Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/4yv5thCbgk78r9SFMmR1hFyRaHw.roa
File: 4yv5thCbgk78r9SFMmR1hFyRaHw.roa (raw, json)
Hash identifier: PJfXGFZO71jtQIUOYMMTdYtEKlbTNF2GWUwHnwm5wiQ=
Subject key identifier: E3:2B:F9:B6:10:9B:82:4E:FC:AF:D4:85:32:64:75:84:5C:91:68:7C
Certificate issuer: /CN=390b67368c91b85e84888c5ed2e824d1390810bb
Certificate serial: 0456C00D
Authority key identifier: 39:0B:67:36:8C:91:B8:5E:84:88:8C:5E:D2:E8:24:D1:39:08:10:BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OQtnNoyRuF6EiIxe0ugk0TkIELs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/4yv5thCbgk78r9SFMmR1hFyRaHw.roa
Signing time: Tue 04 Jan 2022 15:34:42 +0000
ROA not before: Tue 04 Jan 2022 15:34:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 30823
IP address blocks: 85.158.59.0/24 maxlen: 24
85.237.214.0/24 maxlen: 24
185.89.78.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 72794125 (0x456c00d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=390b67368c91b85e84888c5ed2e824d1390810bb
Validity
Not Before: Jan 4 15:34:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e32bf9b6109b824efcafd485326475845c91687c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:42:56:b0:81:85:70:99:9f:47:95:64:2f:df:
19:9a:0a:3b:a2:3b:76:ab:68:cd:97:ab:c5:05:83:
03:1a:ab:14:2a:bd:2b:68:c2:0c:94:9a:f8:ea:7f:
71:1f:5f:cf:c2:df:d9:65:1d:2d:d6:88:39:86:f5:
dc:a6:25:22:79:fb:c2:a0:2b:2f:99:5f:4a:a7:b2:
75:15:52:7b:99:c9:77:0a:60:7d:51:2c:c6:86:c6:
b6:20:e6:df:4b:28:2f:62:88:ab:01:f9:36:a1:18:
db:43:57:c1:61:40:8f:8b:d2:0c:37:91:8b:8d:cc:
3c:d1:f6:e8:91:99:8a:d1:f1:be:9e:b3:f0:a9:0c:
22:7e:9f:64:32:83:0c:b1:db:be:65:e8:42:f5:d1:
56:7b:ea:28:ef:52:bf:d7:d1:c3:66:d5:fd:bd:00:
a4:c3:18:31:18:66:97:8c:fa:51:a0:e5:9a:43:3c:
42:82:98:57:99:4e:93:e9:5b:b8:42:90:21:9a:4d:
0f:5f:0d:81:8a:db:76:b8:44:48:c0:64:51:cd:18:
11:54:65:c0:c3:e0:d7:66:2f:57:39:7d:7f:ba:cb:
64:c5:f2:25:77:08:35:df:d1:9b:41:f5:c9:7f:98:
04:3e:21:0d:81:a9:53:8b:09:6a:c4:a5:31:db:a4:
1b:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:2B:F9:B6:10:9B:82:4E:FC:AF:D4:85:32:64:75:84:5C:91:68:7C
X509v3 Authority Key Identifier:
keyid:39:0B:67:36:8C:91:B8:5E:84:88:8C:5E:D2:E8:24:D1:39:08:10:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OQtnNoyRuF6EiIxe0ugk0TkIELs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/4yv5thCbgk78r9SFMmR1hFyRaHw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/OQtnNoyRuF6EiIxe0ugk0TkIELs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.158.59.0/24
85.237.214.0/24
185.89.78.0/23
Signature Algorithm: sha256WithRSAEncryption
3d:15:a9:d8:d6:d6:71:89:21:ff:4c:e2:73:dc:be:25:0f:b0:
63:29:ce:e7:3c:15:7c:41:de:83:5a:51:91:1c:dd:e2:3f:ff:
a2:24:a9:e7:32:c0:9c:53:90:61:49:3a:59:ff:b1:cf:3c:a1:
fc:35:49:0e:a4:62:13:94:16:e5:08:91:81:37:06:43:b2:1c:
86:13:51:c6:d7:a0:0a:59:cf:3c:5e:71:eb:a3:9b:b4:a3:11:
16:02:5e:7a:f3:86:7e:da:ca:c3:4c:74:28:25:b6:06:aa:b9:
51:12:aa:66:06:3c:49:65:37:3f:9b:08:ef:67:dd:9c:ea:b9:
16:f0:fd:0f:f8:22:6c:67:39:09:b6:e1:88:69:cb:2f:23:6d:
69:e4:6a:11:4b:2d:30:f8:e4:75:34:aa:fe:d9:9c:be:d3:48:
cf:09:91:f7:69:46:04:40:d2:7d:74:b5:f3:98:7f:75:71:22:
9f:90:06:15:3b:45:40:1c:73:f5:ff:e6:a8:80:67:1c:f3:ab:
29:45:d9:c5:f2:01:39:61:e8:ff:6d:74:af:f6:68:9d:73:73:
2a:d5:32:3c:ec:2e:06:0c:44:64:02:ef:c4:d8:dd:c1:05:a4:
eb:49:11:3d:ca:44:5c:d4:d0:18:1e:11:ee:e9:99:44:b3:35:
e5:8f:2a:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:22:05 2025 by rpki-client