv7E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/72e0ff-701c-4dae-92c2-f0e1af3fff1d/1/Lqt5bvS5uj4wnVw9-fYRvnvB0c4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/72e0ff-701c-4dae-92c2-f0e1af3fff1d/1/kZ7tbww3AjTJJisfe0E4pgcXv7E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.133.96.0/22
91.214.60.0/22
185.97.120.0/22
Signature Algorithm: sha256WithRSAEncryption
71:b9:d0:d6:fa:33:d5:f5:71:48:cb:31:38:53:00:13:fd:1d:
cb:cd:d2:ef:1a:eb:67:ac:5e:64:38:56:9d:f2:fc:68:39:4f:
c1:77:b0:b4:5c:6d:ab:97:2d:c7:2d:87:6c:46:cc:45:25:ed:
6d:2b:28:65:d3:50:8c:23:55:1e:f7:cf:fa:ef:da:98:ca:87:
84:10:36:8b:b5:a1:93:10:74:30:dc:a6:be:f0:5e:37:dd:3a:
a1:e0:6f:0a:97:7b:89:80:59:3f:61:2c:4f:b9:d3:62:ea:85:
fc:9d:74:49:0f:33:ac:79:ad:99:4d:7a:98:5d:54:26:80:bc:
b0:ae:5a:35:3b:15:34:c5:5f:35:6d:c1:59:f1:e3:5f:83:92:
1b:f6:79:9b:7d:23:2b:40:0b:8d:05:97:dc:97:b2:40:37:67:
7f:0c:3f:b8:c8:42:8c:a7:de:dd:e8:20:e5:48:60:07:59:df:
31:c3:24:9a:84:cb:d4:18:2a:f3:ed:2a:e1:7c:dd:7b:76:a0:
bf:b2:a6:79:fd:9a:23:cf:fb:1d:4c:5c:3e:0f:8f:bd:26:3c:
ff:43:12:3a:cb:49:a7:2b:2c:6e:76:9a:e2:ed:a5:20:2c:bc:
16:c6:7e:03:eb:00:13:46:7b:a2:13:11:81:ca:08:68:a6:8a:
ec:57:4b:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:19:30 2025 by rpki-client