Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/a06d5d-9d38-46e0-82d8-fb5bd87431cc/1/N2vl770NHclK1KvkP6lfkNKIV5s.roa
File: N2vl770NHclK1KvkP6lfkNKIV5s.roa (raw, json)
Hash identifier: BnUb6ZYauV6BvHaAwzK1xG7LT16nCIVUW9L6u90bk3U=
Subject key identifier: 37:6B:E5:EF:BD:0D:1D:C9:4A:D4:AB:E4:3F:A9:5F:90:D2:88:57:9B
Certificate issuer: /CN=6bc24e611c9678eddc5e67b5c32e8d443d663985
Certificate serial: 010BC271
Authority key identifier: 6B:C2:4E:61:1C:96:78:ED:DC:5E:67:B5:C3:2E:8D:44:3D:66:39:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a8JOYRyWeO3cXme1wy6NRD1mOYU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/a06d5d-9d38-46e0-82d8-fb5bd87431cc/1/N2vl770NHclK1KvkP6lfkNKIV5s.roa
Signing time: Sat 01 Jan 2022 12:05:22 +0000
ROA not before: Sat 01 Jan 2022 12:05:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35913
IP address blocks: 93.157.106.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17547889 (0x10bc271)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6bc24e611c9678eddc5e67b5c32e8d443d663985
Validity
Not Before: Jan 1 12:05:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=376be5efbd0d1dc94ad4abe43fa95f90d288579b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:db:69:41:d8:ba:10:26:2c:c6:0b:eb:e2:b4:
14:ef:f6:fa:4a:1f:1a:d5:4e:51:dd:6d:e5:a4:76:
49:49:80:21:45:5d:3d:52:08:0d:10:be:d1:c6:8c:
dc:25:93:8a:40:57:f7:76:1c:99:2f:43:a4:1e:57:
ea:5b:e3:e5:38:01:f7:97:e2:ae:3b:19:2c:ea:f3:
93:e6:2c:5c:17:d3:11:33:c8:3a:4a:9b:9e:68:1c:
a0:7f:47:2d:5a:c6:27:c1:5b:c8:d1:35:bb:9f:ac:
8b:ab:93:d3:60:b6:96:60:ea:36:73:7c:92:d3:43:
7a:c9:cc:7c:f4:aa:d9:f8:e4:0f:49:c2:0b:12:3c:
b4:d7:c5:27:e9:f5:7c:74:44:d9:d4:30:9f:54:27:
33:ba:96:8b:2f:46:f7:9b:cc:e6:c0:53:1b:1e:ee:
30:a8:fd:bb:f6:12:2e:e1:e0:f0:be:9b:0a:48:ac:
39:4e:e2:44:3e:c2:a4:32:2f:3e:69:bf:26:7b:b3:
a2:e0:21:bf:11:db:e9:23:45:3c:09:c1:6c:c7:96:
92:81:26:bc:01:a1:d1:b9:0e:d3:7f:86:c6:9b:be:
13:b3:f3:71:b5:28:09:ae:16:5e:9b:48:9c:d0:77:
2b:65:d4:29:d8:53:78:ae:89:21:8e:8e:8a:77:53:
f5:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:6B:E5:EF:BD:0D:1D:C9:4A:D4:AB:E4:3F:A9:5F:90:D2:88:57:9B
X509v3 Authority Key Identifier:
keyid:6B:C2:4E:61:1C:96:78:ED:DC:5E:67:B5:C3:2E:8D:44:3D:66:39:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8JOYRyWeO3cXme1wy6NRD1mOYU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/a06d5d-9d38-46e0-82d8-fb5bd87431cc/1/N2vl770NHclK1KvkP6lfkNKIV5s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/a06d5d-9d38-46e0-82d8-fb5bd87431cc/1/a8JOYRyWeO3cXme1wy6NRD1mOYU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.157.106.0/24
Signature Algorithm: sha256WithRSAEncryption
93:7c:b4:c8:51:71:91:df:69:be:2f:98:37:80:ce:9e:d7:b1:
52:12:c7:c9:76:d7:d3:06:77:e0:fb:64:57:2d:e8:6c:70:96:
22:28:15:33:d4:d6:a8:91:ab:22:17:91:96:89:e3:15:00:23:
de:1f:ab:67:8f:8f:70:8c:5a:fa:04:c6:24:d3:72:92:4e:47:
63:35:25:82:a9:1d:a9:51:87:58:bd:f7:47:12:93:25:84:85:
f7:ed:0b:99:b7:44:c3:07:55:14:c2:db:fe:0c:68:71:04:df:
9d:12:aa:88:f8:4c:e5:59:37:d2:57:7c:92:6a:92:dc:88:5f:
a9:b4:2f:43:e1:58:43:35:85:f4:f4:7c:73:16:9d:8b:45:fe:
1b:3f:46:88:34:c9:d0:7a:52:74:87:cc:e1:5a:00:da:1e:ba:
99:3e:97:7a:a8:b9:b5:90:3c:b2:4e:7a:0f:94:92:88:95:eb:
87:4d:75:c4:20:ed:b7:63:9a:7e:37:5a:6d:bb:56:68:f9:bb:
29:3d:bd:2f:e1:88:f8:bc:74:95:5d:27:2f:9c:cb:cf:5c:33:
4b:9d:e9:e5:29:b2:ca:ce:4f:bd:26:a3:f4:fe:14:d3:a1:92:
31:e0:3a:f1:69:3e:2a:21:10:ec:94:f2:95:66:0f:96:72:3f:
cd:3f:44:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:08:04 2025 by rpki-client