Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/245ec8-20a5-4ffa-ab6b-7b5e9208c0e1/1/pKR-bKRNh6ZCrN15IQnIzxacQg0.roa
File: pKR-bKRNh6ZCrN15IQnIzxacQg0.roa (raw, json)
Hash identifier: RLLlnLg4pwkP8ARFHlYoXdga4Zteiunk2kJ/jd0Btq4=
Subject key identifier: A4:A4:7E:6C:A4:4D:87:A6:42:AC:DD:79:21:09:C8:CF:16:9C:42:0D
Certificate issuer: /CN=675009ef5780d1a4f4e677e62bfa3b47febe90ef
Certificate serial: 063A636D
Authority key identifier: 67:50:09:EF:57:80:D1:A4:F4:E6:77:E6:2B:FA:3B:47:FE:BE:90:EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z1AJ71eA0aT05nfmK_o7R_6-kO8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/245ec8-20a5-4ffa-ab6b-7b5e9208c0e1/1/pKR-bKRNh6ZCrN15IQnIzxacQg0.roa
Signing time: Sat 01 Jan 2022 05:57:20 +0000
ROA not before: Sat 01 Jan 2022 05:57:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8540
IP address blocks: 185.228.32.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 104489837 (0x63a636d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=675009ef5780d1a4f4e677e62bfa3b47febe90ef
Validity
Not Before: Jan 1 05:57:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a4a47e6ca44d87a642acdd792109c8cf169c420d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:09:d1:3f:99:90:fd:7f:ff:b8:9b:5e:60:ec:
17:59:dc:d5:ad:8c:13:71:fb:a3:e6:81:d3:53:85:
99:8b:e1:96:ee:93:40:6f:be:4d:9b:46:2c:fc:35:
61:0d:38:1f:32:32:5b:af:f3:9e:90:20:66:8a:6b:
7f:c2:70:d6:18:15:59:26:95:bf:f7:a5:b1:58:9e:
0a:53:33:fa:6a:43:c2:a4:ea:e4:27:2c:92:90:0b:
b1:77:06:e3:d8:84:91:24:da:76:8a:68:54:f7:1d:
0b:e5:01:8b:dc:ec:23:20:d4:22:65:07:35:96:86:
04:28:60:13:ce:ab:e9:2f:55:39:5c:50:d8:25:cf:
72:df:2e:4b:50:53:1d:ed:85:57:67:b9:6b:0a:74:
d3:3e:04:83:5a:25:26:a5:09:5d:11:30:6b:36:9a:
e3:03:45:f5:94:b5:6d:15:af:af:83:40:fc:01:0e:
9d:05:7a:59:b5:f3:27:aa:45:64:74:0c:fd:d7:83:
2a:a8:7b:27:5a:3d:24:12:4f:10:9b:7b:c8:80:53:
1c:15:a9:b8:8e:05:53:d6:14:8b:e9:05:75:35:0c:
ca:4d:15:e4:5b:cb:f0:60:75:2a:7e:c8:cf:1b:c1:
b6:9e:de:be:12:20:5f:ca:3a:5f:25:07:43:0c:41:
08:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:A4:7E:6C:A4:4D:87:A6:42:AC:DD:79:21:09:C8:CF:16:9C:42:0D
X509v3 Authority Key Identifier:
keyid:67:50:09:EF:57:80:D1:A4:F4:E6:77:E6:2B:FA:3B:47:FE:BE:90:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z1AJ71eA0aT05nfmK_o7R_6-kO8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/245ec8-20a5-4ffa-ab6b-7b5e9208c0e1/1/pKR-bKRNh6ZCrN15IQnIzxacQg0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/245ec8-20a5-4ffa-ab6b-7b5e9208c0e1/1/Z1AJ71eA0aT05nfmK_o7R_6-kO8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.228.32.0/22
Signature Algorithm: sha256WithRSAEncryption
af:0f:87:37:90:f7:91:c4:27:54:9a:0c:f1:87:c2:0b:9f:ea:
5e:08:24:a0:2e:b3:e3:fc:03:19:44:6e:7a:9d:2a:cc:44:7c:
b4:bf:a3:87:a6:65:26:91:b9:4b:fb:94:29:51:0d:92:5f:43:
2a:dc:90:cf:fc:33:53:0c:51:0e:eb:47:1a:71:44:07:7b:e0:
a9:1b:a2:cf:83:84:0f:9a:58:54:2e:9f:3c:e9:d7:2b:45:fa:
0e:d2:81:f5:2a:94:8e:c7:cb:cd:c6:39:97:2a:91:08:a8:58:
bb:b5:8e:d9:df:f2:09:d8:be:f2:21:09:df:ce:33:5b:39:85:
79:ef:8d:69:70:d4:93:1d:b0:d5:76:16:9e:69:79:64:2c:74:
15:80:b7:23:40:cc:ca:6c:b9:65:02:2a:7f:59:80:e2:c6:5e:
85:eb:fb:64:dd:f1:a8:27:4d:ca:99:61:42:96:6d:73:98:8b:
e7:51:4d:b5:dc:1f:8f:ae:15:30:56:92:12:34:e5:a1:7d:bf:
d2:46:e1:8e:74:c8:79:04:f7:db:f6:b2:82:6d:7d:7d:23:12:
8f:bd:b3:5a:a4:70:04:fe:88:de:d5:5d:2c:6c:1e:94:5b:96:
d4:dc:a3:2f:91:ff:65:0e:fb:80:52:be:8f:18:85:63:c1:f1:
23:48:0c:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 07:24:20 2025 by rpki-client