Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/461b90-2e18-42f8-94b8-66d25e139364/1/2WX9ccQ3ZRHh0ZeNEtcDYvkbidk.roa
File: 2WX9ccQ3ZRHh0ZeNEtcDYvkbidk.roa (raw, json)
Hash identifier: U4gArcryWULM6SgV7OAsrIuwKWSkOKuU8i1tX5IDvok=
Subject key identifier: D9:65:FD:71:C4:37:65:11:E1:D1:97:8D:12:D7:03:62:F9:1B:89:D9
Certificate issuer: /CN=18f2f0de77f27a9d98b844550431b6880cd7368c
Certificate serial: 186549A6
Authority key identifier: 18:F2:F0:DE:77:F2:7A:9D:98:B8:44:55:04:31:B6:88:0C:D7:36:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GPLw3nfyep2YuERVBDG2iAzXNow.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/461b90-2e18-42f8-94b8-66d25e139364/1/2WX9ccQ3ZRHh0ZeNEtcDYvkbidk.roa
Signing time: Sat 01 Jan 2022 14:54:53 +0000
ROA not before: Sat 01 Jan 2022 14:54:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205939
IP address blocks: 185.145.77.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 409291174 (0x186549a6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18f2f0de77f27a9d98b844550431b6880cd7368c
Validity
Not Before: Jan 1 14:54:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d965fd71c4376511e1d1978d12d70362f91b89d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:46:8f:74:02:fa:7a:22:a2:dd:f4:30:65:68:
8c:70:32:15:5c:ad:86:c6:71:7b:6d:81:70:5f:4c:
fd:79:a6:a7:23:64:3c:17:77:bc:ac:f8:99:75:39:
25:3c:23:38:b5:83:0a:e3:7b:4c:e1:93:62:b8:74:
57:4e:38:0b:bb:37:62:af:47:9d:83:c0:6b:ed:af:
87:14:9c:5d:d9:43:52:8b:c1:bb:69:38:14:71:9f:
90:f0:f3:56:a5:08:36:3c:d5:40:ef:09:25:42:d7:
8d:b1:92:c5:e0:cb:85:2d:49:60:f6:77:b4:ed:02:
15:05:74:7d:a5:59:e1:11:98:63:ae:1f:04:7c:c9:
2b:d0:23:59:f0:11:26:24:c3:4d:26:01:69:59:2e:
ed:ab:36:75:b3:b1:ea:21:6c:f4:5f:51:cd:ed:37:
e4:58:e6:90:da:56:76:dc:2b:c9:dc:c6:5e:3f:82:
36:d6:a7:dc:49:45:fd:b9:93:21:81:14:a8:39:5c:
41:34:09:c8:e1:dc:23:93:d9:d2:55:c2:23:1e:38:
d1:9a:7a:34:c0:ae:5a:e3:aa:8f:2a:3d:79:11:71:
05:bb:38:c6:4c:5a:e6:89:7e:c7:4c:fe:5a:fd:b1:
67:3f:a5:43:1a:27:35:a0:06:2a:cd:d9:de:d6:cd:
a6:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:65:FD:71:C4:37:65:11:E1:D1:97:8D:12:D7:03:62:F9:1B:89:D9
X509v3 Authority Key Identifier:
keyid:18:F2:F0:DE:77:F2:7A:9D:98:B8:44:55:04:31:B6:88:0C:D7:36:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GPLw3nfyep2YuERVBDG2iAzXNow.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/461b90-2e18-42f8-94b8-66d25e139364/1/2WX9ccQ3ZRHh0ZeNEtcDYvkbidk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/461b90-2e18-42f8-94b8-66d25e139364/1/GPLw3nfyep2YuERVBDG2iAzXNow.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.145.77.0/24
Signature Algorithm: sha256WithRSAEncryption
44:30:11:21:9c:8f:3b:d6:a2:d2:59:90:28:0a:14:3f:0f:90:
e2:8f:a6:2b:25:f1:f8:f5:67:3b:cb:67:28:19:64:ee:4e:07:
03:73:2d:b9:cc:b8:74:a7:97:eb:9d:90:63:5f:f9:33:08:e4:
4b:51:5b:de:7d:84:6e:0a:ad:63:f2:91:a6:3c:47:f8:30:79:
81:7f:50:7c:95:eb:29:5b:6a:e6:45:a2:9f:3e:65:76:d6:6e:
57:07:ec:a1:23:1f:80:39:3b:3c:ed:6f:90:43:38:fc:56:79:
6d:ff:9c:b1:f2:a2:5d:5d:00:23:e9:85:53:68:83:7e:53:fa:
90:c7:b0:7b:de:6e:1d:4b:d3:e3:15:ac:d7:d0:17:ec:23:c1:
e3:b8:db:e3:f6:16:a2:86:0c:0b:a0:4a:8a:12:f3:53:8d:5d:
5c:80:fe:5f:e1:b9:3a:03:f9:76:6e:e9:ab:1a:db:03:9d:9d:
e8:ae:67:6c:64:01:41:6a:1a:17:0e:6a:32:0f:d1:53:60:39:
37:ba:de:1b:24:d5:dc:ce:8b:0a:be:09:ce:4f:08:0c:42:ad:
58:2f:d8:4e:65:da:5a:f5:f7:ad:54:85:f0:72:ce:2c:9d:c0:
8a:83:89:dd:0a:35:44:d5:8a:30:90:26:bd:50:8c:d7:04:59:
5c:aa:1f:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:55:44 2025 by rpki-client