Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/310378-5575-4619-bd6f-07fb08f31afd/1/0drYwY6apwghzvq4C00-L2OEhwU.roa
File: 0drYwY6apwghzvq4C00-L2OEhwU.roa (raw, json)
Hash identifier: WMGc01p0AEfj2FkPfYaRnbkazC/Z7RfvK2hEUNCefjI=
Subject key identifier: D1:DA:D8:C1:8E:9A:A7:08:21:CE:FA:B8:0B:4D:3E:2F:63:84:87:05
Certificate issuer: /CN=619480444f41e7f89b3c9d775c01690e14bbc553
Certificate serial: 018578863EE86B5749FFAF54CD3D2146E7D8
Authority key identifier: 61:94:80:44:4F:41:E7:F8:9B:3C:9D:77:5C:01:69:0E:14:BB:C5:53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YZSARE9B5_ibPJ13XAFpDhS7xVM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/310378-5575-4619-bd6f-07fb08f31afd/1/0drYwY6apwghzvq4C00-L2OEhwU.roa
Signing time: Tue 03 Jan 2023 16:45:41 +0000
ROA not before: Tue 03 Jan 2023 16:45:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3356
IP address blocks: 185.83.229.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:78:86:3e:e8:6b:57:49:ff:af:54:cd:3d:21:46:e7:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=619480444f41e7f89b3c9d775c01690e14bbc553
Validity
Not Before: Jan 3 16:45:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d1dad8c18e9aa70821cefab80b4d3e2f63848705
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:f3:c0:a8:ad:7d:82:f5:99:a4:59:1f:b8:9b:
92:63:42:79:34:9c:45:8d:1e:03:77:1c:80:5f:4a:
92:03:6a:f1:81:da:9d:5c:91:c2:83:06:40:62:ab:
76:f6:8b:e3:d5:39:67:03:4c:2d:16:b2:dd:a2:84:
d1:32:52:9d:dc:6d:02:e6:7f:26:11:c1:a8:b0:b8:
be:62:74:cf:cd:75:21:65:f1:04:13:d3:a6:c0:df:
ac:f9:c7:8d:ae:c7:98:36:7e:02:e5:99:36:9d:dd:
9a:ee:a0:92:b4:15:16:61:40:42:70:1c:cc:02:e6:
ed:a8:91:9d:12:74:b3:40:f1:8c:23:72:9c:45:8a:
7f:bc:14:24:9b:90:08:74:84:d4:b2:6d:a9:9c:4a:
ac:e6:4c:70:70:b2:39:de:4c:b3:b8:97:a8:be:01:
f5:42:1b:bd:ad:ed:d7:25:32:5c:bd:4f:5b:ed:dc:
44:93:7a:aa:30:8a:73:31:32:fb:2d:44:9d:7c:9b:
d8:58:da:e0:07:15:95:a7:00:9a:22:8d:4d:fa:ab:
b0:c9:63:76:8f:f5:24:4d:b1:1f:b8:5c:88:a1:ec:
95:ad:b0:1d:ac:bc:57:36:85:5e:af:9d:ed:9e:80:
b9:1b:dc:2f:29:7d:f4:87:fa:ac:1c:18:49:f4:83:
65:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:DA:D8:C1:8E:9A:A7:08:21:CE:FA:B8:0B:4D:3E:2F:63:84:87:05
X509v3 Authority Key Identifier:
keyid:61:94:80:44:4F:41:E7:F8:9B:3C:9D:77:5C:01:69:0E:14:BB:C5:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YZSARE9B5_ibPJ13XAFpDhS7xVM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/310378-5575-4619-bd6f-07fb08f31afd/1/0drYwY6apwghzvq4C00-L2OEhwU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/310378-5575-4619-bd6f-07fb08f31afd/1/YZSARE9B5_ibPJ13XAFpDhS7xVM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.83.229.0/24
Signature Algorithm: sha256WithRSAEncryption
54:ba:a5:1e:77:cd:2d:f3:65:f1:39:66:9d:cd:63:dc:12:9d:
01:44:a4:88:1f:c9:e2:5b:62:05:31:88:70:b9:2b:f5:1d:3d:
5e:ae:52:53:99:ea:f9:a3:b1:56:3e:8d:12:13:04:10:e9:7f:
c7:48:f9:bd:70:6c:48:47:f2:2b:dc:44:75:f7:ee:1d:17:62:
3c:5b:e4:31:66:0c:55:ca:65:a1:0b:98:ec:3b:f2:31:47:ef:
db:6d:96:0e:b6:1e:38:fa:ad:34:95:aa:39:01:06:a0:50:0b:
d3:c8:6b:2b:a3:2a:3c:9d:eb:f8:3b:fc:3a:fa:c6:ab:15:b4:
9c:a3:05:fc:db:3a:e5:99:2b:4a:a3:5c:54:64:9d:24:40:b1:
c3:c4:18:9f:4e:1d:c4:07:0b:a9:2b:a6:d0:b3:cd:1d:34:c3:
84:e7:32:11:65:29:8f:1a:00:70:e2:a5:fa:98:3e:9c:6b:1b:
a6:67:d2:c6:c4:5b:b8:94:08:44:d2:24:65:d8:51:20:3b:0a:
6a:59:f0:9f:7a:37:62:16:54:eb:0c:5b:47:fd:56:81:a2:2a:
2e:0c:b9:7e:90:59:11:82:c5:7e:fd:31:7e:e5:d1:87:5d:13:
bb:72:48:7b:47:82:35:7e:4d:72:2e:d6:40:da:06:40:89:39:
34:65:8c:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:46:01 2025 by rpki-client