Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/30e653-9c0b-4164-9a7d-ca7e6c3ae8ce/1/rXrdBA0XOby3MnXNDXl6-V2hfuE.roa
File: rXrdBA0XOby3MnXNDXl6-V2hfuE.roa (raw, json)
Hash identifier: uvm6g1lLj3zn5Xkn8++mET8rNJnQQuWVHJ2lWHqLtuU=
Subject key identifier: AD:7A:DD:04:0D:17:39:BC:B7:32:75:CD:0D:79:7A:F9:5D:A1:7E:E1
Certificate issuer: /CN=15982be200f2ed9be40fc983d94d9c726350a9d9
Certificate serial: 01870A7584E5C5C04941890E6422BBD91079
Authority key identifier: 15:98:2B:E2:00:F2:ED:9B:E4:0F:C9:83:D9:4D:9C:72:63:50:A9:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FZgr4gDy7ZvkD8mD2U2ccmNQqdk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/30e653-9c0b-4164-9a7d-ca7e6c3ae8ce/1/rXrdBA0XOby3MnXNDXl6-V2hfuE.roa
Signing time: Wed 22 Mar 2023 17:54:46 +0000
ROA not before: Wed 22 Mar 2023 17:54:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60721
IP address blocks: 185.13.227.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:0a:75:84:e5:c5:c0:49:41:89:0e:64:22:bb:d9:10:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15982be200f2ed9be40fc983d94d9c726350a9d9
Validity
Not Before: Mar 22 17:54:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ad7add040d1739bcb73275cd0d797af95da17ee1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:f5:2d:30:13:42:26:74:b3:de:e6:1f:89:37:
15:ab:92:64:d0:4b:07:d9:80:3f:2b:6f:9b:a7:c4:
6f:b5:9f:04:41:00:a2:4b:be:b6:d4:b5:d4:74:91:
31:73:08:e9:b4:e2:fe:de:62:f8:c5:a0:a4:d4:ed:
2a:3d:ec:f8:03:05:1c:68:df:de:ba:07:8f:96:4a:
38:d8:b1:13:d2:6a:42:5e:4b:c7:d7:4d:29:d3:4f:
26:32:e2:e2:3c:95:c1:1c:23:14:3d:68:39:41:0f:
1a:fe:d5:85:b1:d9:c2:e6:b3:2c:03:09:d1:8c:af:
1c:8a:b0:f5:95:cd:b8:f2:9d:39:e3:61:11:35:5e:
71:0f:0f:a1:b9:de:2f:7c:24:21:a4:34:e4:1f:4f:
58:fc:ae:3b:ac:6b:77:1a:1b:5f:ac:9a:2a:1b:bf:
11:ff:df:09:2e:7d:c0:f5:ba:38:15:d2:e1:37:65:
6b:e1:43:76:d1:37:26:31:48:45:f3:a8:3a:38:f9:
50:a3:30:03:14:92:a0:ec:72:44:76:d4:94:5b:f1:
13:19:3e:ae:7e:a1:92:bd:83:e2:94:5e:a2:2e:11:
8a:f9:54:dd:2f:53:1c:30:c0:a5:6e:8c:f2:7d:61:
52:d2:c7:12:93:31:50:b8:b8:74:86:91:0f:66:85:
3e:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:7A:DD:04:0D:17:39:BC:B7:32:75:CD:0D:79:7A:F9:5D:A1:7E:E1
X509v3 Authority Key Identifier:
keyid:15:98:2B:E2:00:F2:ED:9B:E4:0F:C9:83:D9:4D:9C:72:63:50:A9:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FZgr4gDy7ZvkD8mD2U2ccmNQqdk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/30e653-9c0b-4164-9a7d-ca7e6c3ae8ce/1/rXrdBA0XOby3MnXNDXl6-V2hfuE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/30e653-9c0b-4164-9a7d-ca7e6c3ae8ce/1/FZgr4gDy7ZvkD8mD2U2ccmNQqdk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.13.227.0/24
Signature Algorithm: sha256WithRSAEncryption
10:7f:56:9b:82:a3:a7:7a:0a:98:7a:55:8c:12:25:1e:42:ff:
81:61:35:cc:00:0c:2d:3f:57:eb:11:af:39:d0:27:d5:91:9a:
ea:8a:05:d6:6f:e7:41:33:10:8c:60:7d:15:1a:bb:9d:28:88:
1f:00:08:85:6b:6b:dc:31:c0:e1:2d:1b:8e:ab:cc:56:33:f5:
fa:91:86:bc:30:df:2d:53:1f:b1:39:eb:6e:b8:dd:3f:a4:fb:
3f:ba:e9:15:8e:37:57:d0:f6:5c:1d:9d:bb:96:61:fe:2c:85:
c2:d5:47:97:99:82:d0:c4:81:ca:22:30:67:66:06:b8:16:bf:
36:42:11:17:94:d0:a6:09:47:53:84:35:bd:bb:8b:c1:a5:1e:
11:65:2d:53:10:91:d3:fc:19:1c:68:93:0a:41:15:7f:a7:e9:
11:58:d2:42:9e:19:47:71:15:69:a2:01:9a:20:12:44:ef:6e:
8a:0a:bc:8a:58:4a:cf:3a:5a:f5:f3:fb:ff:72:9b:09:80:3f:
43:43:7a:4d:49:fb:3b:ca:e2:47:d8:2f:c7:5a:fa:4a:d4:36:
78:d1:84:33:1e:9e:d4:55:15:bc:e6:ca:86:77:aa:54:4d:29:
ef:fd:a5:f4:5d:f2:c3:5c:3a:59:eb:5c:d8:98:71:4e:d6:f6:
06:e8:10:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:11:35 2025 by rpki-client