Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/1125a2-4432-483f-a00b-616d97a77bd6/1/S-xEx3gdqDyX6pJRhLPsqIWvX3M.roa
File: S-xEx3gdqDyX6pJRhLPsqIWvX3M.roa (raw, json)
Hash identifier: urD7ATOz9AzcTzrD85o+2yDW+32umJ2yqfEZzmJu2pM=
Subject key identifier: 4B:EC:44:C7:78:1D:A8:3C:97:EA:92:51:84:B3:EC:A8:85:AF:5F:73
Certificate issuer: /CN=6085397f26a044caef6a6b669287331aa4d68645
Certificate serial: 0339736E
Authority key identifier: 60:85:39:7F:26:A0:44:CA:EF:6A:6B:66:92:87:33:1A:A4:D6:86:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YIU5fyagRMrvamtmkoczGqTWhkU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/1125a2-4432-483f-a00b-616d97a77bd6/1/S-xEx3gdqDyX6pJRhLPsqIWvX3M.roa
Signing time: Sat 01 Jan 2022 05:03:17 +0000
ROA not before: Sat 01 Jan 2022 05:03:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211585
IP address blocks: 185.229.203.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54096750 (0x339736e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6085397f26a044caef6a6b669287331aa4d68645
Validity
Not Before: Jan 1 05:03:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4bec44c7781da83c97ea925184b3eca885af5f73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:41:57:ef:61:e0:7e:8e:80:3d:93:1e:df:43:
a2:fb:05:41:33:3a:16:57:93:ec:9e:24:36:f8:ef:
a7:b7:8f:54:51:ab:24:33:93:41:be:78:68:60:e5:
d1:a7:e9:77:5c:d0:df:fc:9d:f6:55:53:91:80:f4:
c1:e9:12:b4:86:f9:e7:80:b0:da:6a:e4:4f:ef:94:
e7:0a:38:8f:e7:a6:c3:ae:04:c2:1b:84:7e:ab:0d:
e6:3f:a1:a7:d7:50:3b:56:08:f5:1f:2d:dd:93:9b:
be:30:81:af:22:16:05:23:a8:76:3f:6b:91:a8:e1:
7f:b9:49:f8:44:76:e0:8d:65:2b:3b:b4:7f:59:4d:
e2:5d:5f:6c:b6:2a:c3:bd:07:2b:71:5a:3e:e8:49:
10:89:ef:db:53:db:cb:53:39:16:e4:71:31:02:7a:
74:0d:8c:7a:1d:5a:bd:15:bd:3d:45:d1:e1:de:ea:
ff:f0:37:f2:c2:b0:67:cc:08:e9:da:47:2e:0e:07:
97:86:d7:75:1f:92:a6:cf:76:ed:24:b5:91:64:27:
31:00:27:cb:c6:7c:c4:0f:ab:94:ce:9c:49:4e:4b:
fd:96:e3:8b:84:f8:f3:f6:56:df:11:c5:eb:38:a0:
e5:3d:70:83:19:8e:8b:47:fb:fd:3e:db:4c:59:c7:
11:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:EC:44:C7:78:1D:A8:3C:97:EA:92:51:84:B3:EC:A8:85:AF:5F:73
X509v3 Authority Key Identifier:
keyid:60:85:39:7F:26:A0:44:CA:EF:6A:6B:66:92:87:33:1A:A4:D6:86:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YIU5fyagRMrvamtmkoczGqTWhkU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/1125a2-4432-483f-a00b-616d97a77bd6/1/S-xEx3gdqDyX6pJRhLPsqIWvX3M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/1125a2-4432-483f-a00b-616d97a77bd6/1/YIU5fyagRMrvamtmkoczGqTWhkU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.229.203.0/24
Signature Algorithm: sha256WithRSAEncryption
88:4d:b0:2f:4d:5e:be:11:9b:de:49:ad:be:0c:28:dd:91:cc:
aa:e7:0e:59:0f:9f:24:00:a0:dd:28:e5:b0:44:6d:64:1b:0f:
fa:7c:dc:8f:9d:e2:e3:11:8a:48:e7:7b:8b:f0:56:25:68:4a:
56:e8:68:43:f0:71:bc:81:45:e5:46:13:d5:ae:5b:81:6d:38:
47:8f:2a:75:97:33:8b:57:ea:b9:07:12:68:d7:1c:52:5c:c5:
68:8d:bc:98:57:de:3e:a6:5d:5e:f4:16:a2:f7:01:0b:39:ac:
90:60:e3:0e:c0:7d:f2:5d:29:85:4a:86:43:44:0c:02:9b:b5:
6a:c6:0a:ec:04:ac:84:fe:c1:f6:61:60:d5:4f:ab:9f:5b:83:
12:08:01:b4:68:d0:e5:c3:06:e4:dc:af:75:4c:f4:99:e2:37:
9d:b9:60:90:9a:3d:dd:84:81:b7:33:1f:86:9e:a7:4c:ec:14:
ac:6b:9b:05:90:62:14:96:97:94:1b:b8:70:83:3d:14:34:ca:
cb:a7:b5:a8:95:e6:ba:db:01:93:31:9b:bc:7a:0c:54:06:91:
51:59:37:36:58:da:48:ce:b5:0c:7d:25:8f:bc:a6:3e:7d:bb:
20:19:5c:1a:13:82:78:8b:d5:ef:b5:3b:4b:24:bc:5b:a9:19:
2c:c9:51:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 12:58:50 2025 by rpki-client