Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/fb5257-a00f-4de8-9bf5-23644585f280/1/56h0fIJddlVhX02iMx8P9waSSyE.roa
File: 56h0fIJddlVhX02iMx8P9waSSyE.roa (raw, json)
Hash identifier: Id2uRI/CuWgIbZM7w5ffmAgEeQbtBoWrootMFrPyPUU=
Subject key identifier: E7:A8:74:7C:82:5D:76:55:61:5F:4D:A2:33:1F:0F:F7:06:92:4B:21
Certificate issuer: /CN=80f5b9798c5096c8da86d0fd91bff64d4055d956
Certificate serial: 01856E38A80696F7643C2A20F86B9E62358F
Authority key identifier: 80:F5:B9:79:8C:50:96:C8:DA:86:D0:FD:91:BF:F6:4D:40:55:D9:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gPW5eYxQlsjahtD9kb_2TUBV2VY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/fb5257-a00f-4de8-9bf5-23644585f280/1/56h0fIJddlVhX02iMx8P9waSSyE.roa
Signing time: Sun 01 Jan 2023 16:44:44 +0000
ROA not before: Sun 01 Jan 2023 16:44:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 185.182.65.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:38:a8:06:96:f7:64:3c:2a:20:f8:6b:9e:62:35:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=80f5b9798c5096c8da86d0fd91bff64d4055d956
Validity
Not Before: Jan 1 16:44:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e7a8747c825d7655615f4da2331f0ff706924b21
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:a7:76:76:9b:61:19:97:e2:70:f3:1e:6d:cb:
63:cf:47:ec:a3:b1:a5:24:2c:a5:df:75:08:27:5e:
04:41:05:a9:85:0b:b7:92:e8:38:3d:df:78:13:15:
7b:0e:bf:5a:58:68:e8:6e:e7:79:4a:9f:bd:50:78:
02:38:50:7f:88:b2:93:f5:0c:41:6e:05:e4:70:82:
12:a4:9b:9c:95:2d:ba:e3:15:bf:49:b2:e2:e9:92:
22:d4:42:07:4c:8c:68:b5:be:ad:b0:29:89:f2:ad:
d8:f7:a2:48:78:11:95:19:1c:cf:d7:3b:f5:5e:c9:
f0:b1:59:9b:2d:1f:0a:70:64:7f:73:d5:e4:9b:db:
86:46:5d:a7:66:ac:b3:47:7a:7e:18:82:71:1d:1e:
b7:c4:6c:bf:e5:1b:07:4e:fe:4d:0a:a9:ef:1c:26:
70:5e:ce:14:d8:8b:39:f0:91:a5:f1:96:3b:a2:29:
7b:56:f8:97:06:88:9c:93:21:7c:94:34:d8:3d:84:
f6:77:98:e8:08:3a:15:33:48:04:4f:e5:c3:4c:1b:
08:b2:37:94:6c:02:5e:f9:1c:72:c6:3a:8a:d3:dd:
2a:a3:bc:b4:f7:e4:74:4b:e8:71:30:01:15:28:f7:
fa:8e:38:37:c0:bf:2f:6f:e7:f8:89:6e:63:88:a6:
03:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:A8:74:7C:82:5D:76:55:61:5F:4D:A2:33:1F:0F:F7:06:92:4B:21
X509v3 Authority Key Identifier:
keyid:80:F5:B9:79:8C:50:96:C8:DA:86:D0:FD:91:BF:F6:4D:40:55:D9:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gPW5eYxQlsjahtD9kb_2TUBV2VY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/fb5257-a00f-4de8-9bf5-23644585f280/1/56h0fIJddlVhX02iMx8P9waSSyE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/fb5257-a00f-4de8-9bf5-23644585f280/1/gPW5eYxQlsjahtD9kb_2TUBV2VY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.182.65.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:87:77:57:63:ea:ea:d6:bf:57:86:0c:f6:a1:c0:2b:00:0a:
f8:32:e3:28:52:d3:59:dd:af:1c:5d:3e:3f:9b:3f:4e:00:e3:
8b:65:f7:e9:62:c3:de:8b:43:82:67:97:b9:37:8c:4c:e5:d0:
4f:8e:a4:2b:d4:ae:a7:91:0d:05:92:27:0c:89:1d:42:a8:e9:
de:4e:0a:a7:29:e0:f1:e1:92:76:40:f0:92:ac:b2:37:b4:32:
ca:2e:91:03:b0:e9:44:62:10:5c:53:13:bc:cd:1f:a7:9c:11:
4b:ff:79:66:fe:53:3e:45:9f:42:63:05:46:79:ae:4b:d9:be:
36:48:b8:a8:9c:ea:08:2b:27:cc:14:c0:ee:a5:42:6f:4f:18:
c6:6f:c5:b8:fe:39:82:ec:54:87:17:33:74:f7:fc:61:4d:0f:
16:1e:95:fb:1a:4a:5b:2d:cd:3b:52:cb:5e:58:a3:7c:3c:91:
83:48:d9:3f:34:8a:1a:a6:70:60:93:5d:22:43:7c:f6:2b:b7:
1f:9b:4b:2d:0b:2d:ef:01:52:38:6a:c6:5d:10:b3:2d:45:d4:
46:de:92:7a:5d:df:b0:63:9a:d5:21:15:fb:00:40:c3:9c:dd:
7a:37:46:6f:d6:6c:80:cf:32:60:7b:c1:ff:ee:37:2e:0c:a8:
9e:5f:e8:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 20:18:13 2025 by rpki-client