Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/d3cce6-b47b-4d06-a30f-eb2411d212ab/1/viBpOUkGO0-uMURnA7-rAq6Nu9E.roa
File: viBpOUkGO0-uMURnA7-rAq6Nu9E.roa (raw, json)
Hash identifier: i1Va9OIVKicbIvxhZhZUPXRMLB7xU3otZFDE5XDi4pk=
Subject key identifier: BE:20:69:39:49:06:3B:4F:AE:31:44:67:03:BF:AB:02:AE:8D:BB:D1
Certificate issuer: /CN=852ece9c9a324d45c35f9559f329d8869dab53ba
Certificate serial: 097707C8
Authority key identifier: 85:2E:CE:9C:9A:32:4D:45:C3:5F:95:59:F3:29:D8:86:9D:AB:53:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hS7OnJoyTUXDX5VZ8ynYhp2rU7o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/d3cce6-b47b-4d06-a30f-eb2411d212ab/1/viBpOUkGO0-uMURnA7-rAq6Nu9E.roa
Signing time: Sat 01 Jan 2022 13:07:16 +0000
ROA not before: Sat 01 Jan 2022 13:07:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35533
IP address blocks: 194.187.148.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 158795720 (0x97707c8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=852ece9c9a324d45c35f9559f329d8869dab53ba
Validity
Not Before: Jan 1 13:07:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=be20693949063b4fae31446703bfab02ae8dbbd1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:c6:05:b3:c4:c4:3c:7e:85:7c:9b:f8:a8:b0:
b7:b0:af:54:62:c9:94:3c:8c:85:1f:f2:92:5a:59:
54:b7:4a:ee:60:91:8a:20:65:14:37:03:9e:02:a8:
5e:f2:9f:1e:3b:f5:ef:1e:76:7f:cd:86:40:7b:00:
32:67:34:25:c7:c5:a6:c8:28:70:20:ea:4f:5d:f4:
a3:62:e0:2b:2a:a1:30:6c:ca:7a:f5:d2:35:42:37:
09:41:04:ea:30:05:63:b9:fe:b8:4a:3f:4c:cb:9c:
4d:a5:9a:17:77:d2:d8:10:73:85:08:1f:5d:3f:6f:
3c:50:fc:6f:4e:e6:76:a9:bc:11:4d:f2:4d:dd:77:
e1:2d:15:57:24:75:4f:53:48:ec:09:ca:76:84:e2:
5c:13:4e:57:16:f6:2a:2e:89:ea:6d:f2:db:66:0e:
df:58:d9:20:87:48:1f:9a:ab:07:51:14:ba:1f:e9:
8f:7b:fe:91:a1:1c:9a:ec:25:68:45:ef:07:da:09:
7d:86:fb:4d:74:b0:64:e4:db:79:08:aa:4b:a5:71:
1f:c2:6d:52:1e:a7:d5:f4:5a:66:fe:53:19:60:06:
36:ff:51:0e:90:77:b8:ab:3b:48:58:fa:77:81:cc:
5e:6a:0f:dc:84:91:ea:58:fb:55:a8:17:85:b1:8f:
48:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:20:69:39:49:06:3B:4F:AE:31:44:67:03:BF:AB:02:AE:8D:BB:D1
X509v3 Authority Key Identifier:
keyid:85:2E:CE:9C:9A:32:4D:45:C3:5F:95:59:F3:29:D8:86:9D:AB:53:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hS7OnJoyTUXDX5VZ8ynYhp2rU7o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/d3cce6-b47b-4d06-a30f-eb2411d212ab/1/viBpOUkGO0-uMURnA7-rAq6Nu9E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/d3cce6-b47b-4d06-a30f-eb2411d212ab/1/hS7OnJoyTUXDX5VZ8ynYhp2rU7o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.187.148.0/22
Signature Algorithm: sha256WithRSAEncryption
0b:22:b7:52:63:3d:8c:a6:75:fd:9d:ad:fa:f2:34:2c:e0:76:
70:01:64:fd:80:0f:c5:81:c1:45:09:77:17:7f:d4:3b:5d:d3:
b3:13:66:53:3b:a3:94:f8:70:96:77:32:5f:e1:69:b7:d7:25:
e2:16:fb:4d:e1:c8:92:80:e7:18:50:fc:82:02:1e:dc:f5:83:
1a:fc:fb:e5:21:a3:e6:e6:09:b2:f5:ca:07:c6:ca:1d:c5:23:
7d:9f:8d:48:e9:05:a5:af:a8:10:4d:a2:cf:1a:e7:2f:38:e3:
db:f5:4d:e8:9a:66:58:ee:b3:8e:d8:8a:39:9a:4f:26:ce:e1:
b5:47:9a:65:f4:3c:00:1a:fe:fe:73:d5:35:cd:a0:73:8f:f5:
f5:d9:71:eb:05:a3:70:94:38:55:d0:1e:4b:17:38:cf:c2:0c:
2a:75:61:98:e2:67:54:63:69:38:04:e4:d4:6a:44:20:cd:ff:
e8:18:6f:1b:88:dd:c0:42:9c:4b:63:01:88:ca:1d:98:b3:ea:
85:ae:71:c8:0b:fd:ff:5c:39:56:8e:f6:ca:3c:82:2e:9d:b3:
a2:44:58:f5:e9:10:8c:fd:59:9b:20:97:29:10:38:8c:b7:97:
a2:79:de:47:20:50:c5:0e:57:4f:a5:fc:06:54:e4:62:70:e8:
b1:13:d9:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 14:04:03 2025 by rpki-client