Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/48cb86-2750-4d6a-8a71-1be525576863/1/1-837qAoknpuqL6cWX1V2wXIlY-I.roa
File: 1-837qAoknpuqL6cWX1V2wXIlY-I.roa (raw, json)
Hash identifier: I4yXpOZiCqGNNxeFr/iPm7i1YkC9BKjLI+rPOzjDgtg=
Subject key identifier: FB:CD:FB:A8:0A:24:9E:9B:AA:2F:A7:16:5F:55:76:C1:72:25:63:E2
Certificate issuer: /CN=c8f6f5dec09bc7a1203045699ba058295d38e346
Certificate serial: 03E1205D
Authority key identifier: C8:F6:F5:DE:C0:9B:C7:A1:20:30:45:69:9B:A0:58:29:5D:38:E3:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yPb13sCbx6EgMEVpm6BYKV0440Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/48cb86-2750-4d6a-8a71-1be525576863/1/1-837qAoknpuqL6cWX1V2wXIlY-I.roa
Signing time: Sat 01 Jan 2022 00:57:10 +0000
ROA not before: Sat 01 Jan 2022 00:57:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198295
IP address blocks: 37.9.128.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65085533 (0x3e1205d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c8f6f5dec09bc7a1203045699ba058295d38e346
Validity
Not Before: Jan 1 00:57:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fbcdfba80a249e9baa2fa7165f5576c1722563e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:a9:44:85:c6:21:6f:fa:ef:a9:c5:01:d7:ab:
51:19:c2:0e:05:a8:3f:06:42:fa:20:1d:32:4c:ac:
a5:62:be:4e:7a:87:12:bc:a0:a5:55:b8:4b:56:ec:
e5:17:78:7c:49:1c:f9:14:4f:d8:73:23:3a:93:0f:
79:be:39:1e:24:5f:71:f6:46:58:78:b0:00:30:cb:
7f:0d:93:f1:24:08:35:f5:38:43:e1:d7:d3:a0:25:
f0:6e:c3:d9:89:5c:5e:f0:13:48:d0:f2:ba:64:f9:
55:4f:0b:2b:4a:10:14:31:b5:d0:18:e3:03:78:f9:
23:2b:d9:b1:92:d3:89:dd:91:9f:b4:03:29:ae:8b:
6c:66:9f:0d:d2:4a:ab:b2:53:97:83:3e:81:fc:f7:
85:d5:81:21:b8:11:79:16:be:d1:20:e5:ff:0b:1e:
f1:0d:ee:06:f4:c6:f2:79:59:ff:8d:16:a3:30:03:
b8:16:3b:4f:8e:c1:94:de:98:b0:80:86:b7:44:75:
42:3c:24:84:46:fb:cf:fb:f3:df:23:c8:53:13:12:
25:93:84:37:81:b8:9b:ff:d5:99:06:ad:5a:d4:97:
a6:f7:f0:bd:ee:12:7a:eb:8c:87:3b:2c:55:24:29:
b2:25:80:fc:ed:e8:52:ee:b9:48:8b:96:eb:fb:90:
30:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:CD:FB:A8:0A:24:9E:9B:AA:2F:A7:16:5F:55:76:C1:72:25:63:E2
X509v3 Authority Key Identifier:
keyid:C8:F6:F5:DE:C0:9B:C7:A1:20:30:45:69:9B:A0:58:29:5D:38:E3:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yPb13sCbx6EgMEVpm6BYKV0440Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/48cb86-2750-4d6a-8a71-1be525576863/1/1-837qAoknpuqL6cWX1V2wXIlY-I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/48cb86-2750-4d6a-8a71-1be525576863/1/yPb13sCbx6EgMEVpm6BYKV0440Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.9.128.0/21
Signature Algorithm: sha256WithRSAEncryption
01:d7:76:e9:c6:b9:31:c8:d9:01:87:33:9e:1e:fb:c3:4f:0f:
f0:52:a9:95:47:25:34:9d:65:46:33:e7:16:7d:34:c2:16:2e:
64:7d:36:43:56:28:c2:38:b4:65:70:f8:ba:11:c9:58:f5:58:
90:77:82:a9:27:c8:f0:0f:77:a0:4a:87:18:32:45:a7:00:bf:
83:8f:c8:7a:9c:6b:af:f5:6a:93:c0:22:a0:4e:e2:fa:11:72:
45:e9:6e:7a:45:62:90:13:ed:f0:4d:ae:e2:60:f1:f4:85:a5:
9f:c0:6e:25:60:5f:80:de:89:68:f5:0f:b8:cc:92:89:78:0d:
db:34:38:8d:67:b9:27:0b:d4:b4:04:63:9e:8c:f8:78:16:cc:
50:6f:5c:5b:70:31:39:23:df:32:11:97:63:26:53:7f:9a:cb:
a5:62:c6:49:ea:78:65:cd:11:56:a8:83:43:e6:d0:e2:4b:ce:
a5:29:7e:0a:b8:84:cb:ac:17:db:02:1d:90:d4:97:f7:b0:32:
99:7b:e9:cb:32:24:b7:15:89:05:47:9c:71:aa:2b:bc:72:36:
af:b7:c4:a8:08:f2:03:3e:45:27:d6:e9:d3:3e:f0:28:9e:dd:
ce:f1:de:8d:f0:74:05:f5:e1:a4:ad:97:cc:d0:77:5e:9c:cb:
2b:29:ce:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 17:10:50 2025 by rpki-client