Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/6730b8-83a5-44b4-92e3-ad826a496acf/1/gO0H8sk3rMPw23n4Xk3pbeIfFkc.roa
File: gO0H8sk3rMPw23n4Xk3pbeIfFkc.roa (raw, json)
Hash identifier: BR/DxLn+QJNtl6r7rGhKh8R6LXna6HBxDNnFzDevZoE=
Subject key identifier: 80:ED:07:F2:C9:37:AC:C3:F0:DB:79:F8:5E:4D:E9:6D:E2:1F:16:47
Certificate issuer: /CN=ffd2361172862836b71c9ded3cd247616a9ceedf
Certificate serial: E12B94
Authority key identifier: FF:D2:36:11:72:86:28:36:B7:1C:9D:ED:3C:D2:47:61:6A:9C:EE:DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_9I2EXKGKDa3HJ3tPNJHYWqc7t8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/6730b8-83a5-44b4-92e3-ad826a496acf/1/gO0H8sk3rMPw23n4Xk3pbeIfFkc.roa
Signing time: Sat 01 Jan 2022 02:55:38 +0000
ROA not before: Sat 01 Jan 2022 02:55:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212667
IP address blocks: 188.95.71.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14756756 (0xe12b94)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ffd2361172862836b71c9ded3cd247616a9ceedf
Validity
Not Before: Jan 1 02:55:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=80ed07f2c937acc3f0db79f85e4de96de21f1647
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:b4:61:4e:e0:bc:4c:31:91:32:99:61:69:da:
b2:a1:2b:cf:a0:92:19:d6:90:6e:29:52:ba:e9:ad:
b1:24:07:e0:4f:02:f9:fa:7f:aa:66:68:dc:81:70:
04:71:7d:5f:24:f3:c0:6c:23:14:59:41:f5:f4:fd:
d0:4e:d9:9f:85:4f:0e:b9:82:eb:c5:46:d3:9d:1e:
7c:dc:aa:1a:d7:ae:4b:13:55:a1:38:0b:75:25:d5:
84:e3:93:fa:85:ef:fb:0a:4f:1c:36:ca:b6:69:0a:
4f:de:b9:31:92:63:f4:f9:7d:66:e4:dd:c0:30:fe:
57:c4:1e:42:20:5c:99:b3:be:fe:17:08:1e:95:d0:
42:d7:02:fc:60:9a:d6:f4:76:97:0a:8a:65:92:1f:
18:fe:ad:6d:13:04:84:e1:d3:d7:24:ac:fd:f7:7d:
ea:64:0a:b1:f8:b8:b0:e0:52:04:d2:84:e1:ef:cf:
34:7f:62:cc:d7:79:9e:ed:fe:51:ab:34:69:e1:f4:
91:6d:ef:2f:99:c7:15:84:98:94:97:a8:a0:05:b1:
15:78:c8:4d:a1:ac:53:6a:a8:fe:5a:e4:d7:7b:bc:
3d:b8:d8:dc:82:5f:96:ff:53:1d:c5:f3:53:d4:d4:
c5:d9:65:0d:32:cd:cf:7e:85:aa:69:7e:64:b3:30:
8d:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:ED:07:F2:C9:37:AC:C3:F0:DB:79:F8:5E:4D:E9:6D:E2:1F:16:47
X509v3 Authority Key Identifier:
keyid:FF:D2:36:11:72:86:28:36:B7:1C:9D:ED:3C:D2:47:61:6A:9C:EE:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_9I2EXKGKDa3HJ3tPNJHYWqc7t8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/6730b8-83a5-44b4-92e3-ad826a496acf/1/gO0H8sk3rMPw23n4Xk3pbeIfFkc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/6730b8-83a5-44b4-92e3-ad826a496acf/1/_9I2EXKGKDa3HJ3tPNJHYWqc7t8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.95.71.0/24
Signature Algorithm: sha256WithRSAEncryption
ab:bd:b0:ba:25:67:2b:81:fa:22:b3:ae:3e:43:69:bb:a5:e4:
86:15:dc:e7:1c:bf:ca:3b:52:f6:71:f7:79:26:25:b8:7c:a2:
91:3c:a7:ac:b5:7d:38:91:59:e1:78:d1:90:30:a0:fe:a9:2f:
00:da:4e:db:a3:e5:00:e0:13:2d:ef:79:4e:17:8d:06:05:89:
28:7c:ce:e6:fe:4a:6b:7f:84:ba:97:22:3f:b4:eb:25:20:20:
74:9e:f2:fb:70:57:17:ed:7d:62:dc:9b:d8:f2:80:49:19:ab:
40:f7:b1:7b:fc:5c:87:1b:dd:3c:7e:b8:e4:d3:a1:7f:4f:89:
66:e4:d4:da:b1:bb:da:a2:50:79:ab:a0:83:ab:4e:65:39:db:
2f:45:d4:86:14:fa:7f:98:4a:de:61:c8:24:4b:78:a5:1e:3e:
7e:63:65:9f:59:ec:a9:11:42:7c:f2:0b:aa:fa:69:fa:20:80:
af:c3:59:f3:ba:f2:5c:be:e8:20:8b:ac:44:8b:f3:24:8d:51:
e6:9f:3b:26:0a:89:1b:52:70:f1:6b:4b:fa:ef:1d:e8:99:e6:
d2:cf:a9:20:87:5d:fd:e6:9c:72:7a:14:e3:15:30:b4:af:b3:
57:ef:3f:80:df:5c:b4:77:5e:91:06:3f:aa:fd:a1:8f:59:23:
19:24:fe:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:56:17 2025 by rpki-client