Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/1c084c-982d-4098-af42-3425b125eaa7/1/1obw94YXwLPRtojClyzGt6W4Qxg.roa
File: 1obw94YXwLPRtojClyzGt6W4Qxg.roa (raw, json)
Hash identifier: zALF3ddNDj0cb1/V7g+IiMYgzC9LvYIziMmOHJHxnOI=
Subject key identifier: D6:86:F0:F7:86:17:C0:B3:D1:B6:88:C2:97:2C:C6:B7:A5:B8:43:18
Certificate issuer: /CN=0d722e4513a39678d8ab23b2d649775340518cb9
Certificate serial: 018A8D58A0568D801BE6C4B2347F033DADF7
Authority key identifier: 0D:72:2E:45:13:A3:96:78:D8:AB:23:B2:D6:49:77:53:40:51:8C:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DXIuRROjlnjYqyOy1kl3U0BRjLk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/1c084c-982d-4098-af42-3425b125eaa7/1/1obw94YXwLPRtojClyzGt6W4Qxg.roa
Signing time: Wed 13 Sep 2023 07:01:50 +0000
ROA not before: Wed 13 Sep 2023 07:01:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51308
IP address blocks: 185.21.254.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:8d:58:a0:56:8d:80:1b:e6:c4:b2:34:7f:03:3d:ad:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d722e4513a39678d8ab23b2d649775340518cb9
Validity
Not Before: Sep 13 07:01:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d686f0f78617c0b3d1b688c2972cc6b7a5b84318
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:8f:95:f7:c0:85:7c:5d:8b:2f:c6:6c:d7:7d:
73:42:57:76:fb:d2:e2:6d:c4:6d:61:8c:fa:b3:ef:
f9:20:cb:7f:8a:f9:33:31:5e:fa:6b:5d:e6:aa:24:
16:7e:3f:e6:6d:e3:c3:65:ab:21:a7:49:df:25:37:
6b:0f:82:81:df:ad:e5:9c:aa:8b:9f:df:a6:10:6d:
16:1e:da:ea:a9:d2:08:5e:ee:be:a9:a7:03:e8:a2:
64:d5:ab:7b:4a:be:40:6a:fd:68:ca:1d:61:f2:6b:
b0:b8:76:a8:52:fe:00:6f:38:f2:34:ef:94:f9:8b:
58:31:37:98:28:e1:75:02:6b:85:cf:2c:53:22:41:
5c:58:ee:bc:e6:b9:83:59:1b:ec:87:57:53:62:f9:
b4:b7:7a:01:d9:2b:b2:64:0c:96:ce:d7:92:32:3a:
de:cb:ed:b2:3c:6e:a7:94:c9:73:21:0f:95:f3:d1:
7b:16:d8:48:a0:57:ae:1c:20:11:78:27:b3:24:3d:
f5:83:5f:53:d2:cd:28:52:b1:96:5d:5e:6c:6b:6f:
28:e1:d5:36:2b:ac:03:00:6a:39:5a:8d:37:0d:b5:
2c:0c:72:be:be:e0:30:f1:7b:13:18:88:1b:17:d7:
3a:a7:ab:17:17:87:78:5a:9a:a8:f0:30:4c:6e:28:
61:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:86:F0:F7:86:17:C0:B3:D1:B6:88:C2:97:2C:C6:B7:A5:B8:43:18
X509v3 Authority Key Identifier:
keyid:0D:72:2E:45:13:A3:96:78:D8:AB:23:B2:D6:49:77:53:40:51:8C:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DXIuRROjlnjYqyOy1kl3U0BRjLk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/1c084c-982d-4098-af42-3425b125eaa7/1/1obw94YXwLPRtojClyzGt6W4Qxg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/1c084c-982d-4098-af42-3425b125eaa7/1/DXIuRROjlnjYqyOy1kl3U0BRjLk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.21.254.0/24
Signature Algorithm: sha256WithRSAEncryption
50:ba:f2:c8:d8:b3:0d:65:70:a5:53:01:83:f7:ee:91:94:89:
9e:c4:b9:f7:4d:d8:7e:5b:3e:77:73:b1:5f:e2:f5:e1:99:af:
91:7c:ed:a3:7d:db:6d:11:3b:1b:d6:ea:1e:32:bd:a8:43:9d:
58:c4:ed:69:f3:27:fa:5e:80:19:38:7a:b4:98:72:c6:4e:ff:
04:34:e4:44:4d:19:f3:92:3d:90:26:0b:64:91:9f:65:db:f7:
c0:cd:04:87:70:5b:ad:e1:1b:d7:d9:4a:b2:85:67:52:42:58:
cb:d3:b8:4f:2e:8b:1c:13:2d:bd:ef:cd:28:63:4e:13:c8:51:
11:5f:97:2e:d0:3f:32:ea:33:a8:93:c3:53:b2:44:52:84:d3:
0e:be:ef:44:10:63:47:0c:80:76:cb:bd:2f:44:b4:30:33:59:
f2:e8:75:30:49:b1:3d:80:c1:eb:73:22:f6:05:9a:1f:f6:14:
0b:cf:ba:c8:3f:40:e0:fe:64:2c:0d:e4:68:50:d9:4c:f7:52:
1f:78:6b:a1:b9:1b:fe:27:26:20:65:d6:e2:61:af:09:2e:aa:
ad:38:34:4f:0e:13:0c:17:20:ec:c0:a6:a4:f0:1c:77:3a:7d:
24:d6:7b:21:2a:e2:a6:4b:b2:0e:74:79:bc:67:10:d4:d7:de:
54:f3:2a:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 21:59:00 2025 by rpki-client