Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/294e84-cfc5-45a4-a5cd-33b7459975e0/1/FbwhyIw5lS4Aijaz0Y1Hyt0C1zE.roa
File: FbwhyIw5lS4Aijaz0Y1Hyt0C1zE.roa (raw, json)
Hash identifier: bZwVxPDrCp3KtlkDnJRlRDWqaGayH5qCuKBXFwjtDGs=
Subject key identifier: 15:BC:21:C8:8C:39:95:2E:00:8A:36:B3:D1:8D:47:CA:DD:02:D7:31
Certificate issuer: /CN=5324defbaade93e998e13a942029dd593b8b2ea3
Certificate serial: 1A2FBCE3
Authority key identifier: 53:24:DE:FB:AA:DE:93:E9:98:E1:3A:94:20:29:DD:59:3B:8B:2E:A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UyTe-6rek-mY4TqUICndWTuLLqM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/294e84-cfc5-45a4-a5cd-33b7459975e0/1/FbwhyIw5lS4Aijaz0Y1Hyt0C1zE.roa
Signing time: Sat 01 Jan 2022 12:55:18 +0000
ROA not before: Sat 01 Jan 2022 12:55:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200547
IP address blocks: 185.192.212.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 439336163 (0x1a2fbce3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5324defbaade93e998e13a942029dd593b8b2ea3
Validity
Not Before: Jan 1 12:55:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=15bc21c88c39952e008a36b3d18d47cadd02d731
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:80:b3:7b:e1:4b:6e:af:5c:7c:5b:b6:f0:c0:
a5:ff:59:5e:a1:ff:28:57:ff:8d:a2:78:e8:df:2b:
c0:90:8c:2f:e9:89:08:f7:4a:dc:e5:79:f6:3c:d2:
b7:f9:a1:49:73:c2:83:0c:6a:be:11:3d:0b:76:c0:
fc:4f:0b:1c:9a:5c:df:23:09:21:b3:75:95:78:2e:
0d:bf:ef:52:a5:39:48:1e:29:52:4d:be:46:fd:4c:
d6:53:0f:a0:ad:97:9f:ce:20:62:8b:0b:47:2d:f0:
06:de:e7:19:04:a1:8a:8e:0c:14:32:53:57:f5:2c:
0b:b0:0d:b3:e4:60:2d:ef:e6:60:5f:9e:cb:96:7e:
8b:08:70:e6:00:80:0a:a6:6b:cc:69:70:8e:93:ea:
a2:63:8d:c3:45:27:71:77:6f:8f:9b:25:31:ea:ec:
25:c3:11:6b:fa:b2:53:1e:28:84:5e:b6:37:3a:fe:
7b:f0:02:b6:54:41:b3:e7:59:56:f0:c4:74:35:6e:
12:82:2e:14:6a:5b:4f:2b:6e:de:ec:02:67:aa:ad:
4c:df:07:00:bb:eb:a3:ac:18:ec:9a:f6:db:ae:bd:
32:c2:c4:98:3c:97:d6:c8:96:37:59:45:da:c4:e4:
33:5c:66:91:97:34:08:96:39:24:f2:82:87:dc:38:
3f:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:BC:21:C8:8C:39:95:2E:00:8A:36:B3:D1:8D:47:CA:DD:02:D7:31
X509v3 Authority Key Identifier:
keyid:53:24:DE:FB:AA:DE:93:E9:98:E1:3A:94:20:29:DD:59:3B:8B:2E:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UyTe-6rek-mY4TqUICndWTuLLqM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/294e84-cfc5-45a4-a5cd-33b7459975e0/1/FbwhyIw5lS4Aijaz0Y1Hyt0C1zE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/294e84-cfc5-45a4-a5cd-33b7459975e0/1/UyTe-6rek-mY4TqUICndWTuLLqM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.192.212.0/22
Signature Algorithm: sha256WithRSAEncryption
03:14:47:b0:ab:03:6d:f9:eb:9b:c0:cd:bd:37:7e:3e:22:95:
fb:8e:c0:c2:b6:4f:3f:d0:02:14:86:6f:87:a3:ad:8c:88:fa:
d0:43:ef:fa:eb:90:a0:23:de:90:84:69:85:21:a7:e6:01:82:
55:17:1d:33:1a:54:88:01:15:b4:45:36:07:bb:76:07:4d:9f:
54:96:bc:1f:8e:fe:35:f5:c8:9e:7e:b9:62:da:56:b8:8e:3b:
6f:42:ac:93:ee:2a:87:8e:d0:92:ac:86:2c:90:f7:28:c9:43:
80:a5:ef:25:2d:02:94:53:7e:d8:92:17:5b:1d:0c:d7:10:80:
ba:3c:cd:38:20:2a:36:2b:da:5a:65:9c:48:cb:06:bc:d1:fd:
a0:65:d4:3a:17:25:e0:28:78:2e:cb:87:9e:92:9d:56:3c:c0:
a9:1e:ba:51:99:c1:f4:37:3f:e1:91:44:17:18:e7:cf:ed:ec:
c4:16:e1:b7:ea:1f:14:f1:87:2b:41:0c:55:04:09:e2:34:b4:
f2:b1:36:20:c1:4c:df:7a:2a:11:13:74:a7:d6:c2:03:c3:21:
f9:48:d9:79:bf:16:76:0d:43:08:83:dc:89:38:49:12:77:ce:
10:73:1a:88:b0:04:c0:2b:00:5f:0a:2b:53:fc:ce:36:fe:83:
c1:25:44:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 16:21:25 2025 by rpki-client