Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/8a6f72-c822-451f-a5c5-a7fd6c8e70fd/1/71BeoRLY37qqGRrW0q7PaZ4MISA.roa
File: 71BeoRLY37qqGRrW0q7PaZ4MISA.roa (raw, json)
Hash identifier: q87wHV6L3WsqVGDtFfCxv18cXyNSbCqzEF0eTOVfAv8=
Subject key identifier: EF:50:5E:A1:12:D8:DF:BA:AA:19:1A:D6:D2:AE:CF:69:9E:0C:21:20
Certificate issuer: /CN=ed800950a31dcdacaac56adb936a42beb845e24b
Certificate serial: 01941FFA399B0C3CF7D818D620E15CCF8AAD
Authority key identifier: ED:80:09:50:A3:1D:CD:AC:AA:C5:6A:DB:93:6A:42:BE:B8:45:E2:4B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7YAJUKMdzayqxWrbk2pCvrhF4ks.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/8a6f72-c822-451f-a5c5-a7fd6c8e70fd/1/71BeoRLY37qqGRrW0q7PaZ4MISA.roa
Signing time: Wed 01 Jan 2025 03:48:00 +0000
ROA not before: Wed 01 Jan 2025 03:48:00 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 63023
IP address blocks: 185.221.219.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:fa:39:9b:0c:3c:f7:d8:18:d6:20:e1:5c:cf:8a:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ed800950a31dcdacaac56adb936a42beb845e24b
Validity
Not Before: Jan 1 03:48:00 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ef505ea112d8dfbaaa191ad6d2aecf699e0c2120
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:9e:90:61:a2:0d:34:89:65:c7:d5:9b:b0:2c:
e0:78:04:8b:da:20:82:ab:53:a5:b9:c3:cb:d9:4f:
2f:f5:a3:35:fb:d5:ec:b3:3e:cf:9e:15:c2:4a:d3:
e1:33:3a:19:86:61:0b:0a:b1:4c:27:1c:db:9a:b3:
81:0d:e6:89:b3:61:f0:a0:8a:02:6f:91:9b:f7:39:
29:a8:94:b8:43:00:23:c4:93:19:bb:c9:49:0a:77:
9d:39:ef:fc:94:51:c4:6c:f3:cc:84:21:7c:5e:70:
98:7a:2c:b0:34:91:8d:33:4c:dd:2a:56:d2:86:c2:
de:20:2d:64:f6:bf:1f:72:bb:bd:aa:3c:97:42:36:
2c:22:92:88:28:2e:06:b5:0e:78:a7:e8:71:0d:66:
5d:2f:ec:99:f6:ce:c2:70:6e:06:ac:5b:30:bb:83:
9a:fa:84:be:af:7b:db:d0:2b:25:3d:37:22:d3:25:
30:5b:7b:dd:fa:3a:46:35:b8:69:72:54:98:7f:bd:
15:d9:a4:0c:e4:0d:bb:c7:a1:27:dd:dc:ff:2f:0a:
b4:ab:68:ea:12:6b:72:a6:ed:1e:b7:57:3b:a4:44:
57:91:69:aa:e9:2d:96:73:e0:79:63:c1:9c:16:9f:
6f:48:1c:de:03:e7:92:cd:19:af:06:26:63:06:3d:
6e:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:50:5E:A1:12:D8:DF:BA:AA:19:1A:D6:D2:AE:CF:69:9E:0C:21:20
X509v3 Authority Key Identifier:
keyid:ED:80:09:50:A3:1D:CD:AC:AA:C5:6A:DB:93:6A:42:BE:B8:45:E2:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7YAJUKMdzayqxWrbk2pCvrhF4ks.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/8a6f72-c822-451f-a5c5-a7fd6c8e70fd/1/71BeoRLY37qqGRrW0q7PaZ4MISA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/8a6f72-c822-451f-a5c5-a7fd6c8e70fd/1/7YAJUKMdzayqxWrbk2pCvrhF4ks.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.221.219.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:8f:84:6f:8d:71:7e:c7:41:be:2a:50:f7:0f:7a:64:42:8e:
77:cb:3f:ae:68:dd:58:8e:39:e5:90:58:58:f3:5a:b9:32:7d:
62:9d:9a:75:0d:aa:86:10:d9:e8:dd:08:21:f5:62:63:28:df:
dc:83:b0:fb:17:6b:47:5a:99:fc:cd:f0:1a:b5:d8:a6:60:d3:
3a:a9:2a:82:8b:86:eb:a6:7e:b8:b8:b7:34:21:02:e1:68:ee:
8f:a5:db:eb:e2:7c:bb:62:df:ff:c4:fe:51:b4:26:62:91:f2:
04:95:97:dc:a0:2e:dd:52:4e:e9:50:0f:2b:7e:99:24:49:a3:
13:fa:d1:4c:0b:0e:d7:05:3e:ec:f0:52:34:a4:e9:6a:d1:d1:
74:3b:1b:29:2f:63:c0:84:67:70:5a:d3:fb:a9:77:7a:5a:f4:
1c:43:f9:3d:55:db:d1:49:dc:65:49:df:57:b6:d6:7c:ce:9e:
7f:a5:d9:4a:2a:37:e2:60:08:ec:0f:d3:18:fd:e6:c4:9e:71:
5b:6f:b6:0c:45:07:25:05:82:bf:69:0b:74:89:ca:28:4b:c5:
2d:c8:4b:e6:fb:91:49:11:da:e8:bc:d0:5c:63:ae:97:f7:5a:
e1:1b:6b:18:8a:a0:42:56:1a:90:23:56:c5:95:9e:c6:8d:b9:
2a:9a:8f:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 06:30:33 2025 by rpki-client