Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/a8007b-08ce-4af4-a383-c4a52dcee23d/1/IoyV0pScj5plzw90C905xN9AWZ4.roa
File: IoyV0pScj5plzw90C905xN9AWZ4.roa (raw, json)
Hash identifier: pTkSICT1dhW5mUzleQMPj+Qy1aJ8IeS7lWEsn/VdfuA=
Subject key identifier: 22:8C:95:D2:94:9C:8F:9A:65:CF:0F:74:0B:DD:39:C4:DF:40:59:9E
Certificate issuer: /CN=df798581e73704ee38c9be15e72370f176c60311
Certificate serial: 28B2CD
Authority key identifier: DF:79:85:81:E7:37:04:EE:38:C9:BE:15:E7:23:70:F1:76:C6:03:11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/33mFgec3BO44yb4V5yNw8XbGAxE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/a8007b-08ce-4af4-a383-c4a52dcee23d/1/IoyV0pScj5plzw90C905xN9AWZ4.roa
Signing time: Tue 24 May 2022 10:57:13 +0000
ROA not before: Tue 24 May 2022 10:57:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207680
IP address blocks: 185.128.83.0/24 maxlen: 24
185.128.82.0/24 maxlen: 24
185.128.81.0/24 maxlen: 24
185.128.80.0/22 maxlen: 22
185.128.80.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2667213 (0x28b2cd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=df798581e73704ee38c9be15e72370f176c60311
Validity
Not Before: May 24 10:57:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=228c95d2949c8f9a65cf0f740bdd39c4df40599e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:b5:d8:2a:a4:96:7d:63:4d:dd:fb:8e:52:a0:
e9:ad:95:9f:d4:32:6b:90:66:f0:c7:1c:83:29:bd:
c2:34:e8:f7:ad:23:9e:25:6e:af:15:46:70:d6:c3:
43:ba:d6:0b:75:86:4c:1e:e9:86:1c:fc:21:13:93:
83:b1:e0:e2:8d:94:5d:f1:42:4b:e9:66:1f:fb:32:
8c:73:23:e2:52:f3:b3:bd:3d:2c:8c:20:eb:68:6b:
40:f6:53:57:a6:95:7b:5f:64:5a:85:d9:fd:86:2e:
35:89:5a:f0:57:1d:fb:68:1a:6f:ea:02:e4:f2:08:
1f:5b:c0:cb:c7:b2:75:2b:9c:7d:b3:d7:ea:fb:d4:
08:30:f4:04:1e:4b:14:5d:c8:2b:63:71:c2:dd:70:
db:9f:3d:24:ca:0e:6f:13:02:da:b9:92:ee:87:60:
d0:95:7c:62:11:5b:1c:51:50:83:75:a9:e0:b1:b4:
fa:c4:4c:39:a2:2f:b5:ac:8c:61:54:59:49:b8:13:
15:80:64:ec:09:cb:10:46:af:9d:cc:d3:27:37:06:
cb:3c:96:6f:ed:62:32:82:f9:f8:74:94:57:6a:d2:
51:d4:b0:2d:6a:59:ed:75:1f:fb:23:61:d6:0c:a5:
be:d3:e2:3a:c5:be:76:70:a7:66:10:7d:ca:83:08:
55:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:8C:95:D2:94:9C:8F:9A:65:CF:0F:74:0B:DD:39:C4:DF:40:59:9E
X509v3 Authority Key Identifier:
keyid:DF:79:85:81:E7:37:04:EE:38:C9:BE:15:E7:23:70:F1:76:C6:03:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/33mFgec3BO44yb4V5yNw8XbGAxE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/a8007b-08ce-4af4-a383-c4a52dcee23d/1/IoyV0pScj5plzw90C905xN9AWZ4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/a8007b-08ce-4af4-a383-c4a52dcee23d/1/33mFgec3BO44yb4V5yNw8XbGAxE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.128.80.0/22
Signature Algorithm: sha256WithRSAEncryption
4b:b8:d1:57:16:50:34:2c:f0:a2:48:07:cb:83:e6:9c:a8:84:
96:89:37:f7:c9:30:5b:1e:08:c5:3b:6e:77:f7:87:de:67:0c:
54:de:e7:da:6a:19:15:2a:3f:2a:8c:10:be:ec:4a:3d:1d:fe:
26:81:04:32:a0:8b:f4:5e:94:8e:cf:36:a0:88:52:05:2d:f9:
06:25:5e:82:83:26:61:47:be:1e:3d:3b:96:2c:42:50:a4:e3:
2b:b2:b5:bf:0c:d4:1b:28:d1:be:8c:37:05:22:3e:af:1c:6c:
66:d2:94:ad:2c:7f:18:d8:3b:6c:1a:d5:ac:98:92:54:8e:70:
b9:fc:a7:c1:cd:46:45:49:c7:bf:65:ab:e5:ae:62:f0:05:1a:
33:12:89:3c:da:57:b5:ca:ad:f0:a9:47:5d:35:12:c0:f0:32:
b9:75:4b:50:40:0e:1a:0b:57:9e:81:71:1d:f8:10:f8:a5:06:
ec:36:1a:f6:1a:aa:1e:ef:66:84:b1:3b:17:c3:11:3f:7e:f2:
7c:3b:77:68:2c:c7:57:85:d3:dc:f7:09:9c:6a:c0:0f:b9:c9:
4e:6e:72:29:f1:24:91:86:00:60:19:d0:e0:07:79:51:fc:64:
02:a5:07:25:4b:b9:cb:ce:11:b1:3a:a1:ed:75:5f:e8:d9:04:
a8:2b:62:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 10:21:46 2025 by rpki-client