Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/17c994-1454-4b59-b661-c007436c20be/1/8ynVDdet8lNMgftzOcQRhxXmF1E.roa
File: 8ynVDdet8lNMgftzOcQRhxXmF1E.roa (raw, json)
Hash identifier: IutCggYEMA51OFNXmG9/yXWzahgajlK/VbI9hwSgH2w=
Subject key identifier: F3:29:D5:0D:D7:AD:F2:53:4C:81:FB:73:39:C4:11:87:15:E6:17:51
Certificate issuer: /CN=9b98f423292a35a98c220f90cf301dd4102584a1
Certificate serial: 018C4428D0E35FCED82B7160CC98626F6109
Authority key identifier: 9B:98:F4:23:29:2A:35:A9:8C:22:0F:90:CF:30:1D:D4:10:25:84:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m5j0IykqNamMIg-QzzAd1BAlhKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/17c994-1454-4b59-b661-c007436c20be/1/8ynVDdet8lNMgftzOcQRhxXmF1E.roa
Signing time: Thu 07 Dec 2023 12:02:54 +0000
ROA not before: Thu 07 Dec 2023 12:02:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197882
IP address blocks: 185.212.33.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:44:28:d0:e3:5f:ce:d8:2b:71:60:cc:98:62:6f:61:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b98f423292a35a98c220f90cf301dd4102584a1
Validity
Not Before: Dec 7 12:02:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f329d50dd7adf2534c81fb7339c4118715e61751
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:00:5a:2f:14:ee:fd:2a:10:fc:95:d3:a0:a0:
26:4f:e7:c8:c2:23:5f:b8:e2:76:13:fd:e8:98:69:
58:29:1a:47:83:c4:69:28:bc:e6:0e:2e:aa:8b:c8:
f1:7e:ec:a6:d1:4c:81:dc:ef:1c:21:ef:65:2d:a2:
37:39:97:fe:b5:57:69:04:ec:1f:54:28:0f:52:d8:
ba:09:2f:36:9f:ea:b9:6c:d2:dd:e8:30:06:31:6b:
32:e9:dc:e7:7c:a5:d7:3c:08:f2:03:77:82:f4:4d:
02:8e:09:d0:08:68:ac:e1:67:4a:09:86:4f:cf:2e:
50:65:76:57:21:cc:40:54:68:6d:f4:1d:cc:67:88:
d7:ca:10:ec:eb:82:f5:fd:ab:e5:53:0c:34:8f:2a:
be:4c:6d:e9:b2:ee:d4:88:e6:61:95:ee:0f:0c:c2:
f2:d4:a8:e4:ab:46:e9:97:63:ee:73:80:42:8f:6e:
f3:1b:f2:cb:0f:9f:99:7d:04:2b:08:a3:d1:c5:a5:
dc:8d:c5:e1:1e:88:d8:7d:69:aa:3b:5c:81:62:3d:
c3:5f:32:cc:06:f7:c2:94:82:3f:69:fc:f4:b2:07:
f3:fb:5b:ac:8d:51:9b:b8:b6:2f:28:39:e3:51:70:
80:00:2d:d4:8f:c2:a7:cd:7e:96:3c:4f:2b:29:fd:
93:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:29:D5:0D:D7:AD:F2:53:4C:81:FB:73:39:C4:11:87:15:E6:17:51
X509v3 Authority Key Identifier:
keyid:9B:98:F4:23:29:2A:35:A9:8C:22:0F:90:CF:30:1D:D4:10:25:84:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m5j0IykqNamMIg-QzzAd1BAlhKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/17c994-1454-4b59-b661-c007436c20be/1/8ynVDdet8lNMgftzOcQRhxXmF1E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/17c994-1454-4b59-b661-c007436c20be/1/m5j0IykqNamMIg-QzzAd1BAlhKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.212.33.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:28:ec:b1:2e:f2:85:61:cf:1f:3b:57:29:cb:d3:9d:16:15:
33:fc:58:26:04:3c:a4:cb:d2:a6:79:02:fd:14:74:32:47:e4:
8e:22:3d:42:7f:38:f7:ec:21:42:bd:03:e1:23:ce:da:4b:d2:
b9:0c:61:fb:2c:8e:ef:6a:51:44:72:0d:46:c0:bc:79:a2:2f:
a5:2e:c2:48:20:a3:88:35:c5:94:a5:33:10:c6:26:51:bb:20:
a0:cb:23:3c:c5:a9:6e:c0:c6:b7:37:8c:46:f8:41:8f:fd:18:
45:b4:95:9d:c4:73:a9:ea:06:0e:f3:aa:87:f4:03:39:ee:5f:
52:04:3c:a0:dd:1f:15:35:9e:9e:97:75:ea:21:21:b1:1b:e2:
61:00:c3:c0:90:75:21:71:8e:4a:c6:e8:47:e3:c6:9b:78:22:
f9:1d:04:9a:0b:6c:50:66:ab:cc:5e:c1:d1:df:03:eb:63:e9:
5d:5a:b1:21:9e:36:04:18:b8:26:10:8d:ea:92:5e:8b:45:0e:
87:c5:a6:60:30:c3:e1:cc:72:ca:3a:d8:0e:71:02:39:1c:7d:
d5:d7:2b:41:6d:a2:1e:b2:00:94:5b:c7:94:ca:67:7c:9e:ba:
4d:60:80:66:a7:ed:f6:5a:26:af:bc:c5:73:7c:cb:f0:aa:b1:
eb:2d:03:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 12 12:41:48 2025 by rpki-client