Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/d3cce6-b47b-4d06-a30f-eb2411d212ab/1/3vmE2nSZZJZs-Qo4siW_eNr5T84.roa
File: 3vmE2nSZZJZs-Qo4siW_eNr5T84.roa (raw, json)
Hash identifier: hxmExkY/UoQ3KnqFjWk26xsMp6NMTY8/9ls1NaOqgSo=
Subject key identifier: DE:F9:84:DA:74:99:64:96:6C:F9:0A:38:B2:25:BF:78:DA:F9:4F:CE
Certificate issuer: /CN=852ece9c9a324d45c35f9559f329d8869dab53ba
Certificate serial: 097D92D3
Authority key identifier: 85:2E:CE:9C:9A:32:4D:45:C3:5F:95:59:F3:29:D8:86:9D:AB:53:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hS7OnJoyTUXDX5VZ8ynYhp2rU7o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/d3cce6-b47b-4d06-a30f-eb2411d212ab/1/3vmE2nSZZJZs-Qo4siW_eNr5T84.roa
Signing time: Sat 01 Jan 2022 13:07:19 +0000
ROA not before: Sat 01 Jan 2022 13:07:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204259
IP address blocks: 212.110.159.0/24 maxlen: 24
185.76.83.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 159224531 (0x97d92d3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=852ece9c9a324d45c35f9559f329d8869dab53ba
Validity
Not Before: Jan 1 13:07:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=def984da749964966cf90a38b225bf78daf94fce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:39:07:28:d1:1f:e8:9d:19:e4:05:2b:71:f1:
f4:0a:32:87:42:cf:36:00:ab:ca:dc:ba:34:4f:1f:
ab:bb:b4:e3:58:9d:10:4e:b9:7d:08:4c:ae:45:c1:
aa:e3:fd:81:97:c9:ec:db:0f:64:5f:42:27:97:40:
03:72:9a:c0:7d:b3:13:c5:6b:b1:85:8a:8d:f8:4b:
9d:05:60:34:6c:e1:22:d8:c6:b3:b9:28:87:ad:ba:
4b:6c:ca:c0:c3:13:ee:cb:56:b6:b5:ab:fc:2e:99:
de:e4:41:5b:5d:03:ac:3c:f7:8d:4c:84:eb:0d:5a:
23:e3:16:2c:3b:35:bf:c3:8d:a9:28:79:78:71:1f:
ce:1a:ff:5e:18:b2:73:44:a1:54:7a:17:ea:fd:a9:
61:ec:36:b4:46:1c:fb:10:6c:4c:44:ff:a2:3a:cd:
16:b7:b2:7a:af:4e:9d:1f:78:65:8a:ad:ff:08:5f:
b9:35:19:5b:8b:d1:da:0f:37:be:09:61:9f:e0:0c:
f2:b3:50:9b:72:04:87:4c:44:8a:b3:02:d0:66:22:
bf:cd:9e:a6:7f:3f:5c:ed:61:a7:a7:69:9e:5a:c1:
04:fe:68:74:41:b1:10:5c:04:67:d1:09:95:d0:74:
31:8e:1a:65:6d:31:a8:69:30:f8:d0:f2:a2:bd:53:
09:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:F9:84:DA:74:99:64:96:6C:F9:0A:38:B2:25:BF:78:DA:F9:4F:CE
X509v3 Authority Key Identifier:
keyid:85:2E:CE:9C:9A:32:4D:45:C3:5F:95:59:F3:29:D8:86:9D:AB:53:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hS7OnJoyTUXDX5VZ8ynYhp2rU7o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/d3cce6-b47b-4d06-a30f-eb2411d212ab/1/3vmE2nSZZJZs-Qo4siW_eNr5T84.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/d3cce6-b47b-4d06-a30f-eb2411d212ab/1/hS7OnJoyTUXDX5VZ8ynYhp2rU7o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.76.83.0/24
212.110.159.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:2a:5e:33:27:61:25:c5:4b:93:67:88:11:31:70:55:2d:f8:
f3:c9:38:b2:88:a0:f5:91:24:be:11:56:b0:23:b0:58:5c:ed:
74:6a:37:93:51:5b:17:f5:c2:d6:79:d6:db:09:b4:50:83:13:
0a:92:72:66:fd:26:ef:b0:b5:ad:55:9f:84:8f:3b:0b:ac:bd:
d4:c3:7a:38:83:bd:a7:56:23:af:ff:a2:c7:b6:6f:7d:12:10:
d4:7e:b6:20:99:10:75:3c:57:ee:86:df:82:a4:6f:b7:82:8f:
80:9c:62:1b:5f:23:91:1f:6e:af:1a:63:bb:5a:f5:87:85:03:
93:f9:94:84:16:00:c3:7a:25:f7:40:51:c2:f3:db:0f:2d:33:
af:12:02:1d:8e:b7:4e:e2:78:eb:9f:4f:d7:9b:ec:cf:ce:a3:
5d:55:1f:4d:11:9e:b0:7a:fc:33:a3:db:82:a9:1b:91:34:3c:
9e:0a:c3:54:9d:18:3f:70:90:bd:d1:58:66:6a:b2:85:ef:e9:
71:ee:90:e0:b2:5e:0b:04:bb:0d:ce:03:38:e1:b5:e7:ba:ab:
39:fd:2c:d9:00:a7:61:1b:9c:68:d4:93:cd:26:6d:58:65:68:
c8:42:f8:8a:26:78:7c:56:3e:4d:2d:86:bb:5f:78:e8:58:2d:
d4:e7:ab:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 11:00:01 2025 by rpki-client