Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/8b1bc2-5926-4ace-b16f-197fe8365643/1/0Djikw3J3KNJUOQtTUFANYKij6g.roa
File: 0Djikw3J3KNJUOQtTUFANYKij6g.roa (raw, json)
Hash identifier: QfGPVV76PSSkSk1Y8pNDZDGyBBsX7e/jwxhImEQyYJk=
Subject key identifier: D0:38:E2:93:0D:C9:DC:A3:49:50:E4:2D:4D:41:40:35:82:A2:8F:A8
Certificate issuer: /CN=c2d2ac1d7c9eccf5658b88f16f613d7b3e8e8c72
Certificate serial: 01856DD41341D7F243CFF82D059DF866C491
Authority key identifier: C2:D2:AC:1D:7C:9E:CC:F5:65:8B:88:F1:6F:61:3D:7B:3E:8E:8C:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wtKsHXyezPVli4jxb2E9ez6OjHI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/8b1bc2-5926-4ace-b16f-197fe8365643/1/0Djikw3J3KNJUOQtTUFANYKij6g.roa
Signing time: Sun 01 Jan 2023 14:54:52 +0000
ROA not before: Sun 01 Jan 2023 14:54:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44547
IP address blocks: 185.250.241.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:d4:13:41:d7:f2:43:cf:f8:2d:05:9d:f8:66:c4:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2d2ac1d7c9eccf5658b88f16f613d7b3e8e8c72
Validity
Not Before: Jan 1 14:54:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d038e2930dc9dca34950e42d4d41403582a28fa8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:a1:4a:34:75:95:34:91:88:15:49:e1:6d:77:
14:15:8e:14:4c:f9:71:33:88:c1:e7:bc:cc:d1:a2:
fd:05:ed:2c:40:75:09:2b:7e:88:36:e0:38:f2:8d:
31:1a:8d:89:b8:85:a3:9d:b1:e5:fd:d3:13:7c:b2:
4e:6b:34:e1:5d:b0:4a:f7:bb:25:2b:eb:7c:20:63:
7f:95:1e:26:dd:c0:97:78:1c:16:95:eb:ca:22:26:
61:f5:be:c0:2e:14:5a:b0:6b:a7:63:c3:af:fd:47:
dc:8b:be:fb:18:ce:58:49:f8:b4:67:6d:5b:c8:57:
da:21:b0:a6:be:a2:e5:24:34:6d:c9:25:4d:3c:1d:
82:21:9f:c6:cf:d6:21:f9:ef:c0:e1:ee:a8:78:ab:
9f:d6:35:94:77:db:ec:a2:00:a1:ac:fa:f5:2e:bf:
2f:c0:5f:ce:34:94:3e:53:d5:3c:3f:85:21:c8:26:
77:d5:f8:b4:c0:1a:02:af:72:82:4d:b6:4d:46:d5:
1c:0d:18:a1:51:d0:4c:52:12:05:5c:ad:13:7e:ae:
8a:d4:3c:61:33:73:54:0a:27:b2:9f:d1:f4:e1:02:
70:6d:14:50:a5:29:95:d0:df:0b:f1:01:4d:88:ad:
fe:72:97:f3:3a:2d:b7:ff:e6:ea:76:b7:b0:f6:21:
21:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:38:E2:93:0D:C9:DC:A3:49:50:E4:2D:4D:41:40:35:82:A2:8F:A8
X509v3 Authority Key Identifier:
keyid:C2:D2:AC:1D:7C:9E:CC:F5:65:8B:88:F1:6F:61:3D:7B:3E:8E:8C:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wtKsHXyezPVli4jxb2E9ez6OjHI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/8b1bc2-5926-4ace-b16f-197fe8365643/1/0Djikw3J3KNJUOQtTUFANYKij6g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/8b1bc2-5926-4ace-b16f-197fe8365643/1/wtKsHXyezPVli4jxb2E9ez6OjHI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.250.241.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:3a:f2:47:3f:d2:d1:b5:c7:1d:ca:99:40:54:b8:bc:63:e9:
c4:76:98:76:67:30:2b:64:b5:db:02:57:ae:be:9c:71:31:80:
96:da:c0:e2:c7:64:d4:e6:1f:b9:6e:73:83:34:2f:56:57:f0:
e9:84:3d:b5:15:51:27:88:27:06:32:5f:e2:81:79:3f:8d:84:
9b:b7:55:1f:cf:18:26:de:4a:26:54:90:fb:45:6d:38:18:fb:
98:29:0a:a7:9f:e9:61:fa:56:ad:89:9b:4c:66:a7:4e:91:2a:
fa:b9:df:42:f5:68:3e:79:93:53:60:99:cf:ad:9a:cc:b2:f7:
02:03:0b:06:15:19:8f:c3:38:4d:31:00:bc:93:ca:ba:3b:21:
e0:d0:64:1a:20:a5:2f:4d:75:d0:ed:22:6f:7e:e5:36:b3:69:
54:40:03:4f:38:49:fd:0f:84:c7:62:89:c4:82:26:3a:fc:be:
04:f8:f5:de:f1:af:b6:f9:b5:e7:69:8d:f5:30:41:af:81:94:
0e:76:da:cd:b9:81:6a:ea:23:4c:92:d2:97:de:7d:c8:67:e2:
1f:5c:88:90:da:4f:00:91:f0:25:b1:9b:70:95:51:af:1b:63:
c8:73:8d:8e:d8:80:ab:25:a1:50:39:39:bc:76:8e:b6:88:77:
19:b6:ad:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 03:31:35 2025 by rpki-client