Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/ekmh_D42b3KDyrmG21CYg8kZcjU.roa
File: ekmh_D42b3KDyrmG21CYg8kZcjU.roa (raw, json)
Hash identifier: tlGsWV8szjjI3dbyUIBR4buZNb45/FU5J1HlYYyDEac=
Subject key identifier: 7A:49:A1:FC:3E:36:6F:72:83:CA:B9:86:DB:50:98:83:C9:19:72:35
Certificate issuer: /CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Certificate serial: 0CF9786B
Authority key identifier: D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/ekmh_D42b3KDyrmG21CYg8kZcjU.roa
Signing time: Thu 21 Apr 2022 08:16:58 +0000
ROA not before: Thu 21 Apr 2022 08:16:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 398465
IP address blocks: 195.252.160.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 217675883 (0xcf9786b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Validity
Not Before: Apr 21 08:16:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7a49a1fc3e366f7283cab986db509883c9197235
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:ad:06:f5:a2:43:3b:8c:65:55:db:4b:a6:4c:
ed:11:ae:45:5c:87:20:b3:bc:6a:d7:36:36:cd:e8:
82:10:e4:6f:d8:da:3d:20:bd:1b:0b:25:a5:bb:58:
94:26:1f:cf:1d:89:19:21:68:07:06:32:b3:d0:06:
6b:d9:5a:cb:a0:76:10:fb:88:3a:7e:b7:18:0b:b1:
4a:79:85:07:40:39:28:af:f8:34:ac:ce:b5:5a:6d:
1b:21:6b:86:4a:7e:0b:2d:46:82:7f:6c:2e:36:b9:
fa:89:71:dc:51:4c:64:2a:71:f1:64:19:b9:1b:a6:
66:c7:de:ce:a4:c5:02:73:9d:50:49:1c:55:dc:69:
18:42:32:2b:8b:62:82:72:71:b5:e3:15:9a:58:eb:
aa:c6:92:6a:25:91:ba:72:5a:ff:ef:06:34:10:d3:
48:f7:55:48:93:48:5b:3d:3a:86:a5:be:a5:54:fe:
2b:f4:e3:ee:a8:b4:38:e7:66:45:f9:6a:1a:a5:41:
de:21:28:a7:cb:3b:3b:6b:49:85:a4:69:cd:92:a5:
20:1a:ca:3c:62:50:05:d1:37:11:e6:2c:2a:38:1b:
b4:0a:b7:35:52:e0:e3:64:87:69:34:78:cc:53:0d:
cc:11:62:47:21:98:3c:4b:5f:24:b8:81:c6:1b:ac:
df:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:49:A1:FC:3E:36:6F:72:83:CA:B9:86:DB:50:98:83:C9:19:72:35
X509v3 Authority Key Identifier:
keyid:D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/ekmh_D42b3KDyrmG21CYg8kZcjU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/10cBdWTHEby9V2gKDf0A8qXQmds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.252.160.0/22
Signature Algorithm: sha256WithRSAEncryption
6f:98:6d:c4:11:1e:8b:b6:b1:76:57:68:47:df:f2:c4:16:bd:
a1:77:fb:e7:e9:e4:54:34:81:d4:b0:b6:2a:f8:f2:38:1c:8f:
e9:58:7b:e2:92:a4:d5:20:a0:c5:1d:d1:53:7c:95:95:0a:c5:
3c:e7:8a:2b:a5:b2:18:8a:34:1e:bf:c4:05:c0:67:5a:7c:64:
14:7f:32:c8:d4:cc:62:59:86:a6:59:73:24:e8:7f:e5:de:a2:
17:68:92:9e:b6:ee:67:92:07:a1:63:84:4e:d6:2d:62:b2:8e:
95:0b:9b:0b:26:65:34:78:54:40:47:84:91:02:f9:41:2e:fd:
3a:d0:5f:3e:f9:b2:91:f7:cb:70:22:f2:fd:17:ef:cb:e0:bf:
6a:6d:20:47:19:92:2d:e4:29:29:29:12:18:e6:44:8b:8c:52:
7a:e0:d1:6c:60:df:f8:dd:eb:8a:70:7b:1e:d0:b1:a2:bb:84:
4c:12:a3:83:33:df:b1:86:8c:7c:06:e9:79:2c:78:b5:64:a2:
87:08:02:81:7a:24:62:a1:ae:96:d9:16:cc:fa:b1:da:e2:43:
e3:f0:61:b8:7e:b7:44:91:79:64:33:8d:dc:c6:71:28:90:ef:
96:a3:ba:c6:d1:8c:29:a5:b6:0a:b8:c6:da:07:bd:9a:04:24:
3f:a1:ce:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:06:15 2025 by rpki-client