Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/c90469-e638-4a57-92ce-534e73cc3b7c/1/3UzLpaA4Kx8Hi8YwYBE8Tw6_DtI.roa
File: 3UzLpaA4Kx8Hi8YwYBE8Tw6_DtI.roa (raw, json)
Hash identifier: pPzdKybMBHQ/BUXpxjfOpQJOqrsSwyYLrBGW0lwpLBQ=
Subject key identifier: DD:4C:CB:A5:A0:38:2B:1F:07:8B:C6:30:60:11:3C:4F:0E:BF:0E:D2
Certificate issuer: /CN=7f203c1419ec6a21e66127203f51c1fa74dc044f
Certificate serial: 0B34BBCF
Authority key identifier: 7F:20:3C:14:19:EC:6A:21:E6:61:27:20:3F:51:C1:FA:74:DC:04:4F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fyA8FBnsaiHmYScgP1HB-nTcBE8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/c90469-e638-4a57-92ce-534e73cc3b7c/1/3UzLpaA4Kx8Hi8YwYBE8Tw6_DtI.roa
Signing time: Mon 02 May 2022 08:15:47 +0000
ROA not before: Mon 02 May 2022 08:15:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1299
IP address blocks: 185.126.158.0/23 maxlen: 24
185.126.156.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 188005327 (0xb34bbcf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7f203c1419ec6a21e66127203f51c1fa74dc044f
Validity
Not Before: May 2 08:15:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dd4ccba5a0382b1f078bc63060113c4f0ebf0ed2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:b7:96:e6:95:29:8d:ec:88:e6:e0:67:7f:f0:
8b:4e:c9:0b:1b:e6:3d:73:c5:d8:d8:da:71:09:ba:
31:21:07:54:67:75:99:c9:bd:99:bf:ff:79:57:2a:
67:91:51:3d:dc:52:dc:ae:fc:aa:bc:cb:88:ae:a3:
4d:77:3c:2a:a0:a1:46:50:13:3c:64:00:aa:e7:25:
bc:6b:67:2a:e4:1f:88:66:cb:4b:e3:0d:44:ef:fe:
b6:87:dd:c5:e9:6d:50:22:78:72:03:04:60:ea:5f:
a4:cb:ec:7d:99:7e:9a:80:95:ae:54:fa:e1:a2:42:
79:f4:1b:48:d3:20:11:ba:22:36:ad:13:19:32:1b:
e0:25:38:a4:a8:0b:b5:f2:ca:ae:4f:b2:77:01:c2:
e4:7e:89:ba:94:41:31:2e:9f:37:82:a7:ca:9b:71:
ba:54:ec:24:7b:53:c4:91:37:a9:2a:34:f5:9c:88:
c5:a9:b6:5f:92:5f:bc:83:e9:ee:3d:4c:9e:05:b2:
70:63:f1:5a:6e:34:7c:1e:7c:7b:c9:02:c1:08:17:
b9:e7:22:1a:16:cf:a2:74:9c:a0:fc:fb:d0:0d:af:
31:d3:f8:ed:84:f1:69:ea:50:81:c5:a8:22:ad:b2:
2e:08:d2:c0:88:1c:f5:ed:7b:44:84:80:d3:4a:c6:
df:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:4C:CB:A5:A0:38:2B:1F:07:8B:C6:30:60:11:3C:4F:0E:BF:0E:D2
X509v3 Authority Key Identifier:
keyid:7F:20:3C:14:19:EC:6A:21:E6:61:27:20:3F:51:C1:FA:74:DC:04:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fyA8FBnsaiHmYScgP1HB-nTcBE8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/c90469-e638-4a57-92ce-534e73cc3b7c/1/3UzLpaA4Kx8Hi8YwYBE8Tw6_DtI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/c90469-e638-4a57-92ce-534e73cc3b7c/1/fyA8FBnsaiHmYScgP1HB-nTcBE8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.126.156.0/22
Signature Algorithm: sha256WithRSAEncryption
6f:55:5a:c7:61:17:1d:35:a6:5b:61:db:62:d0:dd:74:52:de:
f9:64:64:dd:38:0e:2c:a0:04:bf:6e:17:e9:8b:d9:a7:ca:27:
04:a1:ef:5f:35:5a:8e:67:b2:c9:79:e0:00:5a:8c:79:f7:8b:
f1:bc:2e:99:1b:0f:2d:32:62:d0:13:d3:92:b5:fd:5f:62:56:
60:9b:2d:ad:de:d3:1c:55:5b:e7:98:b1:51:6b:fb:c3:27:20:
36:08:f9:2d:d7:6d:32:72:24:29:4f:eb:ac:bd:ad:ca:85:d9:
35:3c:e2:d7:76:58:de:da:45:5c:e6:f2:91:59:2d:17:ca:a9:
07:d1:b1:1f:b2:b8:51:9a:1e:64:81:33:1b:5a:61:44:10:2a:
78:c2:94:55:6c:69:69:bf:4a:3e:56:cc:e4:08:26:61:65:38:
9b:51:55:b7:7f:8b:34:57:6b:db:fd:4f:0a:3f:93:eb:b8:37:
ee:e4:23:02:d7:8a:2e:5f:b6:82:21:07:ab:57:d1:62:08:15:
0a:9c:48:1e:0a:d2:3a:bd:32:3d:e9:5e:fe:e2:b8:9d:34:c8:
80:05:a4:87:62:7d:21:63:49:18:c4:46:e0:5f:e3:cd:42:0b:
19:8e:08:74:bf:d6:e5:2b:0f:35:a5:da:9e:4e:d8:58:43:26:
92:f8:f5:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 12 13:04:07 2025 by rpki-client