Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/cfe94b-9448-4f82-b440-8bb2f26914a5/1/76DQYeawMtyLh65FX_hwJaz7KWA.roa
File: 76DQYeawMtyLh65FX_hwJaz7KWA.roa (raw, json)
Hash identifier: nMitekSI2X1HK4HbT1EqupjDSR6SQ6ip4CB7998sM4U=
Subject key identifier: EF:A0:D0:61:E6:B0:32:DC:8B:87:AE:45:5F:F8:70:25:AC:FB:29:60
Certificate issuer: /CN=09ed2bca014c2c44e90b844de89426223c390cf6
Certificate serial: 11F668
Authority key identifier: 09:ED:2B:CA:01:4C:2C:44:E9:0B:84:4D:E8:94:26:22:3C:39:0C:F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ce0rygFMLETpC4RN6JQmIjw5DPY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/cfe94b-9448-4f82-b440-8bb2f26914a5/1/76DQYeawMtyLh65FX_hwJaz7KWA.roa
Signing time: Thu 06 Jan 2022 18:06:20 +0000
ROA not before: Thu 06 Jan 2022 18:06:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 185.161.76.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1177192 (0x11f668)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09ed2bca014c2c44e90b844de89426223c390cf6
Validity
Not Before: Jan 6 18:06:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=efa0d061e6b032dc8b87ae455ff87025acfb2960
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:1d:55:9c:54:d5:7a:95:4c:7c:08:9f:19:21:
8c:07:4a:e3:9a:49:b6:4e:47:6c:b7:92:71:a7:9e:
9c:61:c2:ed:d7:9c:32:68:3e:0e:8b:cb:52:82:04:
c7:b7:a4:06:09:e7:72:e9:98:37:e3:9a:02:78:5b:
a0:4c:29:8e:94:bc:ab:6b:16:bc:c5:12:56:c5:9b:
34:bb:06:66:3a:6b:ec:23:9e:f0:5b:b7:33:a4:93:
12:dd:9c:45:fd:0d:16:3d:0e:1c:51:2f:01:ba:12:
95:84:2f:c2:ab:46:10:38:c4:76:5e:51:2c:1b:0d:
2a:ea:4b:30:64:f1:c4:4e:80:9f:64:21:6b:95:ae:
59:d8:95:b4:76:20:fc:ac:46:b7:25:fd:1b:a0:11:
23:c4:de:bb:20:5a:96:b4:ec:7e:1a:89:c2:3b:70:
2a:3b:6b:3c:2f:f8:30:05:f9:2f:8e:e1:b8:28:7a:
08:0b:e3:6f:c0:dc:43:21:b4:5f:40:89:8e:b7:d6:
f8:7c:68:3b:3b:18:ea:2c:61:10:b4:68:7c:e4:ca:
07:93:e6:21:26:bb:de:78:05:dc:f9:ab:e6:31:44:
03:bd:70:fb:fa:99:3b:73:39:81:09:ba:fc:3c:5f:
c0:7d:5a:81:4d:f9:3f:21:4f:08:01:a6:e6:40:83:
d4:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:A0:D0:61:E6:B0:32:DC:8B:87:AE:45:5F:F8:70:25:AC:FB:29:60
X509v3 Authority Key Identifier:
keyid:09:ED:2B:CA:01:4C:2C:44:E9:0B:84:4D:E8:94:26:22:3C:39:0C:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ce0rygFMLETpC4RN6JQmIjw5DPY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/cfe94b-9448-4f82-b440-8bb2f26914a5/1/76DQYeawMtyLh65FX_hwJaz7KWA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/cfe94b-9448-4f82-b440-8bb2f26914a5/1/Ce0rygFMLETpC4RN6JQmIjw5DPY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.161.76.0/24
Signature Algorithm: sha256WithRSAEncryption
49:d0:43:72:33:97:11:31:cf:51:60:5f:2b:58:5a:4d:b4:3e:
d5:2a:ab:66:90:f1:e6:b9:86:9f:2c:1a:7d:82:d7:42:f0:65:
ed:8c:f2:a7:58:6e:05:f0:64:99:03:cf:31:3d:56:68:f5:a3:
27:eb:7f:8f:cc:a4:d0:5c:d3:b7:ad:07:37:62:c1:9c:7d:a8:
f1:f5:47:da:ad:5f:58:98:97:5a:36:ec:1c:64:4b:8d:49:19:
6d:dd:f4:64:fb:d4:28:57:69:23:de:10:0c:e6:30:ba:fb:a8:
28:8e:ed:56:10:40:14:d3:d0:dc:2b:e1:1c:a2:0b:f0:36:55:
da:19:c3:f6:4e:1d:9d:a8:bf:c6:c4:9d:b1:66:24:10:1b:f0:
37:49:00:d2:73:9c:bc:97:2b:c4:4f:d7:e4:a9:52:6c:c6:ba:
fe:54:12:aa:b2:4e:df:34:ab:01:7a:9d:a9:c4:76:60:a7:eb:
3e:5c:4c:ab:db:c5:2f:37:39:7f:b8:76:a4:96:ab:51:dc:9e:
7b:37:2b:ac:2e:b6:c4:00:bf:0e:ab:91:26:04:13:c8:1a:59:
75:cd:79:21:50:39:9f:fe:38:c0:4a:94:a7:e0:82:18:68:ba:
30:c2:fd:9a:76:c1:a6:97:36:7f:b6:fa:9b:64:5f:37:e3:73:
4f:83:4c:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:25:37 2025 by rpki-client