Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/BDdGh1HAKaPwVV1exuSfoiuaxX4.roa
File: BDdGh1HAKaPwVV1exuSfoiuaxX4.roa (raw, json)
Hash identifier: qb+7Rwi7E1y6pe36P5HsREOCOT62uFVpv6KxfmCI4os=
Subject key identifier: 04:37:46:87:51:C0:29:A3:F0:55:5D:5E:C6:E4:9F:A2:2B:9A:C5:7E
Certificate issuer: /CN=9aee15c33de358938d6900a1b3c14480a389e85b
Certificate serial: 0194221FFEDF121AAE3FE8787A1CEB7F979C
Authority key identifier: 9A:EE:15:C3:3D:E3:58:93:8D:69:00:A1:B3:C1:44:80:A3:89:E8:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/BDdGh1HAKaPwVV1exuSfoiuaxX4.roa
Signing time: Wed 01 Jan 2025 13:48:29 +0000
ROA not before: Wed 01 Jan 2025 13:48:29 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 44477
IP address blocks: 185.73.218.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:1f:fe:df:12:1a:ae:3f:e8:78:7a:1c:eb:7f:97:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9aee15c33de358938d6900a1b3c14480a389e85b
Validity
Not Before: Jan 1 13:48:29 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=0437468751c029a3f0555d5ec6e49fa22b9ac57e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:f3:fa:58:91:f7:27:7e:ec:86:2c:e0:89:9e:
da:2f:83:0e:c5:08:7f:80:ba:bd:b3:ff:4b:80:02:
56:7a:df:28:75:3e:1a:8d:57:5b:45:4f:d0:0c:6d:
72:ab:18:26:84:5f:8e:f9:b4:fb:22:0f:f1:1d:8f:
db:8b:ef:42:56:3a:32:4a:be:25:27:21:a1:27:f8:
72:9a:d6:11:1c:34:5b:1b:11:b8:56:cb:dd:b7:fa:
a5:0c:c8:17:5b:5a:30:7a:57:59:44:e3:b8:c9:d7:
86:77:7c:29:ef:5e:20:78:42:f7:ca:e3:b2:1e:df:
80:49:24:6e:37:ec:4b:c6:92:66:15:ba:46:81:b3:
8a:0f:74:40:38:38:e8:81:5f:6c:54:05:70:ad:a8:
a3:a2:ae:02:e8:ce:c7:50:9d:cd:52:af:60:16:d2:
ae:25:37:77:79:57:ac:c2:90:7b:dd:16:af:3b:8e:
7d:17:2e:3e:d0:13:c3:40:3d:ac:f8:9e:82:bf:8c:
cf:eb:ba:ad:b0:dd:24:2d:94:30:23:41:91:9d:2e:
e2:2e:9a:a0:7e:59:e7:1a:ef:35:0b:08:21:6f:d1:
4e:ca:6d:b7:4d:02:08:5a:b5:a3:3b:b0:8f:67:d0:
af:32:7e:9e:83:02:74:31:41:e5:f1:e0:1b:69:a3:
4a:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:37:46:87:51:C0:29:A3:F0:55:5D:5E:C6:E4:9F:A2:2B:9A:C5:7E
X509v3 Authority Key Identifier:
keyid:9A:EE:15:C3:3D:E3:58:93:8D:69:00:A1:B3:C1:44:80:A3:89:E8:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/BDdGh1HAKaPwVV1exuSfoiuaxX4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.73.218.0/24
Signature Algorithm: sha256WithRSAEncryption
61:1d:c1:4d:d4:c9:93:e0:79:f0:bd:cd:20:3c:f4:15:84:22:
f4:cc:2a:d5:85:9d:bd:11:4b:26:95:07:b4:fe:a9:2e:e5:23:
6d:23:be:1c:87:ba:c7:8a:51:9e:2f:30:18:3a:88:4b:f7:4c:
e2:4a:c6:cf:de:a1:19:42:3c:ef:6f:ea:6f:b1:27:b5:a9:fd:
dc:61:cc:c1:0c:df:a5:17:aa:71:d9:76:2d:36:88:79:e8:80:
22:32:a3:ec:a3:8e:71:7f:de:56:27:a5:d1:16:ca:65:a2:25:
ac:ce:23:54:43:19:36:be:3e:66:62:60:49:71:fa:26:26:ed:
6a:d3:0f:67:e2:f8:6a:19:ae:d1:d3:34:9f:a1:03:14:d5:8a:
6f:11:89:71:d9:9c:9a:66:7d:c7:78:99:6f:53:16:09:f4:c7:
3f:e4:c6:65:3a:69:18:21:cd:70:60:73:65:55:d9:91:ed:cd:
40:e4:53:a8:e5:21:44:0a:fe:34:d0:79:32:f8:f5:12:5b:ab:
44:e9:99:49:d5:97:34:0f:0c:f6:76:78:3f:8d:e6:c9:4a:66:
e2:78:6d:de:29:a4:96:df:69:a6:e7:bf:3e:ae:91:e6:d4:0d:
57:f2:21:6a:f4:c2:9a:90:09:12:44:12:ae:7e:c2:c2:5e:2f:
a9:16:c7:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 09:59:33 2025 by rpki-client