Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/639f49-4cfc-41c8-8ba7-5e030706488d/1/W9cdf8CogG7NOKfkNPbdBTuK_fc.roa
File: W9cdf8CogG7NOKfkNPbdBTuK_fc.roa (raw, json)
Hash identifier: LMFHJozw0oNTzOteChFkZNM9MgMFjbwQs6PBJ6TIieY=
Subject key identifier: 5B:D7:1D:7F:C0:A8:80:6E:CD:38:A7:E4:34:F6:DD:05:3B:8A:FD:F7
Certificate issuer: /CN=d8a8e9af2ca43e2712bfb2c9796ec4c0ba658521
Certificate serial: 0C9C86BC
Authority key identifier: D8:A8:E9:AF:2C:A4:3E:27:12:BF:B2:C9:79:6E:C4:C0:BA:65:85:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2KjpryykPicSv7LJeW7EwLplhSE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/639f49-4cfc-41c8-8ba7-5e030706488d/1/W9cdf8CogG7NOKfkNPbdBTuK_fc.roa
Signing time: Sat 01 Jan 2022 11:01:55 +0000
ROA not before: Sat 01 Jan 2022 11:01:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213035
IP address blocks: 185.102.170.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 211584700 (0xc9c86bc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8a8e9af2ca43e2712bfb2c9796ec4c0ba658521
Validity
Not Before: Jan 1 11:01:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5bd71d7fc0a8806ecd38a7e434f6dd053b8afdf7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:30:35:84:96:76:fd:45:aa:0d:28:9f:22:1e:
18:b6:01:53:73:c4:b8:52:79:94:9b:56:61:96:4f:
ef:aa:94:23:8b:ad:7e:a4:3b:be:f8:43:5e:e3:d0:
8a:39:db:bc:d0:cc:f0:d3:cc:49:85:c7:5b:ab:47:
d2:72:54:7d:47:f1:bf:e3:9a:13:9c:5c:9d:d5:60:
42:5a:61:c6:f4:62:e8:66:d2:d0:3c:3b:34:5f:bc:
fd:2b:5c:03:22:20:74:4f:65:7e:12:ec:7e:bf:94:
b6:38:e6:80:d0:ea:33:6c:6c:58:49:8c:63:8b:01:
d8:d7:2b:a1:21:ef:c9:c7:ca:18:ee:41:49:24:fc:
f1:11:00:d4:b2:23:e5:65:97:6a:88:9c:2f:e0:ef:
41:3a:1d:90:ac:1b:5d:d3:54:c9:b3:ad:43:78:08:
2a:99:88:af:38:22:ad:a5:69:42:10:65:99:62:93:
ef:f8:6d:c7:45:99:d8:e0:72:5a:00:1f:c5:8f:6f:
f2:27:ab:ec:ab:38:a6:12:ba:12:4b:19:d8:50:44:
ce:70:4d:6b:ab:20:4d:df:1b:e1:cd:47:0f:de:db:
c3:79:2c:1b:86:40:57:0b:f3:20:b1:fd:a4:f9:31:
40:8a:70:c4:da:ad:7a:97:2a:8d:b0:7d:cb:94:7f:
61:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:D7:1D:7F:C0:A8:80:6E:CD:38:A7:E4:34:F6:DD:05:3B:8A:FD:F7
X509v3 Authority Key Identifier:
keyid:D8:A8:E9:AF:2C:A4:3E:27:12:BF:B2:C9:79:6E:C4:C0:BA:65:85:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2KjpryykPicSv7LJeW7EwLplhSE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/639f49-4cfc-41c8-8ba7-5e030706488d/1/W9cdf8CogG7NOKfkNPbdBTuK_fc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/639f49-4cfc-41c8-8ba7-5e030706488d/1/2KjpryykPicSv7LJeW7EwLplhSE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.102.170.0/23
Signature Algorithm: sha256WithRSAEncryption
06:cf:d5:d0:95:14:55:f4:7f:93:70:b8:0f:cb:64:43:18:03:
18:38:19:49:b2:95:48:90:44:71:e1:bf:cd:03:71:47:88:00:
25:40:89:0e:6e:fd:e9:66:e3:4c:d8:ef:d5:73:3a:cd:c7:51:
1a:e9:0c:94:60:5d:e8:8f:34:ff:50:23:e0:a2:66:50:7d:9c:
1c:4c:c5:9d:4d:6d:3c:3a:8d:d2:6f:1e:f0:35:5a:16:27:f1:
2c:1b:7c:ec:db:7a:f7:52:52:99:53:f6:65:65:da:d4:65:be:
15:f4:2f:56:84:6a:77:dc:b5:d6:83:ef:a9:44:48:43:ea:10:
03:f7:63:22:45:dc:f5:fa:76:fb:19:05:5c:03:c1:fa:69:7c:
71:4c:4a:5b:b0:95:2a:b2:f6:87:37:55:68:9a:66:e3:67:e5:
2f:b0:1f:3d:5b:60:a2:83:a3:be:75:63:77:6f:79:a9:a9:53:
36:de:fd:dd:eb:81:34:dd:9c:38:5f:95:fb:d3:7b:ab:3c:a3:
a5:f6:c5:af:e2:de:c1:d5:c3:2f:e3:e7:92:17:57:b3:dd:19:
4a:98:b3:6b:8d:b0:71:ea:8f:7d:75:c6:44:a6:fb:45:c2:ab:
0c:26:db:dc:c6:35:9b:41:49:8d:ee:37:ca:c1:25:b1:62:e6:
29:e6:fc:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:06:54 2025 by rpki-client