Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/efeccb-d35c-49a2-811a-c0b38212a65b/1/5EGa1TFo8jUriS8GNRdXMWm1FvM.roa
File: 5EGa1TFo8jUriS8GNRdXMWm1FvM.roa (raw, json)
Hash identifier: TauJz66qA/98QnyvdA68S67dkBXEEFVggbgTIYVmbA4=
Subject key identifier: E4:41:9A:D5:31:68:F2:35:2B:89:2F:06:35:17:57:31:69:B5:16:F3
Certificate issuer: /CN=7dd653d9d32c295da5b736a4aabe304e9fe1394f
Certificate serial: 1D18D5
Authority key identifier: 7D:D6:53:D9:D3:2C:29:5D:A5:B7:36:A4:AA:BE:30:4E:9F:E1:39:4F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fdZT2dMsKV2ltzakqr4wTp_hOU8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/efeccb-d35c-49a2-811a-c0b38212a65b/1/5EGa1TFo8jUriS8GNRdXMWm1FvM.roa
Signing time: Sat 01 Jan 2022 01:53:20 +0000
ROA not before: Sat 01 Jan 2022 01:53:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200845
IP address blocks: 185.249.208.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1906901 (0x1d18d5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7dd653d9d32c295da5b736a4aabe304e9fe1394f
Validity
Not Before: Jan 1 01:53:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e4419ad53168f2352b892f063517573169b516f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:d0:62:b1:29:2a:71:e9:f1:66:66:20:78:85:
36:fa:6c:a5:a5:68:16:69:21:18:5b:e4:3a:20:d9:
af:f3:c9:74:f8:33:75:09:7e:d6:c2:f7:64:7b:7d:
c8:84:c5:ea:64:b7:4b:8c:b7:d8:ba:ea:8a:f9:19:
47:dc:ae:98:83:55:e6:62:9d:5b:d0:c3:26:ea:bd:
21:2a:7c:ce:69:fc:6f:a6:cb:fa:ac:74:bd:fb:bd:
7f:47:af:e5:a3:02:a7:b1:c4:06:76:d5:0b:c0:98:
5d:59:85:01:51:aa:e4:8d:b7:d5:fa:7a:c7:fc:e8:
64:0e:1b:90:61:a5:76:19:cf:95:35:44:dd:71:d5:
a0:19:dc:67:31:31:e6:2d:c0:0c:d9:47:d5:c7:4e:
b6:4d:21:68:13:a2:c5:ed:37:3e:da:d7:d4:a8:89:
a0:fa:b9:25:d1:b1:11:7b:aa:ac:31:99:2b:8b:83:
32:5a:fe:db:d8:58:5f:71:db:05:3f:a4:6b:e4:fc:
cf:cf:2b:e0:41:95:64:2d:c6:0b:68:0e:f6:97:ae:
f2:ce:c1:46:91:b2:ab:67:9c:6d:de:81:9a:aa:f0:
93:ea:78:85:f8:f9:81:01:a9:c5:f2:2f:6d:cf:2a:
c6:c7:64:7f:6c:4d:a3:03:8f:b3:8f:7d:9f:1f:68:
35:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:41:9A:D5:31:68:F2:35:2B:89:2F:06:35:17:57:31:69:B5:16:F3
X509v3 Authority Key Identifier:
keyid:7D:D6:53:D9:D3:2C:29:5D:A5:B7:36:A4:AA:BE:30:4E:9F:E1:39:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fdZT2dMsKV2ltzakqr4wTp_hOU8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/efeccb-d35c-49a2-811a-c0b38212a65b/1/5EGa1TFo8jUriS8GNRdXMWm1FvM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/efeccb-d35c-49a2-811a-c0b38212a65b/1/fdZT2dMsKV2ltzakqr4wTp_hOU8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.249.208.0/22
Signature Algorithm: sha256WithRSAEncryption
52:08:b6:b3:bb:f0:7a:82:af:56:be:06:d9:cd:bd:3e:6a:00:
1d:fe:dc:46:ed:aa:0e:a1:df:22:40:47:fa:0c:69:03:31:cc:
48:ea:72:01:bf:13:59:e7:4f:99:07:d5:34:76:aa:4b:29:53:
09:8b:00:3b:9f:2e:55:91:4c:6c:89:23:46:c4:b3:9f:4a:c0:
e5:49:57:5c:c0:33:4f:f4:d2:a8:97:f6:6e:bf:be:42:f8:f6:
e4:f3:45:99:ac:f0:e6:20:09:2a:7d:27:51:eb:10:80:3f:c3:
84:9c:65:75:e5:23:70:21:44:64:7f:e3:00:c5:ed:be:28:45:
99:b1:dd:2b:22:ef:e6:66:33:9d:3b:b4:0d:0f:8d:e8:88:ea:
cd:ea:d3:b5:32:9c:5a:44:31:64:c2:57:12:35:2a:72:05:5f:
9c:25:79:78:c7:39:44:c0:21:98:85:e7:d4:38:c2:90:45:59:
3a:81:f8:ab:18:dd:23:ad:d7:32:eb:26:2c:62:a4:49:28:74:
11:7d:19:59:64:a3:48:0c:30:a9:fd:74:79:28:08:42:b1:be:
bc:a6:86:da:31:c9:e8:a8:76:70:8b:06:5c:ac:62:cf:df:87:
1f:7b:e7:83:b6:e7:81:c6:b4:84:02:ff:59:c9:a0:58:db:eb:
48:8a:22:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:13:32 2025 by rpki-client