Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/702b28-e158-40c0-8330-24fddc6d147b/1/fZrSd9qpcapJF1au83hga5KeGWU.roa
File: fZrSd9qpcapJF1au83hga5KeGWU.roa (raw, json)
Hash identifier: DMLkb+C7XwFz8uSLaZV2k3z3CCk557lg02T8qUx/DLI=
Subject key identifier: 7D:9A:D2:77:DA:A9:71:AA:49:17:56:AE:F3:78:60:6B:92:9E:19:65
Certificate issuer: /CN=1c7b06bf41300dc4d30f3d0e180c9b95d2bcddff
Certificate serial: 123FD8AB
Authority key identifier: 1C:7B:06:BF:41:30:0D:C4:D3:0F:3D:0E:18:0C:9B:95:D2:BC:DD:FF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HHsGv0EwDcTTDz0OGAybldK83f8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/702b28-e158-40c0-8330-24fddc6d147b/1/fZrSd9qpcapJF1au83hga5KeGWU.roa
Signing time: Sat 01 Jan 2022 04:01:49 +0000
ROA not before: Sat 01 Jan 2022 04:01:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205379
IP address blocks: 145.14.7.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 306174123 (0x123fd8ab)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c7b06bf41300dc4d30f3d0e180c9b95d2bcddff
Validity
Not Before: Jan 1 04:01:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7d9ad277daa971aa491756aef378606b929e1965
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:d5:ef:20:61:5c:2e:96:ed:3a:12:8a:b3:cc:
f6:65:c9:b3:d3:1e:67:27:16:c8:5e:eb:dc:9a:25:
e0:69:af:5a:21:fd:6f:cf:50:05:7b:fa:7a:ff:fc:
cd:c0:20:ed:d4:c2:98:45:2d:51:bd:5a:66:39:c6:
5a:f3:ad:56:cd:70:c8:a8:cb:d8:36:01:75:f3:77:
f5:e4:e9:f2:7c:ff:01:96:18:5e:eb:11:cf:d7:42:
bc:02:e5:38:88:0d:0e:68:35:6b:45:b6:52:f1:b2:
3c:71:5c:fb:ca:c2:86:7f:c2:da:09:00:c0:db:d9:
d9:22:f1:65:4e:37:58:ec:55:09:3f:25:cb:bb:ae:
5c:c2:ed:0d:25:07:1e:57:84:2e:87:24:61:f0:63:
09:0d:4f:31:38:7d:a2:b1:69:dc:66:04:db:47:95:
c9:14:ca:98:08:0b:fd:41:4f:53:c0:96:e0:f3:de:
f5:86:d2:b2:bd:84:65:8e:8c:26:9d:a5:64:34:ce:
4d:8e:bb:c9:97:3f:ff:0c:c0:0b:32:a6:a1:2f:3e:
cf:45:b0:50:b7:72:f9:fa:11:ee:ab:b3:2d:20:73:
f3:23:f4:af:86:9b:27:2b:2c:be:91:8b:21:9c:34:
3e:0c:17:ed:c5:8a:80:d0:b9:aa:64:59:2d:8b:72:
39:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:9A:D2:77:DA:A9:71:AA:49:17:56:AE:F3:78:60:6B:92:9E:19:65
X509v3 Authority Key Identifier:
keyid:1C:7B:06:BF:41:30:0D:C4:D3:0F:3D:0E:18:0C:9B:95:D2:BC:DD:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HHsGv0EwDcTTDz0OGAybldK83f8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/702b28-e158-40c0-8330-24fddc6d147b/1/fZrSd9qpcapJF1au83hga5KeGWU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/702b28-e158-40c0-8330-24fddc6d147b/1/HHsGv0EwDcTTDz0OGAybldK83f8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
145.14.7.0/24
Signature Algorithm: sha256WithRSAEncryption
63:f4:0c:d2:05:ac:6a:49:d8:4b:fa:63:d6:5b:a5:e7:23:4c:
12:f1:01:37:3f:0d:93:ce:3e:e8:ce:59:6e:61:ca:14:02:78:
9b:32:98:96:45:01:09:ae:9f:42:b2:a3:ac:55:3d:74:1c:34:
bf:1e:34:b8:92:94:13:8d:01:05:19:8e:bb:85:3f:c6:a6:fc:
97:0d:a4:82:a0:64:2e:6d:5c:9e:8e:d1:b6:6d:e9:49:86:36:
d4:cf:b5:1f:ef:5c:83:1f:e2:23:1d:d9:31:38:16:42:75:62:
f7:da:dc:69:f1:71:4a:f4:bb:81:ef:8c:e3:1a:c8:d2:94:63:
83:1a:f4:0d:97:59:eb:5b:3e:49:ab:f7:5b:99:b2:74:09:3a:
42:ad:15:70:49:ae:cd:9d:8b:84:4d:d9:57:74:12:57:bb:14:
e2:0b:5b:e2:24:03:64:8d:c9:7e:27:7a:02:5f:a8:53:0e:54:
f0:de:39:19:9e:9a:41:f2:52:7f:8e:b2:d0:3f:63:cf:87:20:
cd:de:8c:ce:78:95:3c:17:da:66:80:24:4f:8e:0e:8f:6d:ca:
5e:42:d9:c6:d3:0b:80:5f:ac:c8:68:01:00:10:e0:3e:98:8d:
57:f3:de:f7:6e:3c:43:d3:4b:eb:1d:7c:1e:43:c8:a7:5d:a7:
bb:8e:dd:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 07:48:52 2025 by rpki-client