Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/2c293c-6df0-4112-b800-3c18bc87c65c/1/7HHbGfAVVrfnlbG4XLYxxxzlZCg.roa
File: 7HHbGfAVVrfnlbG4XLYxxxzlZCg.roa (raw, json)
Hash identifier: m6A7CyjHKkL6gH8PXhxcSDa/vIFEqpeKoBTmWtgsTRk=
Subject key identifier: EC:71:DB:19:F0:15:56:B7:E7:95:B1:B8:5C:B6:31:C7:1C:E5:64:28
Certificate issuer: /CN=8f1b7edf827db1366de571f00b4a5cfdb239cc61
Certificate serial: 1A78E58F
Authority key identifier: 8F:1B:7E:DF:82:7D:B1:36:6D:E5:71:F0:0B:4A:5C:FD:B2:39:CC:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jxt-34J9sTZt5XHwC0pc_bI5zGE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/2c293c-6df0-4112-b800-3c18bc87c65c/1/7HHbGfAVVrfnlbG4XLYxxxzlZCg.roa
Signing time: Sat 01 Jan 2022 13:00:16 +0000
ROA not before: Sat 01 Jan 2022 13:00:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34965
IP address blocks: 85.235.0.0/20 maxlen: 20
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 444130703 (0x1a78e58f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8f1b7edf827db1366de571f00b4a5cfdb239cc61
Validity
Not Before: Jan 1 13:00:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ec71db19f01556b7e795b1b85cb631c71ce56428
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:b7:ea:21:f8:72:1a:3c:86:0a:84:87:86:4c:
90:17:51:c1:38:6e:71:51:10:60:49:39:04:cd:f6:
45:4c:1d:64:5c:c9:57:52:73:60:16:6e:6d:b9:4c:
b1:ac:df:00:9f:d0:67:e3:83:3e:46:5e:ad:ce:6d:
ce:a7:1a:51:95:f6:a7:ff:7a:37:f5:0d:6d:5e:fc:
7c:81:77:3d:22:3e:b5:1b:d0:e0:98:2d:0d:76:33:
f6:e4:08:7f:86:47:1c:9b:7b:b6:35:fc:58:83:a4:
8c:95:3d:10:44:19:aa:7d:17:4b:b8:cc:94:e4:d6:
f6:77:00:8c:90:d6:65:b6:27:9d:8d:16:d6:11:cc:
13:7b:21:f6:ab:65:af:83:e5:ee:32:97:4c:a6:ef:
7d:eb:81:22:ae:3b:d2:87:af:4d:9f:56:b0:75:1b:
25:68:10:5a:e8:64:40:be:59:0e:69:16:9b:4f:2a:
00:ea:36:68:99:42:22:14:99:99:1a:39:45:b9:0e:
7e:43:26:7a:c1:a1:a4:ff:19:ed:33:53:0b:f2:6f:
44:fd:06:fa:f2:09:57:ae:9b:8f:02:ec:cf:22:e6:
0c:44:7b:d1:09:73:34:a5:57:a3:d0:79:17:56:b6:
1a:09:56:24:19:32:03:9e:da:93:1a:9f:54:7f:df:
22:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:71:DB:19:F0:15:56:B7:E7:95:B1:B8:5C:B6:31:C7:1C:E5:64:28
X509v3 Authority Key Identifier:
keyid:8F:1B:7E:DF:82:7D:B1:36:6D:E5:71:F0:0B:4A:5C:FD:B2:39:CC:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jxt-34J9sTZt5XHwC0pc_bI5zGE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/2c293c-6df0-4112-b800-3c18bc87c65c/1/7HHbGfAVVrfnlbG4XLYxxxzlZCg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/2c293c-6df0-4112-b800-3c18bc87c65c/1/jxt-34J9sTZt5XHwC0pc_bI5zGE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.235.0.0/20
Signature Algorithm: sha256WithRSAEncryption
ad:55:08:58:f5:eb:89:71:c4:67:18:37:67:f6:a9:cf:7b:5c:
63:67:14:c3:c9:67:79:27:59:2b:f0:bc:5d:90:71:ed:66:3b:
af:fe:73:6a:d1:a2:a4:8b:67:b2:6d:bc:2e:10:dd:54:28:77:
ed:6e:f1:3b:17:eb:19:26:56:30:77:28:81:f6:57:ca:d4:47:
26:ee:c2:5c:29:bd:68:63:b7:d5:22:d5:ec:09:df:7b:52:14:
e3:fc:d4:ae:3c:dd:52:b4:64:99:1b:e6:56:6b:84:86:10:9e:
39:62:73:f5:ac:10:0b:21:8f:df:0c:24:1c:35:77:b5:4a:59:
b1:2c:80:fc:5f:7d:aa:ef:e8:b7:95:38:a3:38:ed:d8:4b:d0:
5f:8e:17:67:84:9d:61:86:2a:f2:9a:2c:e6:bb:b1:49:8f:17:
11:45:f2:de:10:0b:0f:34:f7:f4:ed:07:7f:26:f1:96:f3:b4:
ee:5b:22:61:98:0e:16:41:7d:ad:0e:30:27:e3:76:54:d2:a2:
8d:1b:22:aa:52:86:96:89:b2:83:5a:cd:e3:a0:f6:e1:95:50:
6c:a7:a7:f1:41:47:96:4e:63:fb:d7:c0:f0:da:e2:5e:23:e6:
e4:91:a1:ca:5b:8e:16:5a:12:11:3d:05:3c:2d:c1:37:15:b4:
6c:65:71:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:20:48 2025 by rpki-client