Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/f8bb1b-d6fd-49a1-9653-ff157bef0621/1/7Eq8CRHq-69LAeGCKAoqwYOL0uI.roa
File: 7Eq8CRHq-69LAeGCKAoqwYOL0uI.roa (raw, json)
Hash identifier: JCH+c2OznSyEE6Akb8Pr782TZUkj/OH4T++WSm4qcMM=
Subject key identifier: EC:4A:BC:09:11:EA:FB:AF:4B:01:E1:82:28:0A:2A:C1:83:8B:D2:E2
Certificate issuer: /CN=dd82de4f1304339fde527ba06033ca9e511171bd
Certificate serial: 01856D3875312816D6094587554DEE3EA861
Authority key identifier: DD:82:DE:4F:13:04:33:9F:DE:52:7B:A0:60:33:CA:9E:51:11:71:BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3YLeTxMEM5_eUnugYDPKnlERcb0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/f8bb1b-d6fd-49a1-9653-ff157bef0621/1/7Eq8CRHq-69LAeGCKAoqwYOL0uI.roa
Signing time: Sun 01 Jan 2023 12:04:54 +0000
ROA not before: Sun 01 Jan 2023 12:04:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3177
IP address blocks: 185.86.183.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:38:75:31:28:16:d6:09:45:87:55:4d:ee:3e:a8:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd82de4f1304339fde527ba06033ca9e511171bd
Validity
Not Before: Jan 1 12:04:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ec4abc0911eafbaf4b01e182280a2ac1838bd2e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:3f:59:19:1e:5c:46:e8:79:48:a3:3f:15:ff:
44:70:ed:29:e9:fa:91:4a:2a:7b:af:ce:68:ac:db:
b5:d0:1e:64:c2:77:0d:c3:a3:8f:83:04:fa:e2:8e:
98:42:c8:32:e1:c5:6f:37:ff:ad:f5:34:de:ab:0c:
e9:f7:d0:24:3f:81:a8:b4:2b:0c:e5:09:8d:41:79:
35:c7:29:83:c7:97:e1:77:f1:dc:e3:db:b7:2c:97:
64:ee:d3:a6:e0:46:32:60:ca:87:a1:75:5f:9d:76:
a1:d0:09:27:f3:68:15:0c:fc:51:20:40:ae:fc:20:
81:70:a7:26:1e:48:35:fe:ae:af:4c:b1:15:b0:ed:
dd:e6:ed:12:ba:56:4c:f4:b1:87:45:39:29:d3:f9:
8e:f0:50:48:9a:aa:e8:13:f1:f0:5d:c1:0f:c3:5b:
9a:4b:91:a4:57:dc:8d:ba:5c:97:4d:1d:dc:35:dd:
9e:01:da:28:e2:fa:3d:0d:17:ff:1e:76:2b:d4:08:
8e:9e:65:d5:32:ce:c2:b4:d7:31:ba:ff:34:dd:6d:
07:80:31:16:57:03:1c:1c:e8:18:c4:6b:bf:18:38:
f4:c4:7e:4c:ed:a2:6f:88:89:15:9d:1e:6b:af:c9:
15:2a:9b:2c:fe:56:72:66:b7:56:f0:0a:67:71:91:
bb:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:4A:BC:09:11:EA:FB:AF:4B:01:E1:82:28:0A:2A:C1:83:8B:D2:E2
X509v3 Authority Key Identifier:
keyid:DD:82:DE:4F:13:04:33:9F:DE:52:7B:A0:60:33:CA:9E:51:11:71:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3YLeTxMEM5_eUnugYDPKnlERcb0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/f8bb1b-d6fd-49a1-9653-ff157bef0621/1/7Eq8CRHq-69LAeGCKAoqwYOL0uI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/f8bb1b-d6fd-49a1-9653-ff157bef0621/1/3YLeTxMEM5_eUnugYDPKnlERcb0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.86.183.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:8e:16:8b:83:c8:21:f4:94:d8:f1:9c:36:25:2e:a4:07:e5:
75:74:8d:52:b7:37:01:f6:ef:28:7c:23:92:4e:11:21:b1:b4:
6a:79:32:fa:10:e7:77:41:13:75:8e:b5:96:01:81:dd:16:55:
8a:c0:38:6d:a5:4d:fc:03:bb:e3:b5:3e:97:f4:01:a1:a1:d4:
ff:a7:c7:5d:2f:fc:3a:8d:15:d0:7f:3a:e4:32:b9:16:b2:57:
4f:8b:89:33:01:df:0b:9c:de:41:21:05:47:77:76:0b:0b:86:
56:71:ec:6d:b2:3d:b7:5d:cd:07:8e:12:16:34:21:9c:7f:de:
ac:2e:a6:3d:31:50:88:35:03:58:a0:18:b6:cc:34:aa:92:f1:
7e:16:d3:2c:d9:ec:7d:ce:ba:7f:6e:0e:42:b3:99:c1:40:43:
3a:b7:92:a3:2f:10:00:52:3c:75:ec:cb:32:50:59:29:73:de:
9f:24:3e:c0:6c:61:d9:ec:2e:aa:29:a8:62:b6:83:79:ce:2a:
e4:54:29:a3:89:cb:8c:25:99:ec:75:7c:9d:7d:79:2a:14:77:
27:ac:1e:c0:31:24:4d:48:40:e0:98:cc:d5:ff:b9:73:61:81:
ed:15:51:68:84:af:e7:ca:88:71:f8:df:23:6f:52:36:12:f6:
36:54:3b:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 20:22:10 2025 by rpki-client