Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/160f8f-dbab-482d-b39c-ad2fda47988e/1/X8qF0bhMKWPbX8dE-UwjbPjW5-k.roa
File: X8qF0bhMKWPbX8dE-UwjbPjW5-k.roa (raw, json)
Hash identifier: mGSvxINaCtq9xeIVETdzhJYaop6pRSZMiqhk1+y54FU=
Subject key identifier: 5F:CA:85:D1:B8:4C:29:63:DB:5F:C7:44:F9:4C:23:6C:F8:D6:E7:E9
Certificate issuer: /CN=c0e549fdceeb02912c8a8741c816806bbe19c448
Certificate serial: 01856C53C5A09DEB6984B9FA750F3723B3A3
Authority key identifier: C0:E5:49:FD:CE:EB:02:91:2C:8A:87:41:C8:16:80:6B:BE:19:C4:48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wOVJ_c7rApEsiodByBaAa74ZxEg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/160f8f-dbab-482d-b39c-ad2fda47988e/1/X8qF0bhMKWPbX8dE-UwjbPjW5-k.roa
Signing time: Sun 01 Jan 2023 07:55:07 +0000
ROA not before: Sun 01 Jan 2023 07:55:07 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29119
IP address blocks: 185.227.218.0/24 maxlen: 24
185.227.217.0/24 maxlen: 24
185.227.216.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:53:c5:a0:9d:eb:69:84:b9:fa:75:0f:37:23:b3:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c0e549fdceeb02912c8a8741c816806bbe19c448
Validity
Not Before: Jan 1 07:55:07 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5fca85d1b84c2963db5fc744f94c236cf8d6e7e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:52:54:e9:2d:df:ef:56:2b:1b:84:25:39:f2:
37:9b:ba:03:73:4b:c8:3d:03:7d:6f:76:1c:9a:5a:
87:27:4c:30:ec:64:82:27:b0:6b:e1:e0:1d:d0:09:
53:9d:5c:9d:6a:c1:5f:bf:9c:a7:e5:87:5e:2a:f4:
ed:63:5a:e9:29:25:a7:f4:92:33:68:52:e6:a6:e5:
90:d7:d1:32:08:0f:02:4d:ec:8a:09:c8:71:94:14:
3f:7e:ce:0d:b7:8e:bc:25:d9:06:3e:5e:aa:3e:42:
9f:be:f5:a2:85:b6:64:91:4c:78:9c:ad:fe:e1:08:
a3:4a:12:f1:5f:48:b1:49:82:b8:9e:1a:aa:c7:91:
b8:d2:13:64:fe:26:71:69:b5:a6:0e:57:d0:65:7a:
04:5b:a5:f6:70:cf:f1:6e:fb:82:1c:cf:06:67:9f:
77:14:68:db:99:5c:e9:8c:9a:9d:63:85:3e:7b:6d:
80:3c:72:4a:8d:67:cb:eb:c8:18:65:f2:2b:25:3f:
21:ba:6d:6b:25:a5:62:24:96:aa:d7:0d:55:aa:af:
ee:a8:17:9d:23:1d:84:1a:bd:e1:ae:aa:a3:18:97:
4a:5d:51:12:b8:cf:86:dd:9e:18:7f:5e:3f:8f:e0:
0a:76:38:c9:6d:da:36:bd:59:7d:23:6a:8c:a7:a5:
35:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:CA:85:D1:B8:4C:29:63:DB:5F:C7:44:F9:4C:23:6C:F8:D6:E7:E9
X509v3 Authority Key Identifier:
keyid:C0:E5:49:FD:CE:EB:02:91:2C:8A:87:41:C8:16:80:6B:BE:19:C4:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wOVJ_c7rApEsiodByBaAa74ZxEg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/160f8f-dbab-482d-b39c-ad2fda47988e/1/X8qF0bhMKWPbX8dE-UwjbPjW5-k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/160f8f-dbab-482d-b39c-ad2fda47988e/1/wOVJ_c7rApEsiodByBaAa74ZxEg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.227.216.0-185.227.218.255
Signature Algorithm: sha256WithRSAEncryption
7d:90:6e:4e:6b:1d:65:1d:25:4d:c5:ab:55:f8:04:a0:fd:0a:
91:4c:8e:d2:f6:30:97:82:00:90:e7:9a:81:3d:3f:e2:0a:3f:
3f:64:81:90:ef:6f:6b:cb:94:c5:2e:9c:10:91:4a:a4:73:de:
2c:0e:65:0f:6e:41:d7:10:34:8f:ac:30:4a:57:6e:38:66:4f:
4f:e0:a5:63:1e:2e:c0:97:21:91:ff:b8:cf:dc:61:db:f9:b0:
bf:ef:89:21:af:00:7f:17:89:e5:cc:0c:bf:c0:49:86:06:2c:
73:dc:42:8c:03:3e:87:ed:51:47:b2:2c:dd:d9:7b:a7:4a:7f:
7e:9b:a4:52:84:27:f7:b2:b9:41:a0:3b:4b:d1:12:d2:ca:b7:
c6:88:75:95:06:02:87:de:f2:e1:21:83:35:14:2d:4f:40:23:
a2:81:fa:a4:0a:10:22:85:c5:ce:e1:71:73:10:9f:f1:fb:d3:
1b:fc:18:ad:f8:91:96:eb:e2:cf:a8:73:eb:2d:91:ad:f9:07:
2f:df:a3:ab:6c:77:0a:a7:0f:e7:01:fc:4c:81:ce:6e:1a:e9:
ca:3f:9f:24:db:48:de:92:a1:fc:77:42:45:7e:14:2c:3f:b5:
2e:28:ca:ad:40:2b:95:e4:84:ed:9c:b5:e2:bd:bd:f0:b8:0b:
6e:95:85:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 22:03:06 2025 by rpki-client