Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/10cc2c-7ea1-4cbb-84d5-e0ca4d166f1f/1/Uy5Esyay3bAXuZQ1leXYoPod52w.roa
File: Uy5Esyay3bAXuZQ1leXYoPod52w.roa (raw, json)
Hash identifier: VHfTro7rl1h8ODNOqF+qcW4cQQvf6LoeDlY+eUimi1A=
Subject key identifier: 53:2E:44:B3:26:B2:DD:B0:17:B9:94:35:95:E5:D8:A0:FA:1D:E7:6C
Certificate issuer: /CN=71e0b873cc1a78d43bb70319ffa5495057901a64
Certificate serial: 018635D9C02042854186576B9734A05D435E
Authority key identifier: 71:E0:B8:73:CC:1A:78:D4:3B:B7:03:19:FF:A5:49:50:57:90:1A:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ceC4c8waeNQ7twMZ_6VJUFeQGmQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/10cc2c-7ea1-4cbb-84d5-e0ca4d166f1f/1/Uy5Esyay3bAXuZQ1leXYoPod52w.roa
Signing time: Thu 09 Feb 2023 11:05:08 +0000
ROA not before: Thu 09 Feb 2023 11:05:08 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 268581
IP address blocks: 185.2.160.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:35:d9:c0:20:42:85:41:86:57:6b:97:34:a0:5d:43:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71e0b873cc1a78d43bb70319ffa5495057901a64
Validity
Not Before: Feb 9 11:05:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=532e44b326b2ddb017b9943595e5d8a0fa1de76c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:f7:87:13:44:51:70:43:e1:79:d8:31:3f:ad:
7d:34:fb:78:5f:ad:3d:a7:4d:68:cc:52:74:9a:2d:
2f:f7:bb:b1:91:ce:d0:1b:e4:37:ad:e3:25:87:ce:
08:2e:36:74:ec:38:a9:3d:5a:e6:a3:f4:86:36:bd:
25:09:ae:37:0e:44:97:cf:b0:22:c2:3a:0e:98:5c:
b3:ae:71:3a:e1:64:14:24:10:dc:f5:90:32:3e:e8:
4e:95:47:56:ec:0f:7f:cf:8c:61:48:4e:35:1f:8f:
1d:59:0d:2e:17:13:9c:41:6f:ec:0a:10:6c:ea:9a:
dd:60:0a:58:ec:97:9f:0f:e9:7e:a1:29:5c:a0:0b:
87:8b:29:b1:12:24:30:e2:1b:ae:5e:7e:ba:23:55:
c5:53:69:a6:b7:91:d0:96:ec:cd:8c:7b:50:87:88:
00:ad:05:5a:54:95:22:40:bb:3b:0b:a9:a6:62:ec:
de:8a:17:b0:9a:23:5b:4a:74:45:a1:0b:45:8d:18:
08:cb:0c:88:cf:05:ab:15:ea:6b:c9:35:fa:16:95:
0e:6d:0c:32:f6:c5:0c:a7:bb:84:37:33:2e:5b:2d:
41:ee:9c:55:2f:08:d9:89:c2:d5:ba:28:1b:39:06:
b0:90:18:2e:fa:26:2e:bb:82:a0:4c:94:2b:dc:33:
7d:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:2E:44:B3:26:B2:DD:B0:17:B9:94:35:95:E5:D8:A0:FA:1D:E7:6C
X509v3 Authority Key Identifier:
keyid:71:E0:B8:73:CC:1A:78:D4:3B:B7:03:19:FF:A5:49:50:57:90:1A:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ceC4c8waeNQ7twMZ_6VJUFeQGmQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/10cc2c-7ea1-4cbb-84d5-e0ca4d166f1f/1/Uy5Esyay3bAXuZQ1leXYoPod52w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/10cc2c-7ea1-4cbb-84d5-e0ca4d166f1f/1/ceC4c8waeNQ7twMZ_6VJUFeQGmQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.2.160.0/23
Signature Algorithm: sha256WithRSAEncryption
3c:64:ea:d0:32:ed:bd:0d:be:18:0b:bd:20:02:4f:f5:79:a6:
b3:3a:f2:7c:cf:5d:5b:29:d7:19:cf:8c:04:4d:02:17:e7:af:
b8:7d:96:05:4a:90:e8:3f:7f:a4:ad:95:27:88:e7:b4:63:2c:
b5:43:4a:9b:d9:95:3b:40:0f:dc:5e:18:88:f8:81:4b:dd:cf:
a9:45:13:65:06:ed:74:2e:a4:86:b5:7c:05:61:c0:59:4f:eb:
48:fe:1e:5a:03:e7:1e:a7:ea:2b:5d:ad:e9:d5:15:f2:2c:f6:
d4:41:5d:ba:00:59:cd:88:de:a5:64:71:ab:51:c2:cb:72:5a:
b5:25:d2:14:14:5f:5e:b4:03:1e:f1:0d:49:7e:7e:ec:2d:e8:
f2:de:67:b8:e1:b1:96:8f:cf:99:cb:de:eb:1a:d6:a0:bd:ba:
60:03:12:c9:12:2c:8e:77:b5:35:59:4c:c8:e5:38:c7:5e:9c:
1a:4d:44:6e:7b:97:69:a5:52:9c:4b:f4:9e:ac:da:01:ba:20:
54:27:9d:e3:e3:5a:e3:0f:8b:30:80:08:12:05:e5:8e:2d:cc:
da:2c:fe:a1:c4:40:18:9d:0f:b7:cb:0d:64:6d:c3:90:fd:3b:
7c:3f:78:e4:1e:b2:54:99:aa:a4:d7:76:bf:f7:ac:e6:9b:47:
ed:f0:1b:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:31:52 2025 by rpki-client