Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/3364ed-c5f9-4631-b95c-f26b1551e0f5/1/AICnWO4qPFLoLYrL6OJ6vT22I3U.roa
File: AICnWO4qPFLoLYrL6OJ6vT22I3U.roa (raw, json)
Hash identifier: f+epNa3YYuyCadH2xalwX8Xo649LGxm3SDZEa7EM5bk=
Subject key identifier: 00:80:A7:58:EE:2A:3C:52:E8:2D:8A:CB:E8:E2:7A:BD:3D:B6:23:75
Certificate issuer: /CN=2f1e253977bf583e0e420ec977a8ecf4ed154dbe
Certificate serial: 0AEDE5DC
Authority key identifier: 2F:1E:25:39:77:BF:58:3E:0E:42:0E:C9:77:A8:EC:F4:ED:15:4D:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Lx4lOXe_WD4OQg7Jd6js9O0VTb4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/3364ed-c5f9-4631-b95c-f26b1551e0f5/1/AICnWO4qPFLoLYrL6OJ6vT22I3U.roa
Signing time: Sat 01 Jan 2022 13:58:41 +0000
ROA not before: Sat 01 Jan 2022 13:58:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208294
IP address blocks: 185.220.101.0/24 maxlen: 24
2a0b:f4c1:1::/48 maxlen: 48
2a0b:f4c2::/40 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 183363036 (0xaede5dc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2f1e253977bf583e0e420ec977a8ecf4ed154dbe
Validity
Not Before: Jan 1 13:58:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0080a758ee2a3c52e82d8acbe8e27abd3db62375
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:d5:c1:d4:d3:69:4a:b7:97:58:d2:a5:0c:4d:
9e:de:e3:5a:2a:cb:ce:0b:9f:6f:80:1c:f6:02:b6:
64:98:c9:7c:48:29:4a:d3:3d:54:19:d1:05:81:54:
93:8c:3e:1d:80:08:2b:4d:b8:0d:57:5e:13:f4:48:
bf:73:a4:39:a0:03:c3:e5:3b:8f:0b:76:44:26:70:
df:36:7c:c0:93:fe:60:1e:56:af:27:e1:c4:92:38:
17:5c:dd:77:79:24:4a:3c:91:a3:11:b4:c3:d2:ae:
bc:c9:a3:9b:25:02:c1:4b:46:44:cc:ba:96:9c:b4:
ca:d4:d1:61:6f:40:f0:69:14:6a:ba:4d:2a:30:ee:
ac:7c:14:c6:64:0e:7f:22:48:20:de:91:0a:ef:ae:
55:7a:11:06:f0:3d:0d:4d:ab:21:ff:f1:93:78:4c:
85:9f:ae:e6:82:73:fa:5a:a5:e9:83:bf:0f:25:68:
e8:00:f9:e8:82:f5:22:a7:e1:a6:35:31:ff:12:5f:
1e:00:a2:f1:4e:ae:fd:39:29:18:d9:88:c5:33:11:
8e:2b:d7:22:d1:62:53:bb:ed:d9:99:5c:0c:62:9d:
ba:0a:0e:28:ef:87:01:4a:eb:84:87:38:ca:68:36:
b5:55:42:6d:1b:b9:1d:76:a2:76:77:bf:18:8f:91:
5b:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:80:A7:58:EE:2A:3C:52:E8:2D:8A:CB:E8:E2:7A:BD:3D:B6:23:75
X509v3 Authority Key Identifier:
keyid:2F:1E:25:39:77:BF:58:3E:0E:42:0E:C9:77:A8:EC:F4:ED:15:4D:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Lx4lOXe_WD4OQg7Jd6js9O0VTb4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/3364ed-c5f9-4631-b95c-f26b1551e0f5/1/AICnWO4qPFLoLYrL6OJ6vT22I3U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/3364ed-c5f9-4631-b95c-f26b1551e0f5/1/Lx4lOXe_WD4OQg7Jd6js9O0VTb4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.220.101.0/24
IPv6:
2a0b:f4c1:1::/48
2a0b:f4c2::/40
Signature Algorithm: sha256WithRSAEncryption
31:0d:b7:68:43:1b:3a:e9:a7:b8:1c:98:99:09:65:c2:b9:cc:
25:4a:e8:92:33:0c:bf:12:49:6a:f6:92:e5:71:73:ee:dd:76:
4c:0a:3f:f4:59:39:cf:e8:47:ae:a2:01:56:13:99:cd:b1:bd:
3c:51:b4:8a:43:f0:97:be:66:c8:0b:18:fa:b8:8a:22:88:a2:
73:f2:65:c4:aa:ee:89:7d:77:03:44:53:a9:f6:fc:d0:db:95:
80:2e:93:74:6a:b7:77:e3:d5:94:11:fb:d4:8d:9a:7c:09:89:
a7:59:03:a6:3a:e3:ec:15:7f:f0:9d:31:66:d4:0b:58:01:c0:
66:ee:bc:99:e3:aa:06:db:d2:78:47:c5:b4:df:98:09:cd:08:
fa:d2:9e:71:64:a4:65:8b:25:3d:5b:a1:80:9c:1a:7b:24:4d:
f3:fa:34:63:93:a2:b1:41:a1:69:2c:da:d6:6b:b9:99:ee:04:
dc:f1:50:ef:68:7f:52:0c:5a:02:0f:fd:09:d4:93:5b:0c:04:
cf:a9:ce:f9:84:03:bf:d9:2c:1f:22:94:75:7e:a0:c8:27:10:
0e:af:6c:8c:c2:a1:0d:b6:6a:64:71:aa:d3:b2:03:3d:8c:39:
0d:5a:e6:68:d7:e4:52:75:f6:55:72:ae:ec:06:5f:1d:4e:82:
38:03:da:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 04:12:22 2025 by rpki-client