Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/1c084c-982d-4098-af42-3425b125eaa7/1/Np_AAzWOkze-0qoLNwSgpFrVCM8.roa
File: Np_AAzWOkze-0qoLNwSgpFrVCM8.roa (raw, json)
Hash identifier: ITneg5oKvgQlYpYyJYu59fI3FPIx9jSQKvRUDtrhJB4=
Subject key identifier: 36:9F:C0:03:35:8E:93:37:BE:D2:AA:0B:37:04:A0:A4:5A:D5:08:CF
Certificate issuer: /CN=0d722e4513a39678d8ab23b2d649775340518cb9
Certificate serial: 018A8D589FF1557CEBB7C3738AB0856ADF2B
Authority key identifier: 0D:72:2E:45:13:A3:96:78:D8:AB:23:B2:D6:49:77:53:40:51:8C:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DXIuRROjlnjYqyOy1kl3U0BRjLk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/1c084c-982d-4098-af42-3425b125eaa7/1/Np_AAzWOkze-0qoLNwSgpFrVCM8.roa
Signing time: Wed 13 Sep 2023 07:01:50 +0000
ROA not before: Wed 13 Sep 2023 07:01:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 185.21.252.0/24 maxlen: 24
185.21.253.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:8d:58:9f:f1:55:7c:eb:b7:c3:73:8a:b0:85:6a:df:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d722e4513a39678d8ab23b2d649775340518cb9
Validity
Not Before: Sep 13 07:01:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=369fc003358e9337bed2aa0b3704a0a45ad508cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:f9:1a:c7:e6:12:1d:bd:cd:bd:da:4e:fc:3f:
b3:3c:ec:7f:44:cf:13:58:57:4c:d0:08:6b:96:6f:
e4:97:9b:81:a5:62:ed:27:31:91:d6:34:2b:6b:c9:
db:b7:61:5c:df:56:2d:85:14:5a:14:2e:4e:89:7d:
a0:c4:06:ab:4e:50:2f:7d:5b:0a:32:c7:62:de:e1:
11:e4:27:11:71:e2:fd:f5:48:df:f7:d6:14:6c:74:
a6:46:ba:8e:a7:a2:66:76:1b:3c:a3:b6:a4:0f:05:
9f:f2:21:00:12:6c:63:e3:41:8b:88:37:e9:2a:90:
b3:f7:5d:3e:c4:99:83:b4:e0:94:50:b4:4b:d2:f8:
97:91:38:50:69:93:51:39:65:6e:56:72:c1:4c:0f:
1c:d1:b5:8d:ac:10:f0:90:75:fe:33:28:0e:a5:f0:
66:f3:27:9b:0f:00:ff:d0:e3:01:54:7f:a1:4e:17:
f6:7f:ae:1c:0e:77:4e:c5:59:1a:1f:22:3f:6a:73:
81:e4:fd:73:2f:6c:d7:ab:11:41:7f:48:9b:fc:28:
75:05:7f:bb:59:be:0e:a6:8c:3a:f5:19:bf:cb:12:
b3:02:fb:2b:7f:60:5b:94:42:9b:3c:8f:47:b6:7e:
c1:e5:3e:5a:e4:5b:18:6c:b3:0d:69:97:de:5c:f4:
4f:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:9F:C0:03:35:8E:93:37:BE:D2:AA:0B:37:04:A0:A4:5A:D5:08:CF
X509v3 Authority Key Identifier:
keyid:0D:72:2E:45:13:A3:96:78:D8:AB:23:B2:D6:49:77:53:40:51:8C:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DXIuRROjlnjYqyOy1kl3U0BRjLk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/1c084c-982d-4098-af42-3425b125eaa7/1/Np_AAzWOkze-0qoLNwSgpFrVCM8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/1c084c-982d-4098-af42-3425b125eaa7/1/DXIuRROjlnjYqyOy1kl3U0BRjLk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.21.252.0/23
Signature Algorithm: sha256WithRSAEncryption
95:b5:50:bc:47:d3:58:9c:5b:29:9e:3d:b5:d8:c8:4a:91:79:
60:42:de:fc:92:5f:c1:67:20:f9:b2:d7:e6:e3:d7:18:e3:de:
60:60:9c:0c:8f:aa:93:bd:91:f4:94:bd:30:9d:3d:90:b3:88:
a2:dc:39:fc:99:d7:59:63:5e:43:37:1f:d7:e0:25:48:07:bf:
c8:7a:5c:1c:30:61:72:da:55:4d:b3:a0:9f:b5:e2:01:40:50:
2e:8e:30:27:db:4d:6b:73:89:53:b2:09:be:25:7f:56:25:5d:
64:3c:de:09:f8:d3:83:cd:04:3e:15:b1:36:fa:7c:87:bc:44:
2f:12:99:cf:c2:cf:78:d4:fd:2a:09:f7:8b:14:47:db:05:2c:
d0:ff:66:58:cc:73:dd:ba:e4:77:0e:1a:a2:eb:35:3a:d9:e4:
47:3c:37:75:23:b9:ef:59:2b:df:fe:23:cd:1c:1f:35:21:e6:
09:5e:9e:dc:5e:d6:5a:8e:df:23:07:8b:8e:96:5b:57:30:28:
cd:9b:bd:b1:90:bd:e6:86:41:f1:73:bb:81:84:a2:f2:49:b8:
89:81:f3:9d:56:a3:d6:10:83:75:ad:70:63:52:eb:1c:53:d7:
36:97:96:c7:8c:5b:f9:94:db:3b:fd:73:63:0e:8b:2f:7e:0f:
74:f5:99:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:11:28 2025 by rpki-client