Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/fb1827-a7e9-45c8-b643-76e07a577e4d/1/9SFdi7V4q-05lNgfIa-K_CLlxc0.roa
File: 9SFdi7V4q-05lNgfIa-K_CLlxc0.roa (raw, json)
Hash identifier: Kxe5R+STpor8dRXj7m0AfgFUBqqAzp8M8cMC2zERYAE=
Subject key identifier: F5:21:5D:8B:B5:78:AB:ED:39:94:D8:1F:21:AF:8A:FC:22:E5:C5:CD
Certificate issuer: /CN=7a10ee228073328a2c2081cbb2a96cd1264dbef1
Certificate serial: 0194228D5A4EADAF710B0A1D2F6BD764E0DB
Authority key identifier: 7A:10:EE:22:80:73:32:8A:2C:20:81:CB:B2:A9:6C:D1:26:4D:BE:F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ehDuIoBzMoosIIHLsqls0SZNvvE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/fb1827-a7e9-45c8-b643-76e07a577e4d/1/9SFdi7V4q-05lNgfIa-K_CLlxc0.roa
Signing time: Wed 01 Jan 2025 15:47:56 +0000
ROA not before: Wed 01 Jan 2025 15:47:56 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 49151
IP address blocks: 185.53.147.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:8d:5a:4e:ad:af:71:0b:0a:1d:2f:6b:d7:64:e0:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7a10ee228073328a2c2081cbb2a96cd1264dbef1
Validity
Not Before: Jan 1 15:47:56 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=f5215d8bb578abed3994d81f21af8afc22e5c5cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:4e:cc:98:df:94:8f:92:e1:bf:cd:5a:7c:ee:
bc:c0:fc:24:50:f3:3e:30:6f:4f:69:57:75:d6:43:
44:1e:c7:df:ed:15:a0:72:48:66:e0:e4:e3:07:a1:
c4:b3:f7:b5:70:46:be:8d:c9:87:5c:1a:cf:ab:b2:
eb:9b:3e:95:a9:69:52:54:e9:5b:12:d6:d3:63:97:
52:6e:d7:c6:58:26:b4:9f:1d:72:b7:a5:39:a4:49:
b3:22:38:66:af:8e:7c:47:24:4c:a2:2d:9d:ed:6a:
ab:5d:53:12:6f:6f:fd:38:a7:a4:50:f7:fd:ac:f8:
d4:7f:7d:be:6b:e1:b0:aa:a1:c9:e9:a9:6f:5a:32:
96:ff:22:0c:90:92:ea:f3:a2:94:08:6c:0a:b7:23:
ea:68:b5:f0:1b:38:c6:65:c9:8d:2d:ee:92:e3:c9:
75:4c:da:9d:bc:72:7a:7f:38:c5:5f:48:af:9a:41:
82:8b:5f:5f:41:82:98:03:a6:2d:ad:c3:f6:e3:9c:
37:4f:2f:24:68:d5:a3:c6:55:b5:86:a4:27:2f:18:
44:03:7d:28:68:71:e5:79:f7:b1:b0:4a:51:ef:0a:
c7:33:3c:f7:64:8f:d4:db:a6:94:88:c9:de:4b:9e:
74:af:4e:2a:ac:db:bc:24:26:69:a1:1f:21:07:ef:
dd:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:21:5D:8B:B5:78:AB:ED:39:94:D8:1F:21:AF:8A:FC:22:E5:C5:CD
X509v3 Authority Key Identifier:
keyid:7A:10:EE:22:80:73:32:8A:2C:20:81:CB:B2:A9:6C:D1:26:4D:BE:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ehDuIoBzMoosIIHLsqls0SZNvvE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/fb1827-a7e9-45c8-b643-76e07a577e4d/1/9SFdi7V4q-05lNgfIa-K_CLlxc0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/fb1827-a7e9-45c8-b643-76e07a577e4d/1/ehDuIoBzMoosIIHLsqls0SZNvvE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.53.147.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:6f:30:79:70:07:89:98:d9:12:b5:7a:22:45:96:57:86:9b:
f3:7a:4e:27:1f:62:52:50:c2:d9:24:fa:02:36:38:7f:86:6a:
d1:9d:e5:71:ce:06:7e:3b:a8:0a:f0:a8:09:eb:1e:f9:5d:ed:
e1:2c:56:a3:a1:26:d2:e4:2c:cb:3a:07:44:4e:49:36:e1:4b:
40:89:12:29:21:ef:f5:5a:51:e2:3b:54:06:ab:2f:b8:c1:97:
d2:aa:8d:af:72:cc:f4:05:40:49:39:b6:4a:66:00:97:8a:5b:
5a:ca:4a:60:83:63:b8:2d:9c:9a:bb:5c:b1:e3:c8:15:33:de:
48:11:35:56:00:ae:a6:7f:99:7e:41:e5:1e:c3:39:55:55:5f:
f2:ed:83:26:db:b6:b3:36:de:cd:88:fb:3a:96:eb:a9:52:28:
31:c5:76:53:ff:fc:d1:03:0b:1b:9c:24:6c:e6:26:c7:c4:45:
4d:5d:82:35:0f:9c:ff:63:3b:a7:b9:57:76:d1:a7:51:ee:43:
f8:81:aa:58:ff:34:3b:69:6e:3d:0a:d6:76:fa:54:e0:c4:d7:
8e:b2:71:60:90:03:dd:71:ba:87:a0:48:e1:23:ab:1b:e6:15:
3f:66:f5:e1:75:61:58:a3:9d:97:32:cf:ca:ac:1b:b0:f2:29:
41:7e:55:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:37:48 2025 by rpki-client