Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/dcbba6-19e0-45cd-b44d-3d33d374d01f/1/i8BPVO1gK9H45B9Qw33I6-VNYUQ.roa
File: i8BPVO1gK9H45B9Qw33I6-VNYUQ.roa (raw, json)
Hash identifier: Q5hh4T/cH5QSBr6NaP75G6DayICuGTdi1+o2gld1+t4=
Subject key identifier: 8B:C0:4F:54:ED:60:2B:D1:F8:E4:1F:50:C3:7D:C8:EB:E5:4D:61:44
Certificate issuer: /CN=898df4e11514becc472a757e036b38087d0165ed
Certificate serial: 058B6100
Authority key identifier: 89:8D:F4:E1:15:14:BE:CC:47:2A:75:7E:03:6B:38:08:7D:01:65:ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iY304RUUvsxHKnV-A2s4CH0BZe0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/dcbba6-19e0-45cd-b44d-3d33d374d01f/1/i8BPVO1gK9H45B9Qw33I6-VNYUQ.roa
Signing time: Sat 01 Jan 2022 04:51:25 +0000
ROA not before: Sat 01 Jan 2022 04:51:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56911
IP address blocks: 185.47.136.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 93020416 (0x58b6100)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=898df4e11514becc472a757e036b38087d0165ed
Validity
Not Before: Jan 1 04:51:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8bc04f54ed602bd1f8e41f50c37dc8ebe54d6144
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:46:c0:15:52:a9:7f:4d:74:55:85:65:03:2c:
b1:c9:c1:4d:df:0c:2b:ed:24:fc:b3:97:3c:12:42:
a4:46:62:39:57:8a:f2:5e:7e:52:ab:ba:17:55:11:
d1:0f:73:91:45:02:90:64:a1:3f:54:9c:dd:74:73:
8d:21:12:85:26:5b:15:bd:4d:b5:8c:2d:ba:a0:99:
23:a5:7e:c6:bc:d3:d2:14:29:de:e7:e9:1c:5c:d0:
de:40:d7:06:9c:e3:71:ec:43:d6:d8:a5:a0:50:57:
41:6c:62:57:83:66:45:a5:2f:63:36:f4:86:a8:57:
99:1f:0a:fc:6f:2e:d2:96:28:55:4b:13:3a:e7:2b:
c2:56:d0:07:e3:fc:76:73:17:37:9c:c0:fe:84:a9:
1b:5f:ec:1a:df:da:78:2d:6e:43:59:4a:c0:b3:09:
fc:ce:f5:08:d6:37:ab:12:1b:26:b7:56:bd:83:67:
09:5d:b5:ba:c5:36:15:48:20:3c:35:67:64:8f:5d:
71:72:c9:48:a9:04:e2:76:06:2c:b6:3c:57:85:98:
d7:a0:1d:55:97:48:39:54:72:8d:d8:23:de:d9:97:
ec:e5:57:83:5f:79:a3:d4:57:fb:48:6b:16:1b:f0:
0c:0a:ec:5f:0c:db:2a:5a:74:6a:65:b6:c7:e8:b4:
34:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:C0:4F:54:ED:60:2B:D1:F8:E4:1F:50:C3:7D:C8:EB:E5:4D:61:44
X509v3 Authority Key Identifier:
keyid:89:8D:F4:E1:15:14:BE:CC:47:2A:75:7E:03:6B:38:08:7D:01:65:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iY304RUUvsxHKnV-A2s4CH0BZe0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/dcbba6-19e0-45cd-b44d-3d33d374d01f/1/i8BPVO1gK9H45B9Qw33I6-VNYUQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/dcbba6-19e0-45cd-b44d-3d33d374d01f/1/iY304RUUvsxHKnV-A2s4CH0BZe0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.47.136.0/22
Signature Algorithm: sha256WithRSAEncryption
b9:d3:dc:f6:30:07:a0:01:37:61:ce:b2:f0:06:c6:91:41:ff:
76:35:ff:8f:2c:cf:cb:db:f7:5f:07:77:c3:64:4c:ea:24:09:
01:58:97:31:69:16:b3:d9:29:69:d3:98:11:e0:98:5e:2f:d3:
32:41:57:b1:9b:0d:6e:5f:30:c3:9c:25:22:f4:c8:37:15:d0:
e8:b6:6d:ae:3f:56:11:22:d1:f5:19:f8:62:18:eb:8c:01:78:
c4:78:6c:da:51:47:5f:63:c4:0e:40:b0:e5:90:f8:bb:d7:40:
35:22:c8:4b:f9:c8:90:2e:ee:fe:c7:e2:22:14:3f:b6:4c:41:
b8:14:eb:44:58:67:b7:69:af:56:dd:61:56:6d:a3:06:4f:e2:
74:0d:c8:a9:c1:92:8e:34:02:6e:ba:ae:cd:a1:31:ee:40:9b:
9a:99:79:fa:0b:10:9c:56:f2:80:f4:5d:fa:ab:94:05:df:01:
1d:f6:03:04:99:f1:11:ce:98:e3:0f:e2:1b:16:ab:12:08:82:
ed:32:50:64:7c:39:c8:6d:c1:63:c6:a1:0e:9a:e0:66:0a:ff:
81:8a:a7:34:5a:a7:d6:4d:25:c2:17:65:9c:e1:99:ff:08:f4:
d6:ef:03:54:5f:12:96:ad:fd:51:bf:ec:f4:e5:ec:a6:00:84:
d9:a8:9b:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 15:35:01 2025 by rpki-client