Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/6ecfdf-a94d-4ff0-8800-198c7872df4f/1/us5MDtHqAhwN2MzI7WMdqVT0Nec.roa
File: us5MDtHqAhwN2MzI7WMdqVT0Nec.roa (raw, json)
Hash identifier: vh1DA0Mwsq3eMjNKhw7sGM3deTP8NmKFzr9MnOnZX6o=
Subject key identifier: BA:CE:4C:0E:D1:EA:02:1C:0D:D8:CC:C8:ED:63:1D:A9:54:F4:35:E7
Certificate issuer: /CN=d34271d123c60ecd7ac5288c72e60e41b5791f9f
Certificate serial: 071044F8
Authority key identifier: D3:42:71:D1:23:C6:0E:CD:7A:C5:28:8C:72:E6:0E:41:B5:79:1F:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/00Jx0SPGDs16xSiMcuYOQbV5H58.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/6ecfdf-a94d-4ff0-8800-198c7872df4f/1/us5MDtHqAhwN2MzI7WMdqVT0Nec.roa
Signing time: Sat 01 Jan 2022 16:06:59 +0000
ROA not before: Sat 01 Jan 2022 16:06:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50599
IP address blocks: 185.235.68.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118506744 (0x71044f8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d34271d123c60ecd7ac5288c72e60e41b5791f9f
Validity
Not Before: Jan 1 16:06:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bace4c0ed1ea021c0dd8ccc8ed631da954f435e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:9e:42:99:18:42:94:e1:ae:c6:5f:8a:e3:7a:
17:f2:2e:ed:ed:e1:44:ba:df:32:4f:92:34:ac:0e:
43:bf:b1:3e:78:d0:91:b4:49:3d:ba:f1:b9:58:35:
8c:64:cf:7d:b1:2e:42:34:71:1b:82:2b:a5:d1:cf:
d9:02:72:ac:81:69:e5:4d:80:4c:e5:81:8d:c8:f3:
b3:21:f4:cd:76:77:b4:ae:8e:5f:c8:52:c6:62:53:
55:48:5c:5b:d6:c0:aa:6e:63:08:bc:ba:aa:d2:85:
3e:6f:4e:4a:b5:1c:b1:91:99:3a:00:d4:7c:02:63:
bb:12:82:8b:8c:bd:42:bc:6b:62:1e:e6:cd:35:ca:
60:d0:de:8b:c4:b8:f2:50:57:61:c7:79:a3:49:c5:
02:6e:5c:6d:9f:b5:80:d8:14:d5:9c:6a:02:37:75:
f5:d0:80:0c:fc:76:f3:bd:dc:be:b1:8d:9a:4e:3b:
3d:c6:e4:5a:0b:5a:ca:36:ca:0b:45:73:df:70:50:
89:22:51:30:a7:82:fc:5d:b9:e1:a6:3f:39:10:0b:
cf:a7:27:f9:79:42:e6:a1:03:51:fa:e0:d4:88:62:
ce:73:f3:9a:8b:8c:16:3a:36:69:c0:85:b9:d4:b9:
b1:81:2f:42:77:da:2e:3d:95:6f:13:d8:b8:9e:ea:
ef:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:CE:4C:0E:D1:EA:02:1C:0D:D8:CC:C8:ED:63:1D:A9:54:F4:35:E7
X509v3 Authority Key Identifier:
keyid:D3:42:71:D1:23:C6:0E:CD:7A:C5:28:8C:72:E6:0E:41:B5:79:1F:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/00Jx0SPGDs16xSiMcuYOQbV5H58.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/6ecfdf-a94d-4ff0-8800-198c7872df4f/1/us5MDtHqAhwN2MzI7WMdqVT0Nec.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/6ecfdf-a94d-4ff0-8800-198c7872df4f/1/00Jx0SPGDs16xSiMcuYOQbV5H58.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.235.68.0/23
Signature Algorithm: sha256WithRSAEncryption
b0:f0:33:a4:cf:49:2a:1f:6d:00:e7:fc:28:5d:90:91:1b:43:
86:ec:98:8c:b9:c7:11:8e:23:6c:f1:d0:de:81:19:3d:d6:3b:
70:92:55:f3:b0:b3:c6:1a:b8:bd:e8:b3:d3:e4:09:da:93:89:
d5:ca:82:d7:8c:21:5f:c5:d0:cf:cc:ff:32:af:7a:93:15:9b:
98:cc:1e:d3:3f:9a:c4:a6:86:4c:af:7b:5b:63:41:a0:ce:e7:
cf:0c:a9:74:b6:cf:30:6c:bc:4c:66:a0:8b:09:29:4c:06:c7:
d4:b7:98:c9:f2:b4:e4:d0:db:ad:31:40:e2:bd:f3:33:2d:c5:
2e:a3:5c:0a:d2:c8:38:eb:42:8d:24:de:1a:30:25:67:6d:f2:
e2:f4:a8:46:a5:81:5b:53:ce:9c:3e:f6:ba:3f:cd:19:f5:88:
3d:8a:6e:d5:1e:b0:30:0b:ae:dc:58:74:6f:9a:7a:c3:9a:08:
58:29:79:93:4f:0c:81:7e:8a:ae:a1:ed:be:5c:1b:46:7b:6e:
2c:84:c8:90:0c:b8:80:b5:2c:5b:34:04:e0:f7:11:ef:a3:39:
e6:25:82:20:7f:28:af:38:36:f2:d6:21:3a:81:c8:24:a0:e1:
14:d2:f1:93:5a:f1:36:ff:1d:16:d0:26:ca:d0:7d:12:0b:50:
d7:4e:1a:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 19:27:39 2025 by rpki-client