Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/21f1ef-d6f5-4ad4-ad11-af4c1de0249d/1/Rw-FuYRYNxWQGO-T63-uNXzcdks.roa
File: Rw-FuYRYNxWQGO-T63-uNXzcdks.roa (raw, json)
Hash identifier: IEMgksTpbbrckBq9HZGyq7RjOgq3ux4NubyboaPdpAU=
Subject key identifier: 47:0F:85:B9:84:58:37:15:90:18:EF:93:EB:7F:AE:35:7C:DC:76:4B
Certificate issuer: /CN=77c3131201b08679481a03a494a1367cae81ea03
Certificate serial: 01856CCB110D72CC2125184BE571731285AB
Authority key identifier: 77:C3:13:12:01:B0:86:79:48:1A:03:A4:94:A1:36:7C:AE:81:EA:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d8MTEgGwhnlIGgOklKE2fK6B6gM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/21f1ef-d6f5-4ad4-ad11-af4c1de0249d/1/Rw-FuYRYNxWQGO-T63-uNXzcdks.roa
Signing time: Sun 01 Jan 2023 10:05:25 +0000
ROA not before: Sun 01 Jan 2023 10:05:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199549
IP address blocks: 185.11.132.0/22 maxlen: 23
2a03:7540::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:cb:11:0d:72:cc:21:25:18:4b:e5:71:73:12:85:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77c3131201b08679481a03a494a1367cae81ea03
Validity
Not Before: Jan 1 10:05:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=470f85b9845837159018ef93eb7fae357cdc764b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:03:35:29:a6:70:fd:77:40:26:19:42:72:ed:
63:d2:31:22:e5:ae:ce:d4:fe:12:46:87:c2:71:17:
ac:8d:24:98:36:6f:7b:88:0d:36:3a:29:ec:be:98:
2f:6a:52:03:5e:23:68:2a:7a:c4:d6:10:0e:b4:58:
a1:4d:4b:70:4b:4b:e3:6d:27:de:37:48:46:40:a7:
d9:77:43:7c:25:cd:25:9a:e0:b9:85:98:b8:8f:b5:
75:09:79:ff:65:c7:59:57:0e:de:66:d3:db:42:ba:
10:13:ee:22:ed:34:ef:43:f9:c0:d8:35:1b:f9:0b:
46:9b:56:7b:6a:e2:d6:59:71:23:e5:75:9c:23:14:
24:cc:25:d3:b8:b2:db:e8:a6:83:aa:ca:3a:2f:16:
cc:48:2c:ba:66:b7:f9:45:1a:c9:61:ec:3a:f1:aa:
d4:ef:f0:4c:79:d7:1b:6c:3d:4f:d3:33:9c:b3:25:
24:e4:94:c4:c2:ef:e7:28:4b:1c:67:8e:05:c6:27:
2e:77:4c:f2:36:fc:35:2e:45:64:1a:26:67:b4:c6:
79:07:57:e5:5b:1c:42:54:f5:cf:b2:d3:06:77:22:
ed:5a:d2:ee:37:2f:8f:20:ec:f0:45:ef:bf:97:39:
42:db:35:48:9b:65:be:c5:48:14:bd:02:fe:48:83:
a1:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:0F:85:B9:84:58:37:15:90:18:EF:93:EB:7F:AE:35:7C:DC:76:4B
X509v3 Authority Key Identifier:
keyid:77:C3:13:12:01:B0:86:79:48:1A:03:A4:94:A1:36:7C:AE:81:EA:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8MTEgGwhnlIGgOklKE2fK6B6gM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/21f1ef-d6f5-4ad4-ad11-af4c1de0249d/1/Rw-FuYRYNxWQGO-T63-uNXzcdks.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/21f1ef-d6f5-4ad4-ad11-af4c1de0249d/1/d8MTEgGwhnlIGgOklKE2fK6B6gM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.11.132.0/22
IPv6:
2a03:7540::/32
Signature Algorithm: sha256WithRSAEncryption
40:74:97:d5:92:cb:c7:3d:4b:7a:ac:8e:bb:7d:03:98:34:45:
50:88:71:23:01:66:f9:d1:db:2d:aa:0e:b9:71:c5:2e:26:d3:
15:20:e8:0f:0d:c7:72:69:10:75:c2:12:d9:ae:d1:7f:b0:28:
2e:1f:33:2e:48:eb:ce:c0:f1:ff:93:6b:2d:46:06:cb:92:f3:
8e:51:fa:17:a5:ae:3e:a1:65:bf:9c:a3:46:f4:f2:98:5a:49:
90:f4:89:59:4e:e2:5d:8e:63:d6:d2:b1:e1:30:ab:7f:4b:98:
5d:f1:21:8f:95:f1:29:d1:30:3f:45:83:83:d1:6d:e5:63:b8:
22:48:bd:e2:da:93:50:c1:85:a8:24:92:7d:b9:9b:0a:9a:e9:
98:c7:94:38:52:b8:b9:b8:92:39:c1:5c:4a:3e:3f:65:3f:42:
62:ec:18:48:8d:29:63:68:2e:2a:73:df:52:e5:44:95:9c:5d:
e9:c3:36:0d:a6:e1:8c:93:78:fd:48:e9:72:92:90:b8:7f:7e:
e6:f0:c1:87:22:46:81:9f:1b:b5:93:e7:b8:a3:f4:4e:8f:bd:
7e:77:65:5b:f2:73:b6:cd:8e:d1:99:da:2b:dc:b4:26:c1:44:
b1:20:08:98:ee:00:83:d4:15:59:db:3c:fd:9c:dd:b4:37:32:
18:bf:95:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 00:11:07 2025 by rpki-client