Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/1125a2-4432-483f-a00b-616d97a77bd6/1/p7Kzg9i77OI3nv-4A3namJC0pCc.roa
File: p7Kzg9i77OI3nv-4A3namJC0pCc.roa (raw, json)
Hash identifier: MGsms/1PsaU+ovHBll9F2F5sgEO74CpOOU0zvpUFojo=
Subject key identifier: A7:B2:B3:83:D8:BB:EC:E2:37:9E:FF:B8:03:79:DA:98:90:B4:A4:27
Certificate issuer: /CN=6085397f26a044caef6a6b669287331aa4d68645
Certificate serial: 03325817
Authority key identifier: 60:85:39:7F:26:A0:44:CA:EF:6A:6B:66:92:87:33:1A:A4:D6:86:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YIU5fyagRMrvamtmkoczGqTWhkU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/1125a2-4432-483f-a00b-616d97a77bd6/1/p7Kzg9i77OI3nv-4A3namJC0pCc.roa
Signing time: Sat 01 Jan 2022 05:03:12 +0000
ROA not before: Sat 01 Jan 2022 05:03:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29538
IP address blocks: 185.213.240.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 53630999 (0x3325817)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6085397f26a044caef6a6b669287331aa4d68645
Validity
Not Before: Jan 1 05:03:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a7b2b383d8bbece2379effb80379da9890b4a427
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:75:37:f6:08:57:52:07:c9:9b:16:b0:7a:eb:
83:1c:f9:e5:4e:83:34:42:16:2b:fb:79:97:76:90:
72:b9:22:18:9e:7d:b0:44:81:af:65:66:6c:3d:26:
12:8a:75:aa:69:e9:33:d1:b2:6c:3b:3f:d0:1b:c5:
11:a5:34:27:61:cf:f2:ae:10:8e:b1:6f:7c:3f:8c:
88:cf:62:82:d7:b6:a6:3a:49:fc:8a:92:1d:ba:48:
d6:3d:9b:5a:66:4b:f5:b1:86:19:04:81:8e:92:b6:
b9:06:7a:d0:1a:46:e3:36:1f:37:d6:db:18:03:cb:
58:df:ca:d8:6a:f5:41:d2:e9:23:e9:09:84:e7:92:
5f:3c:92:93:12:9a:9e:1f:c8:ee:51:6f:f0:67:bb:
82:2d:cc:9e:4c:e5:c5:3d:59:92:8f:a3:ba:17:ce:
0d:a5:bd:be:31:63:0a:fc:b6:14:88:6f:95:b4:cb:
26:31:91:67:c6:65:da:a5:b6:34:2f:8c:8d:9c:a6:
95:73:fa:91:ad:5f:88:7b:d7:fe:d8:ca:02:38:8f:
0d:ff:f0:64:1b:77:ef:1a:e0:32:22:49:9d:2b:95:
bb:ef:cc:71:e7:43:1e:89:50:99:0d:03:e3:60:19:
29:06:33:9c:95:bb:e4:f5:14:c1:a2:39:51:4e:06:
be:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:B2:B3:83:D8:BB:EC:E2:37:9E:FF:B8:03:79:DA:98:90:B4:A4:27
X509v3 Authority Key Identifier:
keyid:60:85:39:7F:26:A0:44:CA:EF:6A:6B:66:92:87:33:1A:A4:D6:86:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YIU5fyagRMrvamtmkoczGqTWhkU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/1125a2-4432-483f-a00b-616d97a77bd6/1/p7Kzg9i77OI3nv-4A3namJC0pCc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/1125a2-4432-483f-a00b-616d97a77bd6/1/YIU5fyagRMrvamtmkoczGqTWhkU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.213.240.0/24
Signature Algorithm: sha256WithRSAEncryption
9f:42:ee:00:4c:f5:82:47:eb:c2:fe:63:a7:aa:ce:a8:be:8f:
b5:47:d3:11:cb:c0:68:6c:e9:c8:7d:cc:59:75:c6:52:3d:6d:
d4:62:20:37:73:2a:bf:fc:d4:69:21:b5:cd:09:ee:9b:af:f5:
da:73:70:c1:40:d4:97:8f:f0:a5:ce:0a:89:d4:25:25:de:88:
35:bb:86:a5:49:b4:44:ab:72:b3:2e:a7:dd:c2:39:16:ff:be:
c4:cd:c2:30:b4:30:96:73:31:b3:d3:8a:54:c1:eb:25:c6:cb:
f3:9b:2a:49:58:46:b5:01:53:5d:5b:94:e4:bd:c3:7b:98:c4:
47:fe:39:c6:28:70:f3:29:2b:d5:9c:7d:65:99:ca:7a:65:1a:
3a:fd:5a:d8:57:ce:cf:b1:b4:ef:97:18:42:0a:b2:d5:d8:9b:
c0:46:6d:0e:2e:4c:60:bb:de:54:d3:4b:8b:ec:53:6a:48:41:
7a:dc:7c:ca:9a:c5:03:e6:5b:78:13:fc:53:ee:ce:c3:5f:2d:
9f:fa:95:11:9d:9b:9d:0c:f2:db:0c:25:86:c7:3f:46:64:24:
a0:a9:bb:a8:0f:42:fe:4b:8e:ff:14:b2:59:53:63:53:ec:25:
d4:ff:d7:7c:5a:09:09:a5:a2:a2:09:ea:94:3d:e3:7d:72:43:
4a:7a:a2:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:46:14 2025 by rpki-client