Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/cbb5ed-65cc-4979-b0b1-a493fe7f2ae6/1/fjesg9wXCsReHpCB_VKXg8SO-Zo.roa
File: fjesg9wXCsReHpCB_VKXg8SO-Zo.roa (raw, json)
Hash identifier: vJ2Qoauh2BWDJ0jrY0B2RTDqquzW1EpWmMVcqzvO6JI=
Subject key identifier: 7E:37:AC:83:DC:17:0A:C4:5E:1E:90:81:FD:52:97:83:C4:8E:F9:9A
Certificate issuer: /CN=b3bea0da56e55fa2eb500f150dc478ed1cb39daf
Certificate serial: 0203ED2D
Authority key identifier: B3:BE:A0:DA:56:E5:5F:A2:EB:50:0F:15:0D:C4:78:ED:1C:B3:9D:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s76g2lblX6LrUA8VDcR47Ryzna8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/cbb5ed-65cc-4979-b0b1-a493fe7f2ae6/1/fjesg9wXCsReHpCB_VKXg8SO-Zo.roa
Signing time: Tue 12 Apr 2022 11:51:27 +0000
ROA not before: Tue 12 Apr 2022 11:51:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 834
IP address blocks: 146.255.189.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 33811757 (0x203ed2d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b3bea0da56e55fa2eb500f150dc478ed1cb39daf
Validity
Not Before: Apr 12 11:51:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7e37ac83dc170ac45e1e9081fd529783c48ef99a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:aa:be:a8:d0:95:2e:89:2d:00:d3:62:8d:37:
1a:19:33:c2:a2:6d:07:30:55:f8:aa:97:04:c4:6c:
8a:e8:61:b7:a1:2d:7e:fc:a4:3e:06:5f:39:7c:1f:
22:ee:2a:ad:ff:41:8b:c0:36:c7:97:d0:51:a9:2d:
30:59:f9:53:98:3f:8c:ee:8a:14:99:6f:87:ff:e2:
8d:de:41:00:7b:50:f8:71:d1:0e:97:3a:3e:4b:a8:
4d:53:9d:2e:d5:40:3b:7c:6a:5f:c5:63:0c:a2:a6:
20:f3:08:ae:03:91:53:6d:29:f5:1a:42:ed:ef:93:
b2:f0:13:6e:bd:9e:3e:70:68:c7:e7:b7:3d:c5:7b:
ac:f1:2d:9a:27:10:1f:6c:e0:48:13:15:35:9e:34:
11:d7:86:6c:c0:e2:a9:0d:a2:be:5b:cd:50:9a:0d:
e9:a3:46:a0:ef:09:04:7a:4a:74:05:c1:af:6e:30:
d9:74:b1:27:4e:56:df:3e:67:7c:27:8b:49:70:3b:
73:f3:29:f1:ec:8d:09:c3:65:23:98:5a:5e:6f:7d:
13:98:95:58:31:60:52:d5:ad:f0:71:1e:4a:1c:f1:
2c:a5:1b:a1:1a:36:01:88:ba:45:76:bd:41:28:9a:
08:d6:53:70:13:43:d8:3d:a2:25:2e:f5:2e:92:ae:
0b:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:37:AC:83:DC:17:0A:C4:5E:1E:90:81:FD:52:97:83:C4:8E:F9:9A
X509v3 Authority Key Identifier:
keyid:B3:BE:A0:DA:56:E5:5F:A2:EB:50:0F:15:0D:C4:78:ED:1C:B3:9D:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s76g2lblX6LrUA8VDcR47Ryzna8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/cbb5ed-65cc-4979-b0b1-a493fe7f2ae6/1/fjesg9wXCsReHpCB_VKXg8SO-Zo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/cbb5ed-65cc-4979-b0b1-a493fe7f2ae6/1/s76g2lblX6LrUA8VDcR47Ryzna8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.255.189.0/24
Signature Algorithm: sha256WithRSAEncryption
69:82:70:37:5e:2d:e7:29:d6:d6:fe:ba:0d:9b:9e:b6:3e:ca:
a0:c4:c9:cd:64:6d:8d:71:97:58:b8:ec:ec:31:a8:32:0a:7a:
98:d8:a0:2d:65:e9:0d:aa:77:ec:cd:be:25:ad:ef:5e:0d:08:
e9:da:54:58:b0:64:cd:42:22:27:a3:2d:ec:11:2e:70:23:27:
a7:e9:c7:c3:82:3b:c8:b6:07:7d:e8:b5:2a:bc:7e:00:c1:66:
ca:2c:6e:2f:e3:3e:91:ef:41:2a:d8:2e:36:d2:5a:1a:c6:ed:
29:29:de:c7:3e:48:43:9b:73:76:05:18:ba:b2:2d:9e:a8:df:
e0:81:aa:d2:33:61:33:3c:ee:8c:4b:0f:0e:1a:10:a2:8c:df:
74:b5:40:d8:11:bb:36:e2:59:10:29:71:aa:10:92:4a:61:aa:
f2:9c:fa:59:04:8b:e6:43:52:3e:ef:be:ed:91:cd:b7:38:d1:
54:76:25:b2:15:30:6f:45:32:22:16:ea:51:d0:4f:fa:42:fe:
57:34:19:6f:6e:09:4c:3a:28:72:c2:78:11:58:9f:9f:e2:ba:
24:6e:2e:cb:93:93:75:77:ee:11:e1:bc:88:3a:e3:fc:3d:2b:
28:6a:f8:30:35:69:c9:18:0f:cc:4d:50:76:2c:1f:a2:82:2b:
93:19:ec:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:38:10 2025 by rpki-client