Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/528cca-e59c-49dd-b27d-6dcb6af4243b/1/jb1cDYJYFVdYXYm8y5yBWQ6PmZc.roa
File: jb1cDYJYFVdYXYm8y5yBWQ6PmZc.roa (raw, json)
Hash identifier: OsHGOOHnxe5CDJDhraCjH3Kl7NRc/J1YsIEqk2y0jgM=
Subject key identifier: 8D:BD:5C:0D:82:58:15:57:58:5D:89:BC:CB:9C:81:59:0E:8F:99:97
Certificate issuer: /CN=ee22a1fd36458fe2c4c0ad21fc43f0336d356235
Certificate serial: 0360712C
Authority key identifier: EE:22:A1:FD:36:45:8F:E2:C4:C0:AD:21:FC:43:F0:33:6D:35:62:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7iKh_TZFj-LEwK0h_EPwM201YjU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/528cca-e59c-49dd-b27d-6dcb6af4243b/1/jb1cDYJYFVdYXYm8y5yBWQ6PmZc.roa
Signing time: Mon 20 Jun 2022 11:25:44 +0000
ROA not before: Mon 20 Jun 2022 11:25:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205624
IP address blocks: 185.196.64.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 56652076 (0x360712c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ee22a1fd36458fe2c4c0ad21fc43f0336d356235
Validity
Not Before: Jun 20 11:25:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8dbd5c0d82581557585d89bccb9c81590e8f9997
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:2b:d8:94:e9:a2:46:23:6b:08:72:52:63:ec:
3a:eb:39:56:83:20:0c:44:de:89:f5:46:f9:36:64:
1b:40:74:55:a6:8a:ea:3c:4d:21:9f:bd:41:1d:f4:
99:ff:20:77:2e:7c:72:a1:27:a6:9e:c0:6a:1d:f3:
80:39:ad:7c:a0:9b:9c:c7:dd:ad:4e:7c:4d:e5:1b:
fe:74:79:04:f3:2f:35:dc:03:ae:3d:70:94:16:03:
84:fc:19:75:1d:ca:ec:b1:92:a0:4f:cf:bf:13:92:
76:88:88:35:96:10:66:3b:bf:33:b1:0c:12:fa:be:
32:aa:8e:34:a2:26:d3:d9:80:0b:77:64:e8:df:6c:
e6:cc:38:1e:d7:79:47:19:1f:af:0b:93:29:e9:21:
bf:ce:f5:a6:4e:a9:dc:57:ad:b3:cb:81:6e:26:c0:
7e:d4:9a:74:17:35:98:a7:f9:14:d6:96:d3:01:da:
a9:c4:73:9a:96:8a:db:1b:bb:35:62:83:75:23:2a:
a1:03:f2:a9:75:6c:de:dc:fd:99:14:98:34:8c:fd:
c7:a4:c2:de:62:1d:db:06:25:f3:f6:c9:eb:72:61:
d0:23:7e:92:15:1e:01:6c:5f:00:0a:d4:4a:05:9d:
a0:d6:72:7a:b9:7d:45:73:1a:03:25:33:3d:09:3d:
0b:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:BD:5C:0D:82:58:15:57:58:5D:89:BC:CB:9C:81:59:0E:8F:99:97
X509v3 Authority Key Identifier:
keyid:EE:22:A1:FD:36:45:8F:E2:C4:C0:AD:21:FC:43:F0:33:6D:35:62:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7iKh_TZFj-LEwK0h_EPwM201YjU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/528cca-e59c-49dd-b27d-6dcb6af4243b/1/jb1cDYJYFVdYXYm8y5yBWQ6PmZc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/528cca-e59c-49dd-b27d-6dcb6af4243b/1/7iKh_TZFj-LEwK0h_EPwM201YjU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.196.64.0/22
Signature Algorithm: sha256WithRSAEncryption
11:88:46:d9:a1:88:95:a9:ac:8a:30:87:27:10:e9:0a:ad:f5:
ac:64:8e:50:bb:81:7c:bb:85:06:74:97:b1:5c:4c:c7:d1:67:
6b:54:90:56:5d:36:80:87:ef:ea:c4:81:5d:2a:af:89:2c:be:
63:c4:a0:58:3d:d9:70:7b:50:6a:7d:f7:c9:0e:0e:5e:2b:47:
af:b1:db:4a:dc:b4:f8:42:6a:60:e0:f3:d8:7e:25:61:10:6b:
37:33:c5:53:5d:81:88:75:28:e3:58:0a:e6:9e:9d:eb:63:f0:
1d:10:22:5b:eb:dd:f2:f6:74:6f:ab:67:d2:c2:a6:ae:a7:a0:
06:77:ad:41:12:6f:5a:9b:db:60:52:29:1a:91:17:c6:2f:14:
50:a4:b8:ec:49:bb:d7:5a:cb:69:c0:bc:1f:81:a0:54:bb:ca:
93:68:d6:29:95:48:b2:bd:48:4c:b6:d1:e2:42:df:92:ba:0b:
95:47:4e:73:e4:d1:6d:a8:86:5b:eb:36:cf:95:48:5c:68:9e:
a2:c9:09:7d:3b:f6:42:5b:33:ed:d3:82:58:72:4d:96:f8:94:
fe:16:93:1a:d9:ad:f9:57:fa:8d:68:49:78:0e:e0:33:b6:c7:
c7:68:12:b7:5a:03:21:f0:f5:5b:90:ee:87:c9:d7:e5:75:02:
98:f9:6f:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:46:28 2025 by rpki-client