Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/c90469-e638-4a57-92ce-534e73cc3b7c/1/i9RJHuZbtRvBQxbP2d-GI1ZGKOQ.roa
File: i9RJHuZbtRvBQxbP2d-GI1ZGKOQ.roa (raw, json)
Hash identifier: R7jryLtrdzRwl49QOpjCZ+/KEay6142cNYg7ZPWXrB8=
Subject key identifier: 8B:D4:49:1E:E6:5B:B5:1B:C1:43:16:CF:D9:DF:86:23:56:46:28:E4
Certificate issuer: /CN=7f203c1419ec6a21e66127203f51c1fa74dc044f
Certificate serial: 0B3A3023
Authority key identifier: 7F:20:3C:14:19:EC:6A:21:E6:61:27:20:3F:51:C1:FA:74:DC:04:4F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fyA8FBnsaiHmYScgP1HB-nTcBE8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/c90469-e638-4a57-92ce-534e73cc3b7c/1/i9RJHuZbtRvBQxbP2d-GI1ZGKOQ.roa
Signing time: Tue 03 May 2022 11:14:06 +0000
ROA not before: Tue 03 May 2022 11:14:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210443
IP address blocks: 185.126.158.0/23 maxlen: 24
185.126.156.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 188362787 (0xb3a3023)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7f203c1419ec6a21e66127203f51c1fa74dc044f
Validity
Not Before: May 3 11:14:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8bd4491ee65bb51bc14316cfd9df8623564628e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:b3:58:05:07:a5:6f:52:a3:6e:f1:64:4c:93:
ac:d2:04:2d:91:e5:2c:c2:40:02:c7:5f:2b:0b:3d:
bd:a8:2b:a5:ea:8f:9f:a2:e0:b5:e1:a1:93:1d:33:
36:32:4a:9f:60:f9:99:52:a3:17:7f:6c:b7:80:fd:
f1:ea:e0:b9:09:ed:cb:72:b0:87:76:80:e5:28:ff:
b6:2e:3b:60:35:25:9c:bc:63:81:04:a2:38:47:e8:
1c:1c:68:03:d6:e0:50:5f:85:78:75:cc:63:0a:78:
0f:67:ea:0a:f5:38:ea:5d:1f:3d:7b:a4:87:49:6f:
b5:0e:ac:43:b0:2c:b5:0f:fd:e7:ee:78:e3:bc:e7:
ad:c4:e4:26:d9:a9:7d:b3:e9:31:a4:43:a9:6a:d8:
96:81:3f:e9:82:b2:75:5a:51:57:22:0f:6e:88:a5:
46:b8:55:1e:0e:a1:e6:89:66:b5:92:a3:6c:ef:d3:
bf:44:85:71:0f:49:08:9d:fe:a8:5f:3f:18:8a:72:
8d:05:15:61:0c:a5:0b:56:5e:24:75:aa:7e:49:2d:
5f:d6:0e:09:2a:9d:e3:98:59:0e:65:af:28:6f:52:
4c:00:eb:f9:3f:15:65:4c:58:32:26:e2:2b:00:dc:
4c:5f:98:77:13:33:2e:18:f2:c3:99:1f:ac:1c:44:
af:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:D4:49:1E:E6:5B:B5:1B:C1:43:16:CF:D9:DF:86:23:56:46:28:E4
X509v3 Authority Key Identifier:
keyid:7F:20:3C:14:19:EC:6A:21:E6:61:27:20:3F:51:C1:FA:74:DC:04:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fyA8FBnsaiHmYScgP1HB-nTcBE8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/c90469-e638-4a57-92ce-534e73cc3b7c/1/i9RJHuZbtRvBQxbP2d-GI1ZGKOQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/c90469-e638-4a57-92ce-534e73cc3b7c/1/fyA8FBnsaiHmYScgP1HB-nTcBE8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.126.156.0/22
Signature Algorithm: sha256WithRSAEncryption
8f:74:c4:4c:68:a3:d2:16:95:0d:02:9f:f2:80:83:2f:0b:9b:
08:75:a6:b6:5a:dd:9f:a4:32:85:b4:d8:c9:c9:20:06:5c:e6:
41:49:5b:1f:00:fc:ed:e0:ba:cd:c1:a6:ca:c9:57:ec:02:72:
40:23:0e:6c:a3:ac:8a:3c:80:d0:ff:15:ae:60:7d:1c:f9:10:
55:96:e6:e8:c8:68:91:21:20:0a:01:40:fa:c1:b4:9c:3c:ae:
2b:f3:3e:06:ca:a3:f1:45:07:6d:ed:ee:a9:86:f8:f5:d8:77:
b7:9d:42:14:4d:11:cf:a5:c0:87:ae:07:2c:1e:53:d1:a7:1c:
91:b3:ad:ef:df:88:df:f8:72:5a:de:30:bc:98:7e:86:c3:9a:
d0:f0:8e:ad:e6:33:3e:1e:30:5b:08:a8:70:20:31:05:d6:a7:
2b:5d:42:3c:ae:84:de:4d:1b:76:64:44:09:1b:b9:a0:51:64:
cd:ac:48:8c:6d:14:86:34:b4:46:82:6d:8d:01:de:f5:cb:8f:
49:45:64:c0:15:af:52:e4:5e:58:83:d2:2c:00:14:99:5a:73:
cf:85:af:2f:68:66:93:c0:67:eb:02:7e:eb:1d:56:10:2f:bf:
b4:08:40:8e:63:7b:35:a4:4f:d6:2b:27:05:2e:2e:d7:89:e1:
00:59:57:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 12 12:37:52 2025 by rpki-client