Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/9cc39c-dd7b-4892-94bf-ee46ac018600/1/DB7RwIjIQiGVRqnFBKKQ-C6tq-Q.roa
File: DB7RwIjIQiGVRqnFBKKQ-C6tq-Q.roa (raw, json)
Hash identifier: iZz1PzpZZxEg/68JSS/No2H5ymZlLjN1WvoxsZl+v2k=
Subject key identifier: 0C:1E:D1:C0:88:C8:42:21:95:46:A9:C5:04:A2:90:F8:2E:AD:AB:E4
Certificate issuer: /CN=b0b6a49bcc10de340e39d203f56658bd7d648ddf
Certificate serial: 019422FB4E03765448967DDD71E0913E1A48
Authority key identifier: B0:B6:A4:9B:CC:10:DE:34:0E:39:D2:03:F5:66:58:BD:7D:64:8D:DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sLakm8wQ3jQOOdID9WZYvX1kjd8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/9cc39c-dd7b-4892-94bf-ee46ac018600/1/DB7RwIjIQiGVRqnFBKKQ-C6tq-Q.roa
Signing time: Wed 01 Jan 2025 17:48:02 +0000
ROA not before: Wed 01 Jan 2025 17:48:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 31225
IP address blocks: 83.219.224.0/19 maxlen: 19
83.219.224.0/22 maxlen: 22
83.219.225.0/24 maxlen: 24
83.219.226.0/24 maxlen: 24
83.219.227.0/24 maxlen: 24
83.219.228.0/24 maxlen: 24
83.219.229.0/24 maxlen: 24
83.219.230.0/24 maxlen: 24
83.219.231.0/24 maxlen: 24
83.219.232.0/24 maxlen: 24
83.219.233.0/24 maxlen: 24
83.219.234.0/24 maxlen: 24
83.219.235.0/24 maxlen: 24
83.219.236.0/24 maxlen: 24
83.219.237.0/24 maxlen: 24
83.219.238.0/24 maxlen: 24
83.219.239.0/24 maxlen: 24
83.219.240.0/24 maxlen: 24
83.219.241.0/24 maxlen: 24
83.219.242.0/24 maxlen: 24
83.219.244.0/24 maxlen: 24
83.219.246.0/24 maxlen: 24
83.219.247.0/24 maxlen: 24
83.219.248.0/24 maxlen: 24
83.219.249.0/24 maxlen: 24
83.219.250.0/24 maxlen: 24
83.219.252.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:fb:4e:03:76:54:48:96:7d:dd:71:e0:91:3e:1a:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0b6a49bcc10de340e39d203f56658bd7d648ddf
Validity
Not Before: Jan 1 17:48:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=0c1ed1c088c842219546a9c504a290f82eadabe4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:4f:3b:45:47:3e:21:14:4a:6d:af:fb:6b:59:
5d:81:20:6f:20:7b:55:e0:ce:34:cc:6a:1e:31:79:
af:92:66:ed:7b:7d:50:e1:10:bb:d1:fb:23:9e:1c:
57:83:1a:f4:15:0b:57:ba:c7:41:d1:3b:59:d5:79:
37:35:91:bd:c0:c7:ef:fb:d8:b9:14:98:73:58:e3:
62:10:4b:a5:49:45:3b:aa:a7:09:bc:66:6f:bd:07:
b1:1f:26:17:3a:37:c2:01:0b:83:85:92:02:3a:05:
42:7d:25:1e:21:49:b8:5a:7a:28:8a:e5:30:25:c2:
95:56:f1:46:ff:f7:c0:88:f3:6a:0a:95:a1:f8:d7:
e0:85:02:dd:6d:d9:61:a1:6a:de:85:9c:2c:dc:17:
b1:ba:b8:a5:e4:b3:6e:6a:20:97:45:b6:f9:0d:e5:
ec:08:7e:8a:37:ef:11:b4:f2:3a:61:ac:a7:bb:01:
03:ed:1a:8c:b3:c8:27:23:79:ea:ed:dc:ad:af:08:
3a:0c:c7:2d:f4:c2:54:04:8a:01:b2:d8:41:29:e1:
54:bf:32:ad:01:cb:32:a0:aa:7d:e3:f3:49:4a:ca:
0b:37:53:e1:64:af:61:92:5f:97:3e:6a:18:a5:11:
61:a5:13:f6:68:75:99:90:32:90:6a:88:aa:4a:c0:
4b:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:1E:D1:C0:88:C8:42:21:95:46:A9:C5:04:A2:90:F8:2E:AD:AB:E4
X509v3 Authority Key Identifier:
keyid:B0:B6:A4:9B:CC:10:DE:34:0E:39:D2:03:F5:66:58:BD:7D:64:8D:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sLakm8wQ3jQOOdID9WZYvX1kjd8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/9cc39c-dd7b-4892-94bf-ee46ac018600/1/DB7RwIjIQiGVRqnFBKKQ-C6tq-Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/9cc39c-dd7b-4892-94bf-ee46ac018600/1/sLakm8wQ3jQOOdID9WZYvX1kjd8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.219.224.0/19
Signature Algorithm: sha256WithRSAEncryption
25:b9:0e:7b:f6:d2:24:e0:92:3e:24:19:4c:54:17:a4:7d:44:
33:41:8e:fa:97:f5:46:2c:8d:3e:2f:ab:44:c3:9a:11:f1:8c:
36:65:9f:45:04:14:af:84:7a:7f:71:0b:31:09:8b:1b:d5:51:
e8:c8:f4:6d:6e:ce:55:8f:00:81:df:a2:86:44:be:ff:7f:a5:
f4:e6:a1:4a:97:8d:6e:b3:15:86:f9:2c:4b:08:c7:93:a5:e3:
3f:f1:16:9a:d4:0c:f2:71:10:3f:ee:2b:4b:77:6d:cb:11:a9:
76:a1:c2:5f:b1:d3:f5:0f:ec:49:55:f1:82:c7:f5:51:84:05:
ab:00:4f:a0:0c:d9:d4:d4:4d:15:df:79:7e:bd:c1:43:86:b5:
06:e8:25:50:e9:1b:30:04:67:1f:05:9a:93:1b:90:86:e7:4a:
0c:a9:6a:6a:3f:ff:a0:83:bc:32:21:e8:b1:f1:db:e3:3c:7d:
1c:3d:74:69:26:a1:ef:93:5b:ad:8e:80:88:45:b7:40:eb:f7:
bf:50:f4:68:43:17:fd:88:5c:98:d0:d4:c1:c4:f8:d6:98:0f:
e4:e8:7b:fe:9a:63:6e:cc:dd:92:bd:15:f5:5f:b7:34:f3:67:
cc:b7:d7:17:47:59:76:7e:4e:9d:95:a9:bd:d3:8a:6a:9f:17:
3c:e8:e8:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 03:40:18 2025 by rpki-client