Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/ab4f87-7569-47e1-9006-604378e7173f/1/9x1VwYP2Kz3Ldrw1Hn1wPPcuZcw.roa
File: 9x1VwYP2Kz3Ldrw1Hn1wPPcuZcw.roa (raw, json)
Hash identifier: PEVoUJdGKqWV1WFm7Z2ZXbbC3aLRlJcLLTWnpjjXXjg=
Subject key identifier: F7:1D:55:C1:83:F6:2B:3D:CB:76:BC:35:1E:7D:70:3C:F7:2E:65:CC
Certificate issuer: /CN=3f3195f47084c8b0c670d03f7ee7b516cf804c5c
Certificate serial: 013F68
Authority key identifier: 3F:31:95:F4:70:84:C8:B0:C6:70:D0:3F:7E:E7:B5:16:CF:80:4C:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PzGV9HCEyLDGcNA_fue1Fs-ATFw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/ab4f87-7569-47e1-9006-604378e7173f/1/9x1VwYP2Kz3Ldrw1Hn1wPPcuZcw.roa
Signing time: Thu 05 May 2022 14:24:04 +0000
ROA not before: Thu 05 May 2022 14:24:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60475
IP address blocks: 185.241.203.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 81768 (0x13f68)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3f3195f47084c8b0c670d03f7ee7b516cf804c5c
Validity
Not Before: May 5 14:24:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f71d55c183f62b3dcb76bc351e7d703cf72e65cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:89:09:d3:6e:0d:95:8f:5c:2a:fc:47:36:a1:
75:e6:22:f5:d0:39:ff:d5:46:4e:86:15:1a:d0:ed:
21:ff:06:b5:ad:e1:5f:07:d4:bf:da:45:b8:b1:c8:
a2:07:49:88:19:66:ff:0f:c4:a4:7f:e1:c1:3d:15:
fb:5e:26:c9:ca:5c:64:ee:d5:2f:6a:da:74:16:66:
2a:a5:ef:f4:4f:46:39:cd:09:bd:45:23:cb:ed:6a:
a3:1e:f1:b8:a8:7a:b5:21:6e:6d:2d:bc:14:ae:b8:
61:3c:c7:d0:d7:bd:b4:39:c6:1a:e0:4d:84:35:08:
50:6f:d7:2f:56:38:8a:fa:7f:34:06:6d:65:33:f8:
8c:ac:8e:01:04:57:e1:5c:f1:cf:0f:6f:68:c2:df:
9c:e9:35:c5:76:91:64:41:47:4b:36:9e:cd:44:57:
f9:20:b5:de:c8:a1:1f:84:52:e8:1b:2c:19:bc:bd:
d1:c6:39:a6:25:09:e5:72:35:e3:3b:a4:8b:aa:40:
68:06:db:64:e8:12:ae:91:e1:f1:62:8b:b3:ed:35:
a9:64:cf:b6:9c:86:63:ee:8e:ae:d5:04:05:35:d2:
9f:14:e5:98:3d:88:7d:98:7b:a5:04:08:66:ce:61:
af:3e:c4:8e:25:11:8d:bf:5f:f1:60:83:a3:ce:aa:
99:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:1D:55:C1:83:F6:2B:3D:CB:76:BC:35:1E:7D:70:3C:F7:2E:65:CC
X509v3 Authority Key Identifier:
keyid:3F:31:95:F4:70:84:C8:B0:C6:70:D0:3F:7E:E7:B5:16:CF:80:4C:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PzGV9HCEyLDGcNA_fue1Fs-ATFw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/ab4f87-7569-47e1-9006-604378e7173f/1/9x1VwYP2Kz3Ldrw1Hn1wPPcuZcw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/ab4f87-7569-47e1-9006-604378e7173f/1/PzGV9HCEyLDGcNA_fue1Fs-ATFw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.241.203.0/24
Signature Algorithm: sha256WithRSAEncryption
85:46:37:27:a3:8f:ce:a2:33:5d:34:00:c0:1d:5b:0d:d1:03:
69:95:f0:19:76:55:7c:1b:e5:72:5c:7c:49:60:8a:95:cf:eb:
53:40:e9:b8:cc:71:8b:f9:62:0d:bd:44:a8:dd:1d:14:d9:a6:
f7:42:dc:41:c8:48:bd:aa:a5:a7:71:6c:ea:0f:0e:37:8f:c5:
60:7a:9b:03:b3:2d:97:69:8e:ea:1e:e2:09:d6:f2:23:7c:05:
25:ba:23:a7:63:02:6b:bd:e2:f1:ac:11:d5:3d:a7:37:95:fb:
f1:76:af:5b:22:34:29:71:8b:b4:54:12:7b:10:39:f7:1e:7f:
85:56:93:d7:ff:23:64:72:b9:f1:30:9b:93:0a:17:a8:2d:f3:
5a:cf:2e:45:d1:d5:97:62:80:e7:52:b5:15:ad:c5:69:d8:b9:
bb:ef:7e:57:58:03:fa:2d:42:ec:06:04:b8:77:c4:bf:08:97:
95:96:78:c5:4c:c4:46:e2:b3:41:f5:4f:58:ff:0c:93:76:b9:
0b:8d:eb:ea:c7:60:dd:e1:dd:86:38:02:fe:69:b3:63:81:05:
2a:d0:6f:a0:2c:b1:42:80:ab:1d:87:2d:6c:4d:4d:04:a7:d6:
57:00:20:f9:b0:de:25:e8:ed:cb:c5:b8:02:51:45:76:8b:1f:
d2:8b:58:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 16:22:25 2025 by rpki-client