Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/5493e2-6db6-41e9-8c7d-af47f428c0d4/1/_iJ2kQsKOcb5X2zkain4BIvz4Lo.roa
File: _iJ2kQsKOcb5X2zkain4BIvz4Lo.roa (raw, json)
Hash identifier: NJ5k6d8MYUYhvLKbLZe1BGDW+hATR/oNMWevPKSkpW4=
Subject key identifier: FE:22:76:91:0B:0A:39:C6:F9:5F:6C:E4:6A:29:F8:04:8B:F3:E0:BA
Certificate issuer: /CN=b769e3c30bd2578a4a40cf15ddab5fae1cfc953e
Certificate serial: AA89
Authority key identifier: B7:69:E3:C3:0B:D2:57:8A:4A:40:CF:15:DD:AB:5F:AE:1C:FC:95:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t2njwwvSV4pKQM8V3atfrhz8lT4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/5493e2-6db6-41e9-8c7d-af47f428c0d4/1/_iJ2kQsKOcb5X2zkain4BIvz4Lo.roa
Signing time: Sun 17 Apr 2022 12:46:05 +0000
ROA not before: Sun 17 Apr 2022 12:46:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56630
IP address blocks: 5.182.228.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43657 (0xaa89)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b769e3c30bd2578a4a40cf15ddab5fae1cfc953e
Validity
Not Before: Apr 17 12:46:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fe2276910b0a39c6f95f6ce46a29f8048bf3e0ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:15:ed:12:d7:a5:a5:4e:50:01:6e:aa:2e:13:
07:72:90:a8:4e:e2:df:98:38:e8:5d:c4:2c:96:10:
92:c0:b9:b5:7f:e5:81:3b:ff:28:26:52:1b:68:34:
e2:92:35:57:9a:41:1d:5e:8f:8b:26:67:b6:a8:a3:
80:3e:f0:ad:c3:78:fd:06:18:4d:65:dc:c4:13:0b:
76:63:06:bc:43:7b:56:ce:75:4a:42:74:bd:ef:ba:
4f:bb:7d:c8:69:53:a7:f8:e6:fc:04:2c:ec:d2:0a:
17:a2:0e:6e:48:6d:c8:a5:5a:92:b0:35:55:36:13:
c6:2d:b8:ea:70:92:70:3b:21:2b:82:3c:77:3d:c6:
18:8d:39:3e:38:95:0a:62:d3:24:8f:9e:ba:39:20:
06:47:21:d8:e9:5b:26:e7:40:f5:b7:03:9f:01:ff:
f0:9e:35:08:1e:7c:c2:69:a4:9c:ca:40:8a:89:d5:
ab:a9:b9:70:77:f9:ae:1e:b9:ab:69:a1:9e:8b:d2:
9f:2c:a0:63:36:0c:5a:59:d6:fd:18:d2:b9:3e:e5:
56:3e:17:48:de:d4:f5:ca:00:83:e7:87:ad:21:e3:
ad:f2:85:16:1e:48:49:24:37:b1:f7:ec:e7:ab:70:
c9:4e:43:47:de:ff:2a:4b:be:1d:36:ab:a1:60:75:
b7:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:22:76:91:0B:0A:39:C6:F9:5F:6C:E4:6A:29:F8:04:8B:F3:E0:BA
X509v3 Authority Key Identifier:
keyid:B7:69:E3:C3:0B:D2:57:8A:4A:40:CF:15:DD:AB:5F:AE:1C:FC:95:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t2njwwvSV4pKQM8V3atfrhz8lT4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/5493e2-6db6-41e9-8c7d-af47f428c0d4/1/_iJ2kQsKOcb5X2zkain4BIvz4Lo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/5493e2-6db6-41e9-8c7d-af47f428c0d4/1/t2njwwvSV4pKQM8V3atfrhz8lT4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.228.0/22
Signature Algorithm: sha256WithRSAEncryption
83:86:ae:57:0e:28:4d:ac:ee:79:4f:22:04:76:45:b9:3f:8f:
10:6b:07:aa:96:1a:34:85:1b:87:7b:8f:55:22:f7:97:7b:21:
ce:1e:9d:ca:95:01:7d:9a:a4:32:a4:db:12:b7:01:ca:d6:e8:
20:3f:be:6a:43:84:f4:17:da:14:d4:2e:1a:80:5e:e6:7e:bd:
fa:36:f4:e0:c9:c9:aa:b5:2b:02:41:11:13:d0:74:e1:17:8a:
e0:ea:15:ba:69:71:28:1b:05:48:fb:c4:d0:34:3f:5b:91:09:
23:a8:f2:a1:80:87:b5:19:0c:e2:2d:47:08:ac:16:d6:2c:8e:
fb:86:84:d7:fe:9d:f9:d7:a7:d5:27:e7:10:a2:e2:fd:f7:86:
ae:a1:13:a1:d2:f2:a9:4a:be:a0:2c:ac:17:7f:14:da:83:a3:
e0:c7:e9:d6:bd:28:8e:cc:66:fe:b6:6e:87:e6:c6:38:ca:19:
17:98:8e:49:56:e3:af:1e:f2:b1:26:83:45:d0:47:72:b5:44:
38:95:65:6d:f8:cd:f4:bf:4f:5b:36:90:46:ea:66:26:c1:db:
b8:81:f3:42:b0:15:a5:29:52:05:f1:63:24:40:d5:be:dc:1a:
3d:73:5a:99:2c:81:c6:f2:e7:94:75:2b:ab:84:fc:d4:42:14:
5e:2b:64:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:27:18 2025 by rpki-client