Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7e/984602-4a90-4551-bf49-2edbdfaff47e/1/D_iQ0SA7gSzZ2WCEs80aF_bTRss.roa
File: D_iQ0SA7gSzZ2WCEs80aF_bTRss.roa (raw, json)
Hash identifier: 9RdVmFhEmj49ffgHRaLYsLcsqb1Chlec5jOJ4Ttzm3Y=
Subject key identifier: 0F:F8:90:D1:20:3B:81:2C:D9:D9:60:84:B3:CD:1A:17:F6:D3:46:CB
Certificate issuer: /CN=647c0936487ec5d803e4d5a9a5100c4651f45437
Certificate serial: 018572BA7111FD938CD4993F7D4265D85533
Authority key identifier: 64:7C:09:36:48:7E:C5:D8:03:E4:D5:A9:A5:10:0C:46:51:F4:54:37
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZHwJNkh-xdgD5NWppRAMRlH0VDc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7e/984602-4a90-4551-bf49-2edbdfaff47e/1/D_iQ0SA7gSzZ2WCEs80aF_bTRss.roa
Signing time: Mon 02 Jan 2023 13:44:59 +0000
ROA not before: Mon 02 Jan 2023 13:44:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 22773
IP address blocks: 185.64.78.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:ba:71:11:fd:93:8c:d4:99:3f:7d:42:65:d8:55:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=647c0936487ec5d803e4d5a9a5100c4651f45437
Validity
Not Before: Jan 2 13:44:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0ff890d1203b812cd9d96084b3cd1a17f6d346cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:e2:9c:1d:2f:39:ae:2c:2b:84:bd:bd:90:32:
63:4d:3d:9b:21:b8:80:9f:6c:57:c5:53:6f:d3:c0:
a5:0d:1b:7a:de:b9:de:2e:95:7a:fb:c7:0e:af:76:
cd:ed:2c:cf:6c:b9:20:f7:a0:84:ef:d5:22:30:2b:
f1:61:e2:6b:b8:31:7b:2c:2a:24:64:ea:ad:31:25:
1a:54:a8:d9:97:0f:66:78:21:db:4c:f5:c3:85:f2:
b4:3d:e6:52:67:6e:9d:49:2e:c1:fe:62:8e:bb:e2:
bc:bc:2d:99:a4:e9:e6:d8:f1:ac:21:68:84:af:f3:
a4:ff:a3:85:4c:6f:d4:65:fd:b0:b7:b8:06:8a:55:
50:ed:8d:7c:ff:1c:bc:a2:28:76:de:75:26:44:39:
82:3f:5f:0e:e5:fb:78:cb:87:20:e7:4b:f0:75:3f:
a3:08:e5:51:e2:c1:3c:6b:b0:09:b1:39:ad:b1:78:
c5:d6:d3:75:34:fb:d9:e0:2d:2f:7f:a1:2e:30:c7:
bf:06:65:26:fa:8b:71:a8:e1:d8:ce:13:3b:aa:96:
2f:8b:f9:9b:ce:04:ac:05:b1:13:84:98:d6:a8:85:
be:01:d4:e0:46:38:a7:b6:bb:dc:1a:df:d6:b9:4d:
12:b1:ff:77:73:26:20:48:63:16:35:80:d9:5e:f6:
eb:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:F8:90:D1:20:3B:81:2C:D9:D9:60:84:B3:CD:1A:17:F6:D3:46:CB
X509v3 Authority Key Identifier:
keyid:64:7C:09:36:48:7E:C5:D8:03:E4:D5:A9:A5:10:0C:46:51:F4:54:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZHwJNkh-xdgD5NWppRAMRlH0VDc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/984602-4a90-4551-bf49-2edbdfaff47e/1/D_iQ0SA7gSzZ2WCEs80aF_bTRss.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/984602-4a90-4551-bf49-2edbdfaff47e/1/ZHwJNkh-xdgD5NWppRAMRlH0VDc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.64.78.0/24
Signature Algorithm: sha256WithRSAEncryption
84:be:4d:e4:f5:4e:1c:28:ff:09:24:3c:34:d7:10:ad:7e:5f:
f7:9b:8c:79:9a:ba:eb:92:05:8f:13:a9:c1:0e:f8:ad:d4:ef:
9a:6f:45:37:b6:b8:36:6e:30:90:9e:f1:95:64:5c:49:85:8a:
bc:b6:54:bd:08:63:22:b7:40:68:ed:7c:b6:94:6d:ee:40:45:
66:02:a3:97:26:45:78:77:ee:9f:b3:bc:eb:5e:18:66:b5:cc:
61:04:a1:5c:bb:a2:95:10:57:f6:51:83:27:20:4c:f3:d9:3e:
1e:a5:7f:59:e5:59:80:11:c7:b6:cd:df:1a:c0:ec:1d:27:3a:
1e:62:59:c6:e9:26:0d:55:ee:8c:9f:db:e4:e4:79:d8:6f:51:
dd:f9:5f:67:cb:86:fc:6f:6d:c8:52:10:66:bb:b2:6b:cf:61:
9a:53:4f:8f:f8:ba:3f:a3:3d:b1:db:0f:1d:64:b3:79:99:10:
ba:a5:b8:cd:50:91:0a:cb:a2:6f:c8:6b:99:cd:32:74:85:bc:
f5:2b:1c:29:eb:45:da:38:89:3c:e6:80:de:22:41:55:17:b8:
ed:91:9d:d1:51:6a:a2:33:81:21:81:27:14:3d:69:53:0a:44:
c5:0a:27:bb:5b:ff:8d:b5:b4:40:8e:f3:2a:4d:17:15:cd:16:
f1:07:fa:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 06:27:50 2025 by rpki-client