Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/010161-b840-4497-afbe-4bef43d3fb17/1/mHALm7hBq5s0140ybe8Xc1F8234.roa
File: mHALm7hBq5s0140ybe8Xc1F8234.roa (raw, json)
Hash identifier: imdhLSNxS5EA5IBXEn3VpwdKjS6o+zDqUc/wlGF8Pzk=
Subject key identifier: 98:70:0B:9B:B8:41:AB:9B:34:D7:8D:32:6D:EF:17:73:51:7C:DB:7E
Certificate issuer: /CN=0d9302d546e068c2fd7677d9d5200add36c8bcd5
Certificate serial: 019420D664B95678F24DD58891DF727D8D85
Authority key identifier: 0D:93:02:D5:46:E0:68:C2:FD:76:77:D9:D5:20:0A:DD:36:C8:BC:D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DZMC1UbgaML9dnfZ1SAK3TbIvNU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/010161-b840-4497-afbe-4bef43d3fb17/1/mHALm7hBq5s0140ybe8Xc1F8234.roa
Signing time: Wed 01 Jan 2025 07:48:28 +0000
ROA not before: Wed 01 Jan 2025 07:48:28 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 3320
IP address blocks: 185.97.227.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:d6:64:b9:56:78:f2:4d:d5:88:91:df:72:7d:8d:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d9302d546e068c2fd7677d9d5200add36c8bcd5
Validity
Not Before: Jan 1 07:48:28 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=98700b9bb841ab9b34d78d326def1773517cdb7e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:c2:1b:7d:03:dd:96:0c:ef:25:bc:79:a9:dd:
6d:69:0d:75:49:b6:1a:50:58:f8:ef:9d:a4:cf:57:
e8:84:3d:cd:8f:97:7e:96:eb:e8:d6:95:ca:06:29:
4c:7f:80:4d:18:bf:b4:1e:72:59:54:da:73:5e:01:
92:fb:ea:3b:29:8f:c9:00:74:cf:c6:e2:12:b3:4b:
61:c6:40:e7:30:9c:41:5a:0c:f5:6c:f3:4c:3e:5c:
e5:a4:17:6d:29:1c:c8:15:89:b9:52:44:be:81:69:
54:00:8c:25:69:bf:e0:7c:48:6a:a6:7e:70:60:6d:
22:49:7c:97:6c:36:8a:db:8e:60:6f:95:b3:57:96:
3e:c6:01:55:af:13:4c:5c:b0:34:df:e9:4f:85:4f:
0b:0c:7f:39:97:64:d1:ea:7f:1f:4e:fc:83:88:a4:
ce:3e:e8:b9:b2:89:48:ab:1a:93:8a:04:4e:bc:96:
b1:b7:21:e9:6c:37:5e:33:c6:d9:01:7b:3c:b3:65:
6b:bb:29:13:83:9e:25:f0:30:b7:9a:27:f9:de:9e:
f8:83:46:6e:0b:0d:ad:61:8d:b3:2b:75:97:ff:0d:
4d:f9:dc:98:d7:8e:27:60:39:f6:f5:f3:cc:d0:f3:
21:7f:f6:88:e3:93:b4:05:bb:91:06:69:20:82:5c:
d4:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:70:0B:9B:B8:41:AB:9B:34:D7:8D:32:6D:EF:17:73:51:7C:DB:7E
X509v3 Authority Key Identifier:
keyid:0D:93:02:D5:46:E0:68:C2:FD:76:77:D9:D5:20:0A:DD:36:C8:BC:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DZMC1UbgaML9dnfZ1SAK3TbIvNU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/010161-b840-4497-afbe-4bef43d3fb17/1/mHALm7hBq5s0140ybe8Xc1F8234.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/010161-b840-4497-afbe-4bef43d3fb17/1/DZMC1UbgaML9dnfZ1SAK3TbIvNU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.97.227.0/24
Signature Algorithm: sha256WithRSAEncryption
21:46:15:38:ae:f7:12:52:61:31:e5:2d:36:f3:cd:2e:7a:14:
fc:7d:d7:25:b6:93:dd:3e:5e:8d:a8:db:24:af:08:58:04:38:
82:1f:f6:c9:bd:e0:36:c2:cc:04:b9:8f:4f:4a:3b:5a:7e:df:
15:21:b9:97:e8:0b:67:82:6d:71:6f:81:fd:40:fe:4a:f2:68:
cc:14:b6:b6:76:2b:a2:bc:1e:f0:0d:e6:f2:f6:8c:2a:2b:25:
91:ef:16:ea:03:26:4a:67:54:0e:5e:fd:f2:e2:72:56:46:7e:
0d:a0:73:33:f8:41:d8:de:36:d3:ae:96:6a:97:6a:8b:6f:7d:
8e:b0:3c:4a:7a:c5:7b:5f:ad:55:0a:8e:1a:3f:34:c1:da:d4:
9e:c9:73:be:93:fc:04:d5:28:50:d5:3b:26:3e:71:de:f0:9e:
0c:7c:5e:fb:fe:79:fb:f3:16:7d:1b:d8:4c:4a:88:42:32:dd:
03:11:45:c4:9f:69:ba:82:23:d5:78:87:aa:e3:51:d4:a5:2a:
68:cb:e7:73:e3:25:a8:3a:2d:7f:65:6a:7e:2f:be:99:30:4f:
e0:0f:52:b2:5a:d8:af:1d:ab:9f:34:c8:1f:92:f3:7a:3a:91:
04:d9:cd:d2:05:55:ba:92:51:23:21:4c:bd:32:98:8f:6b:38:
9f:23:84:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 20:32:27 2025 by rpki-client