Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/3f8cca-6b1d-4ae6-bc2a-f42e7c45935a/1/e4ClDxZZC-HgzfD6jjAt7w6H7rI.roa
File: e4ClDxZZC-HgzfD6jjAt7w6H7rI.roa (raw, json)
Hash identifier: s/lm7kNCD/Mf0FKczgw09MeHHAa4AoL+4qjfAKGabq0=
Subject key identifier: 7B:80:A5:0F:16:59:0B:E1:E0:CD:F0:FA:8E:30:2D:EF:0E:87:EE:B2
Certificate issuer: /CN=bb0a13a1c9e1dd84ede43283490be78387754a94
Certificate serial: 0194221FE0CD7B8AB76B828E65F85213E9FD
Authority key identifier: BB:0A:13:A1:C9:E1:DD:84:ED:E4:32:83:49:0B:E7:83:87:75:4A:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uwoTocnh3YTt5DKDSQvng4d1SpQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/3f8cca-6b1d-4ae6-bc2a-f42e7c45935a/1/e4ClDxZZC-HgzfD6jjAt7w6H7rI.roa
Signing time: Wed 01 Jan 2025 13:48:21 +0000
ROA not before: Wed 01 Jan 2025 13:48:21 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 208642
IP address blocks: 185.202.244.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:1f:e0:cd:7b:8a:b7:6b:82:8e:65:f8:52:13:e9:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb0a13a1c9e1dd84ede43283490be78387754a94
Validity
Not Before: Jan 1 13:48:21 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=7b80a50f16590be1e0cdf0fa8e302def0e87eeb2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:ed:1a:46:45:ac:fd:d0:9e:9a:34:c5:08:96:
73:86:f9:d5:3f:82:c9:d0:0d:e6:dd:a7:12:3b:b8:
9c:b0:dd:3f:e6:3d:e9:38:9c:d7:26:91:c4:f6:29:
6f:8f:29:a3:65:e5:62:95:f5:57:55:87:c5:08:e8:
fd:cf:7e:78:50:4b:00:e2:e6:04:1e:81:c2:60:95:
f0:86:8f:26:8f:d2:27:be:30:8c:9a:7f:a5:f1:95:
6b:84:20:21:2c:ee:e3:94:07:75:37:e4:02:f7:e1:
97:1c:ee:23:b4:a2:87:5a:2a:9d:4c:f3:64:81:4e:
ab:6a:1a:78:70:6a:ff:98:d9:43:c5:ab:7d:71:89:
9f:88:72:a9:af:c1:f2:e0:ab:8b:4d:97:df:5b:de:
a8:b4:ff:6a:8e:6a:7b:9f:ea:c8:59:6d:0d:03:7e:
19:b6:53:78:47:a4:25:f7:ae:63:33:e9:68:85:d1:
de:66:9a:63:55:67:2a:e6:4a:43:70:45:67:a6:d8:
85:4b:ec:cd:4c:81:52:75:e4:62:bf:f6:ef:00:e4:
6d:8e:4a:ac:c0:20:d1:7b:de:d4:4f:67:11:14:fe:
6f:89:8c:55:b4:d8:34:4d:0c:f5:a9:44:4f:3c:d4:
19:41:14:d1:7c:ef:c9:b3:f2:bb:f4:7d:88:00:4b:
e7:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:80:A5:0F:16:59:0B:E1:E0:CD:F0:FA:8E:30:2D:EF:0E:87:EE:B2
X509v3 Authority Key Identifier:
keyid:BB:0A:13:A1:C9:E1:DD:84:ED:E4:32:83:49:0B:E7:83:87:75:4A:94
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uwoTocnh3YTt5DKDSQvng4d1SpQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/3f8cca-6b1d-4ae6-bc2a-f42e7c45935a/1/e4ClDxZZC-HgzfD6jjAt7w6H7rI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/3f8cca-6b1d-4ae6-bc2a-f42e7c45935a/1/uwoTocnh3YTt5DKDSQvng4d1SpQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.202.244.0/22
Signature Algorithm: sha256WithRSAEncryption
31:ff:33:a8:e7:cd:02:59:6a:32:ba:28:8f:31:ac:28:df:eb:
fd:53:e3:f1:fe:df:c4:e0:5a:32:e8:96:90:5e:6c:11:aa:81:
ab:88:09:b2:ae:55:81:9f:71:df:e5:b7:ab:5c:21:83:91:79:
d4:1e:64:9e:14:67:42:0e:a3:86:db:93:9d:6d:04:f4:a8:db:
12:5b:90:31:9c:70:45:a3:1b:f4:40:d4:36:49:5e:5b:02:48:
79:a8:23:06:49:ba:d2:97:4b:14:66:53:aa:e6:62:06:39:50:
8e:97:97:a3:8e:af:d7:57:9d:67:1e:f8:a9:50:cc:8a:d3:48:
8f:3a:f6:d5:ee:32:34:69:06:35:d7:53:5c:d7:05:ad:88:8c:
38:da:a2:c5:95:9e:96:cf:9c:03:e9:62:d6:92:67:85:a3:1b:
07:10:51:bb:88:3d:ca:0b:bd:29:08:0c:2b:da:05:ae:7e:81:
09:3b:3c:a6:81:e3:71:06:0f:aa:c6:5a:84:e1:e8:1d:fd:8f:
0d:f0:95:bb:a3:6c:40:cf:d6:2f:d6:82:6a:7c:cb:87:59:55:
f1:df:ce:f3:4e:9c:a4:5c:fb:cf:25:d1:95:88:34:0b:65:47:
e2:67:95:cc:0f:45:45:1a:f6:ce:9d:76:dc:7c:7c:34:b3:2b:
1d:ca:b4:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 03:12:21 2025 by rpki-client