Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/8a1db9-7809-4d9c-a61d-04c80122bb08/1/1-SZCNr3acgpoQAvjv9DrtP3Wsv4.roa
File: 1-SZCNr3acgpoQAvjv9DrtP3Wsv4.roa (raw, json)
Hash identifier: 7giCyF2hMeeDnp7JOH4gZGBUYWE+O6/N8KEv4tD7lGo=
Subject key identifier: F9:26:42:36:BD:DA:72:0A:68:40:0B:E3:BF:D0:EB:B4:FD:D6:B2:FE
Certificate issuer: /CN=de046aa4d5a069e8d6afe289423284e37b47a2a0
Certificate serial: 080A91C1
Authority key identifier: DE:04:6A:A4:D5:A0:69:E8:D6:AF:E2:89:42:32:84:E3:7B:47:A2:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3gRqpNWgaejWr-KJQjKE43tHoqA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/8a1db9-7809-4d9c-a61d-04c80122bb08/1/1-SZCNr3acgpoQAvjv9DrtP3Wsv4.roa
Signing time: Sat 01 Jan 2022 13:59:16 +0000
ROA not before: Sat 01 Jan 2022 13:59:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202120
IP address blocks: 185.73.95.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 134910401 (0x80a91c1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de046aa4d5a069e8d6afe289423284e37b47a2a0
Validity
Not Before: Jan 1 13:59:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f9264236bdda720a68400be3bfd0ebb4fdd6b2fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:cd:4f:9c:27:52:c6:94:8e:e5:bb:11:d2:13:
d3:8e:ac:a2:73:d2:9b:d3:a6:15:a8:1c:17:c4:fb:
fb:61:6d:6f:b4:00:d9:65:e4:dd:1a:c1:c5:89:48:
52:8b:6f:c7:60:43:b2:6c:06:cc:a0:0f:72:ef:50:
6f:ec:8c:a8:33:c2:33:b4:6f:73:e9:c3:ad:ef:8a:
3f:0b:3d:58:ae:1d:28:a0:38:66:be:5f:e1:26:9b:
7b:19:18:1d:1e:04:f6:c5:06:3c:48:bc:05:1c:95:
54:e7:c0:2a:46:0d:6b:14:be:65:45:95:4f:d2:1e:
d6:30:7d:c5:6a:3c:81:d6:a2:d2:b4:c7:f9:a8:c0:
47:89:94:81:af:9f:ec:99:9b:04:2b:ff:3a:9d:d5:
72:cb:58:af:be:f9:57:be:72:00:bd:6f:14:66:e5:
7d:42:aa:55:44:07:cd:9d:70:3b:cc:b8:88:62:07:
ce:18:a5:45:36:87:c3:84:19:47:77:9e:c7:af:96:
aa:18:ae:42:ec:66:41:75:b0:dd:30:a1:ad:bb:d7:
c5:c3:85:01:d2:57:80:cb:66:fe:ad:98:84:69:76:
6d:95:bf:86:d4:88:1f:f7:47:53:45:62:42:54:3e:
34:77:b0:af:e3:4b:c9:45:c8:aa:83:11:eb:dc:79:
a5:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:26:42:36:BD:DA:72:0A:68:40:0B:E3:BF:D0:EB:B4:FD:D6:B2:FE
X509v3 Authority Key Identifier:
keyid:DE:04:6A:A4:D5:A0:69:E8:D6:AF:E2:89:42:32:84:E3:7B:47:A2:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3gRqpNWgaejWr-KJQjKE43tHoqA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/8a1db9-7809-4d9c-a61d-04c80122bb08/1/1-SZCNr3acgpoQAvjv9DrtP3Wsv4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/8a1db9-7809-4d9c-a61d-04c80122bb08/1/3gRqpNWgaejWr-KJQjKE43tHoqA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.73.95.0/24
Signature Algorithm: sha256WithRSAEncryption
56:63:6f:cf:2f:1f:62:e6:97:61:af:a7:14:a0:a1:83:d8:49:
5d:65:12:1d:f8:2d:1d:fb:89:15:fd:74:51:de:49:7e:e5:72:
f2:c5:8a:f7:bc:30:07:05:48:9d:7e:6d:0a:21:f5:b0:9d:c3:
65:22:c4:ba:e3:05:42:39:b3:25:12:8a:ee:bf:90:6d:f5:5e:
50:4a:59:0e:bd:80:39:db:4a:a9:40:35:cf:fe:45:b6:2c:39:
ea:59:90:69:9a:98:ff:8b:0c:af:0a:00:ae:ce:81:29:42:35:
64:bf:10:b2:a6:10:0c:72:43:d9:ed:08:a5:22:87:9a:33:fb:
b5:e7:dc:f5:a3:02:7c:3a:9e:0c:3a:9f:34:77:92:9b:52:ba:
07:c9:59:34:e1:9b:95:b7:5a:06:b4:21:aa:15:51:72:21:ce:
88:00:38:5f:2d:37:d7:51:da:a8:bf:94:74:7b:db:6e:64:6f:
a0:87:4c:d1:a3:ed:53:0c:11:f4:a3:46:ea:18:5b:b8:2a:35:
4d:74:dd:da:df:84:d0:0d:b6:5d:4d:aa:cb:b7:6e:9b:7e:8d:
fe:36:b8:e7:54:0e:7d:20:84:33:21:39:87:e0:88:6d:90:af:
69:99:fc:d2:2c:76:d4:c7:b9:15:6c:15:de:8c:4b:1e:01:b8:
4c:bd:9e:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:37:55 2025 by rpki-client