Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/dcd690-dc34-42bc-b5e1-e07a8925cea9/1/G8jzUKEbUlLx9UTiwcUs05bek3Y.roa
File: G8jzUKEbUlLx9UTiwcUs05bek3Y.roa (raw, json)
Hash identifier: kBpMt0V1hl4kSFs/e7cwo2i6vtMoiyIi7UyXaCuVsks=
Subject key identifier: 1B:C8:F3:50:A1:1B:52:52:F1:F5:44:E2:C1:C5:2C:D3:96:DE:93:76
Certificate issuer: /CN=2d3a534c15d79e46f12610e1460832c246cee552
Certificate serial: B1F397
Authority key identifier: 2D:3A:53:4C:15:D7:9E:46:F1:26:10:E1:46:08:32:C2:46:CE:E5:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LTpTTBXXnkbxJhDhRggywkbO5VI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/dcd690-dc34-42bc-b5e1-e07a8925cea9/1/G8jzUKEbUlLx9UTiwcUs05bek3Y.roa
Signing time: Sat 01 Jan 2022 13:01:48 +0000
ROA not before: Sat 01 Jan 2022 13:01:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200845
IP address blocks: 185.188.212.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11662231 (0xb1f397)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2d3a534c15d79e46f12610e1460832c246cee552
Validity
Not Before: Jan 1 13:01:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1bc8f350a11b5252f1f544e2c1c52cd396de9376
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:a8:1e:5d:de:d8:c3:a5:0e:c4:0c:9e:54:7a:
94:a6:c2:75:4c:14:3b:85:4c:68:24:da:72:3e:ac:
ea:d9:68:07:f1:df:98:13:a3:e3:e3:33:e1:cc:23:
8e:af:03:ec:a4:76:c9:c8:a6:56:c5:6d:ba:4e:2f:
46:38:15:7a:5f:1c:15:c5:38:dc:c9:d2:d2:85:18:
77:90:23:2a:d4:c2:4e:f0:93:14:33:de:c6:79:6e:
63:4e:af:c6:d4:75:b3:e9:e5:31:48:1c:72:2e:7d:
da:8f:44:7c:bb:25:09:18:e3:9d:e5:c8:7b:a4:38:
62:4e:cc:81:09:bb:a5:d8:cc:e4:29:ae:aa:c8:da:
bb:d1:38:ef:8f:47:38:a5:3e:89:09:11:19:e1:32:
95:7f:74:9e:d1:1c:b4:b0:b8:0b:ea:ec:28:96:64:
7d:13:1d:59:29:f6:6d:37:a6:bf:a8:b2:17:81:0d:
17:58:b9:95:ed:81:17:20:45:ae:84:eb:40:c6:b2:
ca:21:21:52:85:1a:20:d2:ec:4a:db:db:8f:5b:c5:
c4:35:a6:b6:70:18:ea:93:93:e5:dd:2f:30:50:70:
84:e1:ad:2d:bd:2a:1b:24:de:bf:c7:3c:24:12:95:
fa:f8:97:95:fa:4e:e9:6d:c8:3c:da:9b:68:d0:01:
6c:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:C8:F3:50:A1:1B:52:52:F1:F5:44:E2:C1:C5:2C:D3:96:DE:93:76
X509v3 Authority Key Identifier:
keyid:2D:3A:53:4C:15:D7:9E:46:F1:26:10:E1:46:08:32:C2:46:CE:E5:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LTpTTBXXnkbxJhDhRggywkbO5VI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/dcd690-dc34-42bc-b5e1-e07a8925cea9/1/G8jzUKEbUlLx9UTiwcUs05bek3Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/dcd690-dc34-42bc-b5e1-e07a8925cea9/1/LTpTTBXXnkbxJhDhRggywkbO5VI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.188.212.0/22
Signature Algorithm: sha256WithRSAEncryption
89:8f:b8:bd:ba:d2:3a:6c:c5:a4:53:e2:8c:9e:66:ea:ac:05:
fb:56:ac:08:db:01:e4:70:f9:72:06:59:c9:a0:fb:43:18:4c:
91:cc:7d:d7:c4:d5:0b:de:8e:be:1e:ec:85:bd:b9:d4:87:62:
43:b3:3b:20:0e:86:57:b6:b9:86:e4:d6:1a:42:dd:ab:1f:3e:
59:6e:ee:01:72:60:63:7b:76:71:44:ce:91:69:b1:3c:a0:9a:
a3:9a:d8:84:8d:de:f4:b5:b3:b8:cc:b0:34:44:3c:3d:d5:1e:
6e:8a:d1:fa:f8:55:fa:c2:35:e3:3f:b2:49:39:d8:bd:88:d0:
7b:15:f9:5f:f1:e3:81:1a:66:b8:19:5a:f3:07:1b:13:aa:c1:
98:5c:68:80:7d:6d:60:4e:d6:de:ab:76:20:66:1c:96:9a:c0:
3b:24:72:6e:d6:7c:24:3c:38:aa:63:35:f5:87:30:f8:38:f0:
91:ed:13:50:3b:ee:24:c7:a8:de:05:09:32:ba:30:5d:c1:ef:
32:64:57:5b:60:ab:f9:a5:cd:e4:7c:45:21:5b:f0:01:c5:49:
e6:14:11:a4:41:0d:6c:94:90:ec:71:54:a1:ef:d3:ec:12:7f:
70:0f:23:6b:b1:e3:55:3c:ff:31:02:a3:bf:69:3c:50:a5:35:
da:fe:75:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 06:14:13 2025 by rpki-client