Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/40db6b-da85-4c9d-a948-6521d395f132/1/dDwRwXWjAaG4Lxv6elmd0xo0dyg.roa
File: dDwRwXWjAaG4Lxv6elmd0xo0dyg.roa (raw, json)
Hash identifier: EcCCUfAURq7zyMuwtUQhqxCLcRHUQXSoYtCeuSGR6pw=
Subject key identifier: 74:3C:11:C1:75:A3:01:A1:B8:2F:1B:FA:7A:59:9D:D3:1A:34:77:28
Certificate issuer: /CN=8e747481f2c98fbb70dca8d65c23de4fca37583d
Certificate serial: 0335C8ED
Authority key identifier: 8E:74:74:81:F2:C9:8F:BB:70:DC:A8:D6:5C:23:DE:4F:CA:37:58:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jnR0gfLJj7tw3KjWXCPeT8o3WD0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/40db6b-da85-4c9d-a948-6521d395f132/1/dDwRwXWjAaG4Lxv6elmd0xo0dyg.roa
Signing time: Mon 28 Mar 2022 22:37:29 +0000
ROA not before: Mon 28 Mar 2022 22:37:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207795
IP address blocks: 193.160.68.0/23 maxlen: 24
176.118.191.0/24 maxlen: 24
185.177.78.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 53856493 (0x335c8ed)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e747481f2c98fbb70dca8d65c23de4fca37583d
Validity
Not Before: Mar 28 22:37:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=743c11c175a301a1b82f1bfa7a599dd31a347728
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:44:d9:9d:aa:b3:5e:bd:10:fd:20:06:c4:6a:
2b:7d:03:b1:62:a6:64:3f:5e:bc:b4:e8:63:20:60:
72:15:74:62:a7:49:08:b8:d1:94:a7:cc:6a:de:dc:
fd:1a:e7:85:ae:85:52:2f:97:6d:11:35:61:e2:63:
4e:77:df:b9:26:1f:7e:d6:76:18:92:8e:67:20:b8:
18:dd:cc:aa:3d:4b:4c:d0:40:5f:40:99:1d:18:95:
73:f8:e9:54:6d:77:30:c8:70:ca:5f:9f:a5:53:4e:
e2:9a:64:fb:e6:91:5b:23:74:b0:a4:78:52:09:33:
02:97:bb:d7:7e:74:a8:85:05:dd:19:a1:dc:f5:80:
9b:1d:3c:8c:df:d3:53:42:1e:b7:43:ce:ef:1a:f5:
6a:cb:13:52:12:73:de:77:bd:1d:df:d2:9a:8f:c0:
0c:83:17:1a:4a:3f:2a:60:41:fd:87:da:df:c0:4d:
77:c4:a2:53:99:80:28:57:d1:6a:32:e4:a5:7a:3d:
e7:cc:8f:f9:88:d4:de:f7:a2:2b:9a:15:3f:0b:59:
14:9b:75:6a:7c:e1:22:cc:c3:a8:61:66:ff:10:5e:
10:5b:f6:97:b1:d2:cb:3d:88:a7:f0:c9:84:ae:7f:
bd:94:e0:9a:70:5f:d8:84:3e:38:eb:08:15:e9:57:
a6:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:3C:11:C1:75:A3:01:A1:B8:2F:1B:FA:7A:59:9D:D3:1A:34:77:28
X509v3 Authority Key Identifier:
keyid:8E:74:74:81:F2:C9:8F:BB:70:DC:A8:D6:5C:23:DE:4F:CA:37:58:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jnR0gfLJj7tw3KjWXCPeT8o3WD0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/40db6b-da85-4c9d-a948-6521d395f132/1/dDwRwXWjAaG4Lxv6elmd0xo0dyg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/49/40db6b-da85-4c9d-a948-6521d395f132/1/jnR0gfLJj7tw3KjWXCPeT8o3WD0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.118.191.0/24
185.177.78.0/23
193.160.68.0/23
Signature Algorithm: sha256WithRSAEncryption
b6:1c:da:46:8b:05:b1:a3:55:06:35:a5:a9:89:07:23:30:00:
59:7d:13:8e:07:35:bc:f8:fa:62:ec:11:a4:34:e8:9e:8a:c1:
d9:a3:b8:2f:3a:d8:9b:66:c0:e9:f9:a8:0b:7a:2b:25:f7:bf:
69:c9:a3:73:66:c7:93:80:66:e2:01:38:92:e1:10:b1:ea:5a:
36:b4:8b:f9:f3:e9:fa:fa:db:ae:21:d6:f0:b6:9d:28:05:ea:
b6:4a:47:ab:79:b3:7f:b0:a8:76:99:da:b1:0c:98:a5:35:2e:
0f:82:cd:ef:ad:3b:59:27:e9:b9:e3:fe:49:42:93:3c:a0:64:
2d:56:b1:01:80:74:0a:79:ee:c2:4e:02:31:94:97:c9:a0:1c:
01:8d:93:b0:8c:5c:05:5b:83:8b:b3:29:1d:b1:bc:91:33:9d:
90:9b:b2:cf:80:db:95:02:08:75:ef:7a:80:3c:fb:0c:dc:92:
e2:33:2d:25:bd:f6:ee:59:ee:ae:68:50:33:3d:29:ee:fd:1b:
49:67:20:fe:7d:f1:11:5d:93:f7:35:ae:e2:d1:b5:ba:39:a5:
42:56:8b:70:8f:03:bf:ee:8f:19:d2:fc:3f:e3:10:ad:32:30:
e9:7b:86:7f:f2:f6:4b:58:92:df:1f:34:27:be:3f:f4:33:13:
9a:7a:6f:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 19:16:42 2025 by rpki-client