Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/fb5257-a00f-4de8-9bf5-23644585f280/1/An7A5Aht1K7IDKPB_EoSm0h2jpg.roa
File: An7A5Aht1K7IDKPB_EoSm0h2jpg.roa (raw, json)
Hash identifier: hRaU06MKmGenDiOnXUFp/XmT5XWtfspTYmKOEHZMNlw=
Subject key identifier: 02:7E:C0:E4:08:6D:D4:AE:C8:0C:A3:C1:FC:4A:12:9B:48:76:8E:98
Certificate issuer: /CN=80f5b9798c5096c8da86d0fd91bff64d4055d956
Certificate serial: 01856E38A93D0D728B538F630CC906134DA2
Authority key identifier: 80:F5:B9:79:8C:50:96:C8:DA:86:D0:FD:91:BF:F6:4D:40:55:D9:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gPW5eYxQlsjahtD9kb_2TUBV2VY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/fb5257-a00f-4de8-9bf5-23644585f280/1/An7A5Aht1K7IDKPB_EoSm0h2jpg.roa
Signing time: Sun 01 Jan 2023 16:44:45 +0000
ROA not before: Sun 01 Jan 2023 16:44:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 185.182.65.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:38:a9:3d:0d:72:8b:53:8f:63:0c:c9:06:13:4d:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=80f5b9798c5096c8da86d0fd91bff64d4055d956
Validity
Not Before: Jan 1 16:44:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=027ec0e4086dd4aec80ca3c1fc4a129b48768e98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:0c:35:5e:95:fb:0a:81:67:b9:ce:58:b0:b9:
55:7e:45:43:ed:80:33:71:87:51:83:5a:d9:42:3b:
43:3c:49:4e:30:72:6d:62:c8:21:2e:3f:e8:a1:5f:
7d:fb:09:79:14:fc:6c:2b:0b:2e:de:d7:47:b3:59:
21:40:e2:a8:c9:e2:70:09:f4:e4:b6:93:8c:5c:14:
ed:28:2c:d4:38:cf:50:ba:b2:7b:87:6d:4e:74:ab:
e2:3a:df:c2:16:0e:2f:d7:2d:ca:20:ae:5b:59:9c:
9e:d1:82:f0:a9:d4:e5:6c:14:60:31:21:26:5a:ce:
63:dc:b8:a3:3f:ec:de:2c:85:d2:b7:cb:40:61:6e:
f8:9e:12:52:95:88:4c:10:01:87:1c:e3:83:45:00:
84:18:95:27:cf:0e:3d:06:48:c2:8e:0f:e6:d9:78:
d9:c0:08:6b:05:41:b3:5b:2e:9d:6f:55:f7:50:27:
01:a4:6a:9d:ac:5f:9f:b2:af:78:09:04:17:49:d4:
71:18:06:d2:f2:a1:c3:42:73:72:b4:af:20:23:2f:
93:88:1c:9a:a9:bb:48:56:c5:7c:d3:31:94:d1:24:
d1:ae:81:f1:58:db:37:a6:a6:1d:26:c6:8f:80:7d:
e8:f2:0d:ca:0e:16:36:e0:bf:fe:4a:b2:10:94:f4:
6d:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:7E:C0:E4:08:6D:D4:AE:C8:0C:A3:C1:FC:4A:12:9B:48:76:8E:98
X509v3 Authority Key Identifier:
keyid:80:F5:B9:79:8C:50:96:C8:DA:86:D0:FD:91:BF:F6:4D:40:55:D9:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gPW5eYxQlsjahtD9kb_2TUBV2VY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/fb5257-a00f-4de8-9bf5-23644585f280/1/An7A5Aht1K7IDKPB_EoSm0h2jpg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/fb5257-a00f-4de8-9bf5-23644585f280/1/gPW5eYxQlsjahtD9kb_2TUBV2VY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.182.65.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:98:5e:5b:a1:90:da:ea:53:4f:9a:ed:7b:17:db:4f:a2:b4:
62:8d:16:83:9e:14:38:6b:0d:2d:27:33:de:d2:cf:54:cd:05:
d5:c0:cb:bd:3b:7a:c1:25:c4:75:3c:81:4f:ae:12:7e:57:02:
73:d4:8f:5a:ac:5a:03:a4:bd:1d:ef:dc:d9:df:ec:56:5e:70:
2f:e7:0d:c3:a7:63:a4:29:55:0a:66:c1:0a:e2:6e:49:66:5e:
76:99:f0:a5:a1:48:80:82:f5:48:58:75:1c:d8:18:62:ee:6f:
51:ba:11:11:73:8c:5e:a5:24:62:2a:e9:a4:44:7c:f7:e8:24:
07:72:63:4a:9e:74:f5:e1:53:31:70:ba:2f:c7:e2:7e:6d:95:
6c:f2:85:a3:7d:89:1c:c7:ff:ca:9d:0e:8b:b0:29:ed:3a:de:
77:b6:63:3d:8f:9e:40:6e:cb:e0:31:6b:9c:43:dc:9f:58:ff:
f3:6c:c1:12:38:08:20:75:e4:0f:e2:7e:13:1c:ed:4f:ec:7c:
48:ee:18:9a:64:73:84:ec:cd:6d:1f:18:91:51:53:1f:20:18:
c3:bc:f3:93:89:62:d4:27:54:0f:3a:a0:88:e6:da:7f:06:f9:
ae:14:1b:ba:a3:dc:73:41:73:af:33:41:35:5a:31:63:0e:a6:
ff:3c:c7:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 03:56:58 2025 by rpki-client