Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/294e84-cfc5-45a4-a5cd-33b7459975e0/1/2pXqnCDGuDZKFfmGzgAPDXF80oM.roa
File: 2pXqnCDGuDZKFfmGzgAPDXF80oM.roa (raw, json)
Hash identifier: OpqL3mV4nPklTD1/SOb4bSgTpFHI6iJg3n2UGGlUkFY=
Subject key identifier: DA:95:EA:9C:20:C6:B8:36:4A:15:F9:86:CE:00:0F:0D:71:7C:D2:83
Certificate issuer: /CN=5324defbaade93e998e13a942029dd593b8b2ea3
Certificate serial: 1A2ABF64
Authority key identifier: 53:24:DE:FB:AA:DE:93:E9:98:E1:3A:94:20:29:DD:59:3B:8B:2E:A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UyTe-6rek-mY4TqUICndWTuLLqM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/294e84-cfc5-45a4-a5cd-33b7459975e0/1/2pXqnCDGuDZKFfmGzgAPDXF80oM.roa
Signing time: Sat 01 Jan 2022 12:55:14 +0000
ROA not before: Sat 01 Jan 2022 12:55:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7029
IP address blocks: 185.212.175.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 439009124 (0x1a2abf64)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5324defbaade93e998e13a942029dd593b8b2ea3
Validity
Not Before: Jan 1 12:55:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=da95ea9c20c6b8364a15f986ce000f0d717cd283
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:d7:df:c8:ea:6a:8d:e8:92:2f:c2:8a:f6:91:
0f:87:2a:f1:62:40:19:56:3d:44:7b:97:e2:70:66:
fa:d3:af:00:a7:88:43:55:3f:57:04:1c:ed:f7:1d:
1e:75:5f:07:95:1a:fa:2a:f4:bf:64:9a:1d:9f:35:
43:6d:41:77:bc:19:d8:af:9c:6a:ca:e0:85:b8:aa:
f8:4c:c5:48:b8:65:2a:55:d9:6f:54:38:e2:27:29:
1a:eb:fc:e1:f4:36:c5:e8:88:82:68:20:a3:97:a4:
be:e3:90:a3:38:23:ad:a0:2d:71:40:a4:86:33:e7:
4c:99:41:fa:68:e0:df:2f:c0:b5:a3:03:40:1e:98:
d2:78:ac:2c:e0:0a:84:86:ad:93:bb:82:26:25:d2:
39:38:fd:74:0d:ea:e4:66:7c:55:59:f8:9d:9b:0c:
db:2c:a5:ef:91:cf:73:27:b4:7b:52:c9:0f:d1:22:
21:fb:58:3a:63:61:aa:6c:fa:55:00:18:3c:98:2a:
af:41:8a:36:6e:de:f6:21:55:1f:8c:01:72:5c:0d:
d3:5c:b4:2d:1d:88:8a:5a:1f:4d:47:1f:a3:19:b2:
62:0c:20:f0:61:b5:f6:0b:14:87:d9:f0:3b:19:06:
70:0b:ef:72:94:8f:ac:e5:be:15:ff:e8:9e:ee:c4:
11:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:95:EA:9C:20:C6:B8:36:4A:15:F9:86:CE:00:0F:0D:71:7C:D2:83
X509v3 Authority Key Identifier:
keyid:53:24:DE:FB:AA:DE:93:E9:98:E1:3A:94:20:29:DD:59:3B:8B:2E:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UyTe-6rek-mY4TqUICndWTuLLqM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/294e84-cfc5-45a4-a5cd-33b7459975e0/1/2pXqnCDGuDZKFfmGzgAPDXF80oM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/294e84-cfc5-45a4-a5cd-33b7459975e0/1/UyTe-6rek-mY4TqUICndWTuLLqM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.212.175.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:48:90:fb:1c:db:60:bc:be:95:10:2b:89:fa:65:0b:5a:76:
36:7e:70:89:a3:7b:84:d3:14:5c:80:ec:f0:d8:1e:64:9c:f9:
f5:8a:a0:52:d5:c6:b7:db:ae:05:9f:ab:54:e1:99:4e:aa:b5:
b1:5c:c3:f9:ee:d7:de:1b:ef:03:96:dd:a9:7f:cb:39:35:36:
cc:df:ca:22:2b:b1:a7:cb:f3:dc:5e:66:3f:81:aa:41:eb:00:
cd:dd:81:55:96:67:de:c0:7f:ad:47:1b:4c:91:d9:85:36:3d:
6c:31:d9:46:38:03:91:33:57:f5:bf:0b:e4:fe:e1:8d:c1:b9:
af:06:7a:15:f4:7f:fe:10:0d:78:f4:0a:7c:23:91:f4:72:75:
50:60:9b:dd:6f:af:d2:10:38:75:a2:76:54:a9:a6:ec:04:d8:
8f:76:7b:da:e4:1c:81:f8:4d:51:ba:50:04:17:ea:51:98:de:
7c:47:1d:8d:1d:38:e2:af:86:b6:ff:88:67:cd:13:f3:3e:76:
4d:61:bb:4b:93:3d:34:e1:c2:15:fe:a1:66:c4:41:98:4c:8c:
06:0a:29:d1:b6:db:b4:c6:e6:9b:5d:1e:8c:df:39:4a:b5:7c:
5d:49:2d:73:ac:3c:d9:26:a4:26:f0:2c:15:5b:22:3e:d6:bb:
0b:ae:1f:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:16:48 2025 by rpki-client