Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/c6cdb2-ff83-491c-b396-e14de8c7f0bb/1/3ixonUrSTNJhp8fdj_7CowdmtmA.roa
File: 3ixonUrSTNJhp8fdj_7CowdmtmA.roa (raw, json)
Hash identifier: IlroX2d209KaxJx3EXydEGZE+6nMtRUmDcDK9LuMFY8=
Subject key identifier: DE:2C:68:9D:4A:D2:4C:D2:61:A7:C7:DD:8F:FE:C2:A3:07:66:B6:60
Certificate issuer: /CN=7dbba31293c95068a9f9971ac8d39fa39f1eda0d
Certificate serial: 03316517
Authority key identifier: 7D:BB:A3:12:93:C9:50:68:A9:F9:97:1A:C8:D3:9F:A3:9F:1E:DA:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fbujEpPJUGip-ZcayNOfo58e2g0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/c6cdb2-ff83-491c-b396-e14de8c7f0bb/1/3ixonUrSTNJhp8fdj_7CowdmtmA.roa
Signing time: Sat 01 Jan 2022 10:00:25 +0000
ROA not before: Sat 01 Jan 2022 10:00:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199081
IP address blocks: 185.118.125.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 53568791 (0x3316517)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7dbba31293c95068a9f9971ac8d39fa39f1eda0d
Validity
Not Before: Jan 1 10:00:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=de2c689d4ad24cd261a7c7dd8ffec2a30766b660
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:39:ad:26:f2:94:82:02:99:d4:82:f3:18:b6:
40:eb:8a:4b:b0:23:58:18:6c:3f:90:ad:3d:49:16:
8b:04:56:bf:0b:e8:07:78:3b:1b:d8:29:b3:7f:db:
bf:3b:f3:b0:77:8e:da:c0:e1:ba:cd:dd:38:f3:74:
26:94:46:c5:96:ee:12:54:99:f9:1f:e9:53:16:50:
78:c8:d0:32:1c:0b:0f:ea:a8:74:33:f1:c3:40:a5:
78:ac:a1:ab:7a:3c:21:89:b5:1d:f2:84:e4:1e:49:
47:f6:48:49:95:a7:26:bd:5f:d5:3c:b4:ab:b1:a3:
f9:9d:94:6f:d8:9c:4c:5d:c4:cb:73:06:f6:61:54:
42:28:5d:d9:ea:43:0b:7f:ce:23:37:fd:21:e3:de:
c8:70:44:5c:6e:96:62:85:e4:ef:58:23:c7:7c:96:
5d:dc:4b:6a:03:38:e3:ff:9d:8a:97:94:47:21:5f:
16:66:e7:31:16:93:ff:90:de:43:6a:e2:82:12:a8:
c9:fc:e0:1e:a1:55:d2:0c:3f:bf:bf:d2:d6:68:a9:
d7:04:ec:49:15:58:fd:fe:fd:5a:76:93:73:8e:0d:
25:cd:32:1f:fd:54:aa:a9:b5:66:1d:1f:8b:f2:43:
7e:fe:e5:fd:4b:ca:4d:51:a9:14:15:56:ab:15:49:
cd:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:2C:68:9D:4A:D2:4C:D2:61:A7:C7:DD:8F:FE:C2:A3:07:66:B6:60
X509v3 Authority Key Identifier:
keyid:7D:BB:A3:12:93:C9:50:68:A9:F9:97:1A:C8:D3:9F:A3:9F:1E:DA:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fbujEpPJUGip-ZcayNOfo58e2g0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/c6cdb2-ff83-491c-b396-e14de8c7f0bb/1/3ixonUrSTNJhp8fdj_7CowdmtmA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/c6cdb2-ff83-491c-b396-e14de8c7f0bb/1/fbujEpPJUGip-ZcayNOfo58e2g0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.118.125.0/24
Signature Algorithm: sha256WithRSAEncryption
63:1b:8c:12:a2:63:c9:c9:0f:87:ab:54:53:eb:00:7f:a6:07:
f8:13:7f:8e:9e:26:6a:0b:29:f9:7c:66:aa:67:0b:43:73:7d:
cd:00:92:de:0a:ac:a0:c5:75:95:5b:65:d2:99:da:72:7d:94:
80:04:09:53:7d:3d:17:b0:c2:23:63:f6:a0:92:b9:2f:6d:86:
b7:ad:f9:54:e7:1c:4b:7c:c9:61:a0:60:79:11:c1:08:b4:ca:
ba:4d:de:8c:d4:2c:db:83:9f:34:79:3c:d3:c0:cf:9f:82:5f:
49:64:b5:9d:fe:0e:99:9b:33:b4:f0:a2:e6:95:0d:ce:0e:c4:
d9:04:36:c7:03:64:89:51:e6:f0:c6:7f:41:6a:f4:36:5e:2c:
c3:38:66:d5:11:8d:56:b1:7a:d9:67:5e:3d:78:20:f5:94:4e:
92:da:9a:39:f8:c1:21:de:2d:a8:dc:89:0c:66:3e:4f:bb:01:
7f:5c:f7:39:3c:00:f0:f2:c4:d9:f1:7a:64:fd:d5:9d:fb:de:
3c:63:6e:c1:e0:77:5f:48:db:5e:6a:67:6c:a0:10:91:aa:27:
3d:97:e1:00:b1:87:b9:f1:74:dc:76:9a:76:87:8c:96:6f:d4:
c8:04:8e:44:2d:74:ac:51:83:87:d7:bf:b2:1b:aa:d1:04:07:
9f:da:ad:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:28:50 2025 by rpki-client