Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/32c5ce-28b2-47d7-abd5-2e9d6ca08701/1/2irA9pPO4C72ix6Iqot-BR0YHrU.roa
File: 2irA9pPO4C72ix6Iqot-BR0YHrU.roa (raw, json)
Hash identifier: s+g7PAh10293brSzF8UfvjNG0c5eETNcsK4o7uvrPRc=
Subject key identifier: DA:2A:C0:F6:93:CE:E0:2E:F6:8B:1E:88:AA:8B:7E:05:1D:18:1E:B5
Certificate issuer: /CN=65865968a1d8f4f377865c913af3b9af890d7cce
Certificate serial: 10577967
Authority key identifier: 65:86:59:68:A1:D8:F4:F3:77:86:5C:91:3A:F3:B9:AF:89:0D:7C:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZYZZaKHY9PN3hlyROvO5r4kNfM4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/32c5ce-28b2-47d7-abd5-2e9d6ca08701/1/2irA9pPO4C72ix6Iqot-BR0YHrU.roa
Signing time: Sat 19 Mar 2022 11:29:47 +0000
ROA not before: Sat 19 Mar 2022 11:29:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8288
IP address blocks: 185.161.175.0/24 maxlen: 24
185.161.174.0/24 maxlen: 24
185.161.174.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 274168167 (0x10577967)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65865968a1d8f4f377865c913af3b9af890d7cce
Validity
Not Before: Mar 19 11:29:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=da2ac0f693cee02ef68b1e88aa8b7e051d181eb5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:3e:cf:58:6d:a4:54:73:fe:48:ed:0b:5f:86:
90:96:4d:02:89:09:d3:40:e7:5a:e5:46:a3:d4:59:
18:fd:e5:b9:c4:90:bb:0a:5e:17:c0:4b:35:17:19:
7e:70:67:61:12:db:6b:ee:94:2e:24:1a:a3:f6:45:
9f:fc:b2:4a:ea:ea:62:06:db:8c:2d:00:2c:bc:df:
82:99:bf:cd:7b:7e:ab:76:3d:09:58:20:6d:23:97:
ee:a7:4b:44:da:fa:8f:6f:36:81:84:ca:9b:2a:b0:
29:bc:78:0d:24:6e:5c:c0:f7:27:e6:d3:08:02:d2:
e9:fd:c8:30:9e:d1:48:2c:42:b5:9a:96:43:4b:70:
c8:93:10:56:81:54:98:04:41:a3:d0:ac:c8:96:43:
8f:ec:6a:67:ee:72:19:35:41:cd:9a:ee:5f:32:5d:
de:6a:bb:ee:cb:4b:f4:a5:c1:e5:1f:3f:fe:56:ca:
2e:59:7b:df:54:c6:1a:b6:85:89:86:c4:28:fc:70:
c3:d5:21:11:fa:e6:14:92:90:a4:fb:86:3f:2d:95:
c7:56:00:2b:72:25:e2:ff:7e:41:93:2c:28:69:62:
d3:14:db:6b:eb:41:c1:62:c3:1f:3f:31:ef:e5:16:
83:b1:3a:dc:3b:26:44:dc:13:85:39:90:bf:ea:26:
48:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:2A:C0:F6:93:CE:E0:2E:F6:8B:1E:88:AA:8B:7E:05:1D:18:1E:B5
X509v3 Authority Key Identifier:
keyid:65:86:59:68:A1:D8:F4:F3:77:86:5C:91:3A:F3:B9:AF:89:0D:7C:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZYZZaKHY9PN3hlyROvO5r4kNfM4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/32c5ce-28b2-47d7-abd5-2e9d6ca08701/1/2irA9pPO4C72ix6Iqot-BR0YHrU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/32c5ce-28b2-47d7-abd5-2e9d6ca08701/1/ZYZZaKHY9PN3hlyROvO5r4kNfM4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.161.174.0/23
Signature Algorithm: sha256WithRSAEncryption
60:52:e4:91:8c:8e:cc:f9:49:ca:50:3c:cb:fb:e9:4e:68:59:
be:9a:1b:5c:75:0c:1c:0a:09:a7:ec:a8:37:7b:69:37:d8:d1:
50:20:ba:90:4b:1a:c6:5a:30:0a:f0:43:33:ca:70:94:0e:a2:
d1:5a:a7:54:69:12:2f:15:b1:5a:be:46:9d:18:ec:fa:21:99:
a7:9a:7a:ea:ab:3e:e5:46:0a:50:0b:f2:eb:c5:1e:b2:2f:4d:
36:fd:15:33:83:1e:f4:e0:20:ab:42:b3:27:f1:81:80:ea:d1:
18:66:1f:0e:40:39:e5:aa:b0:d7:df:48:1d:25:6a:67:8b:e3:
99:fb:99:98:d0:08:3d:7b:26:da:4b:a8:67:46:a0:b5:8d:c7:
77:c8:21:36:3f:f5:59:16:7a:a5:a2:0c:c2:ab:b2:f0:d1:61:
c0:eb:67:a5:17:2c:45:c2:bd:1a:a8:b1:48:6d:ce:dc:0d:33:
8d:e7:64:39:5c:57:c7:dc:47:49:b7:54:93:b8:07:73:33:17:
29:c9:c6:c1:e4:47:8f:6f:7b:6e:85:e1:25:98:8c:03:7c:f3:
da:c7:10:da:ac:ec:94:cf:58:d3:8f:ae:7a:16:99:27:c3:22:
89:c4:94:68:91:8b:07:ae:da:8a:b0:e5:ff:7b:83:49:2c:e1:
3b:ed:4e:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:49:36 2025 by rpki-client