Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/2096e5-479f-46e2-ba65-3d6602890783/1/KEAIy_yJ3xpgN0t3ma0zRlL__lw.roa
File: KEAIy_yJ3xpgN0t3ma0zRlL__lw.roa (raw, json)
Hash identifier: vO75a3zUPKoeyzv3VDYCFJP20cc7mnlLR7FyZPus02E=
Subject key identifier: 28:40:08:CB:FC:89:DF:1A:60:37:4B:77:99:AD:33:46:52:FF:FE:5C
Certificate issuer: /CN=d185c7c60414a1d0888a01d74a2af5126094ba6f
Certificate serial: 1508B832
Authority key identifier: D1:85:C7:C6:04:14:A1:D0:88:8A:01:D7:4A:2A:F5:12:60:94:BA:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0YXHxgQUodCIigHXSir1EmCUum8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/2096e5-479f-46e2-ba65-3d6602890783/1/KEAIy_yJ3xpgN0t3ma0zRlL__lw.roa
Signing time: Sat 01 Jan 2022 10:00:39 +0000
ROA not before: Sat 01 Jan 2022 10:00:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200542
IP address blocks: 185.100.236.0/22 maxlen: 22
2a00:aa20::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 352892978 (0x1508b832)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d185c7c60414a1d0888a01d74a2af5126094ba6f
Validity
Not Before: Jan 1 10:00:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=284008cbfc89df1a60374b7799ad334652fffe5c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:27:1d:5a:55:82:9a:0f:57:65:04:34:af:6b:
f3:a0:a9:68:bf:76:c4:76:75:e2:31:7c:0c:4d:3d:
e4:4a:e8:28:44:84:ac:e2:e3:7d:e3:01:5a:d4:64:
2a:bb:89:a3:0a:bc:a0:13:58:e8:0b:7d:01:5f:fa:
39:43:e8:57:be:30:50:ed:61:69:f3:06:8c:db:ad:
cc:43:68:f3:db:ac:c7:f0:61:65:78:be:4f:a3:2c:
1c:c5:5d:95:5e:be:e5:3c:fb:81:e6:0a:92:2e:7c:
a2:f2:77:cd:c9:bf:95:d2:13:92:7e:72:f3:c0:48:
08:81:2b:bb:73:e2:ea:ed:f8:72:09:e7:7e:f5:40:
cd:d6:30:1d:e2:f5:42:57:e7:4c:7a:aa:4e:4d:06:
ae:3b:bf:a6:02:9b:e1:88:bc:8d:eb:5d:4c:08:a6:
8f:2d:83:3d:c6:e2:5e:b6:6b:0a:90:82:58:24:79:
6a:f7:5a:f6:67:d5:fe:ea:68:d1:52:9e:2d:7c:42:
50:91:49:9b:92:7c:5a:d7:61:d3:f2:2d:02:8f:74:
df:f9:f6:4b:d0:4d:21:08:f6:fd:65:68:bd:e0:36:
8d:83:8d:b2:79:2b:45:1a:52:4f:61:e5:3b:e7:a2:
02:94:ed:71:d5:3c:47:8a:12:a6:bf:20:56:28:7f:
41:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:40:08:CB:FC:89:DF:1A:60:37:4B:77:99:AD:33:46:52:FF:FE:5C
X509v3 Authority Key Identifier:
keyid:D1:85:C7:C6:04:14:A1:D0:88:8A:01:D7:4A:2A:F5:12:60:94:BA:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0YXHxgQUodCIigHXSir1EmCUum8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/2096e5-479f-46e2-ba65-3d6602890783/1/KEAIy_yJ3xpgN0t3ma0zRlL__lw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/2096e5-479f-46e2-ba65-3d6602890783/1/0YXHxgQUodCIigHXSir1EmCUum8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.100.236.0/22
IPv6:
2a00:aa20::/32
Signature Algorithm: sha256WithRSAEncryption
84:8c:d7:a6:cf:98:b6:65:74:6d:bc:38:62:d8:55:cc:36:31:
77:78:25:0d:e9:3c:c2:d7:a7:99:00:ab:64:43:94:ff:ec:e4:
83:cb:8b:09:f8:22:70:17:c0:7c:ec:c8:0b:4f:81:29:7e:7a:
41:39:f5:73:22:e1:fd:e5:e0:65:af:79:8e:6d:d7:af:c5:e6:
62:fd:db:75:8a:d7:63:60:81:8e:27:99:9b:34:06:53:de:7c:
98:ad:3f:76:a1:b6:72:7e:bc:08:b0:98:3b:7c:90:88:84:00:
47:bc:86:02:22:ed:71:0a:90:60:1e:bf:40:ef:db:e1:1e:13:
ec:ed:db:ac:14:c7:5e:6b:7d:d0:58:f3:3c:3f:a7:4e:96:82:
a3:bd:c6:74:b6:ee:01:79:ea:5b:75:d6:b2:49:3a:0c:39:71:
e3:90:f2:7f:1a:d3:58:9d:30:9e:cb:d7:bf:59:73:c7:76:9e:
2b:cb:30:05:25:35:20:93:18:12:8a:a5:8a:1b:7f:c5:42:9b:
95:56:a7:6f:6e:5c:6d:74:6f:33:79:80:30:02:8d:68:3e:a1:
9c:11:89:f5:3a:71:fa:7e:86:33:04:09:bd:b8:13:3e:99:82:
6e:7a:98:42:33:15:97:02:93:3e:3b:47:b9:a6:a6:7e:a5:6b:
d5:24:bd:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 13:12:57 2025 by rpki-client