Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/aSJ_GgDUtUAlKzovUvci7p0Ifbc.roa
File: aSJ_GgDUtUAlKzovUvci7p0Ifbc.roa (raw, json)
Hash identifier: rIkpW131zSy2BO2io8kff2maBUP0rk0FsnHAKSOKdlw=
Subject key identifier: 69:22:7F:1A:00:D4:B5:40:25:2B:3A:2F:52:F7:22:EE:9D:08:7D:B7
Certificate issuer: /CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Certificate serial: 01942747C70F2BC4263C1B02F10659E62A17
Authority key identifier: B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/aSJ_GgDUtUAlKzovUvci7p0Ifbc.roa
Signing time: Thu 02 Jan 2025 13:50:02 +0000
ROA not before: Thu 02 Jan 2025 13:50:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 1004
IP address blocks: 85.202.160.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:47:c7:0f:2b:c4:26:3c:1b:02:f1:06:59:e6:2a:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Validity
Not Before: Jan 2 13:50:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=69227f1a00d4b540252b3a2f52f722ee9d087db7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:88:35:5d:83:03:97:96:72:de:d0:a4:0b:63:
7c:38:c2:8d:7b:f5:73:f2:50:d0:b7:3d:0d:92:6c:
ec:4a:74:df:d6:b4:b5:0f:97:46:cf:6d:fc:06:a3:
93:84:f0:9e:8e:2b:e2:80:4c:1d:6f:e7:df:8f:02:
ab:8a:57:35:70:b4:8d:69:b6:a7:1e:c8:97:b8:24:
4c:0e:39:c7:c3:7d:fa:40:0d:14:c6:03:3d:f1:81:
de:cf:67:7d:6c:20:cd:a1:61:cb:07:3e:ea:54:74:
f1:d7:cb:88:50:9b:4e:d8:8f:14:14:a5:cd:55:e3:
5f:fd:2e:43:06:2c:a7:83:92:c3:17:6e:9f:0f:63:
d6:29:9b:f6:5e:fc:d4:f4:28:3d:9a:8b:c6:dd:32:
fa:c0:69:84:5b:29:1c:6f:e2:fa:3f:99:48:4f:cc:
5c:8f:6e:da:79:75:76:b4:aa:e5:1e:3b:ac:38:90:
6a:ce:2b:8c:b5:07:bb:ef:53:59:83:e2:73:b6:ce:
a8:9e:91:b4:e4:74:59:d8:17:60:60:ea:6c:97:07:
98:f1:50:42:58:30:1b:5a:95:89:27:32:6b:de:70:
bc:fc:89:3a:22:e2:5c:2f:49:25:1b:48:f8:7c:43:
c5:41:e0:49:c5:4d:77:e0:4c:4b:73:9e:5a:5d:73:
5c:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:22:7F:1A:00:D4:B5:40:25:2B:3A:2F:52:F7:22:EE:9D:08:7D:B7
X509v3 Authority Key Identifier:
keyid:B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/aSJ_GgDUtUAlKzovUvci7p0Ifbc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/saew2N6CUdNtfIP69rx-_sc7UDQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.202.160.0/24
Signature Algorithm: sha256WithRSAEncryption
9f:5b:f3:a1:69:34:f9:b7:9f:6c:91:46:c0:c4:bf:4b:f5:79:
ff:a5:92:6b:11:e3:b8:ee:4d:db:28:3a:39:cb:59:0f:7d:07:
14:be:d4:09:1d:81:9d:39:36:17:60:99:62:99:37:a2:cd:c4:
df:d5:8a:99:00:22:5b:cb:e4:32:08:24:9c:42:6a:8e:e6:5d:
b9:93:e7:41:f5:b3:f7:c4:d1:7d:43:2a:91:de:c2:4d:ec:a9:
5e:40:bd:07:b6:f2:0a:b4:2a:64:c0:c6:b4:60:65:06:1f:2c:
59:46:1a:16:e0:0c:d2:e1:0f:22:a9:59:d3:8f:20:2a:51:9d:
d9:00:13:e7:5c:f0:f1:86:54:2b:86:03:69:e7:24:28:48:15:
ec:6a:1f:b5:df:67:33:44:b1:08:0c:23:cf:bb:5c:73:51:5c:
18:b5:a4:3c:73:b9:21:6c:9d:e1:bf:fe:b7:4f:68:48:ae:b7:
ff:a5:33:7c:e9:c2:7b:ad:7a:88:90:1f:7a:04:12:65:58:1b:
de:88:08:95:46:77:42:ad:f2:ef:dd:a8:37:e7:06:c6:ac:90:
94:68:9a:44:51:07:b6:e7:ce:e8:4f:b2:e3:f2:34:9b:85:04:
5e:ee:35:7d:af:f7:33:29:31:9c:e6:2a:30:91:70:f7:2f:ff:
bc:4d:9a:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 17:58:35 2025 by rpki-client