Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/0b4dba-0747-4e0f-8036-f2223606c538/1/h-4IpQ83l-zuUUJWS2bLLIkUaaE.roa
File: h-4IpQ83l-zuUUJWS2bLLIkUaaE.roa (raw, json)
Hash identifier: il3osZwI7ZPN227GOqAgN6HFc5BySIboQjD2vM8pibI=
Subject key identifier: 87:EE:08:A5:0F:37:97:EC:EE:51:42:56:4B:66:CB:2C:89:14:69:A1
Certificate issuer: /CN=73340fd7b3c285637adc00f1e61e2b8e402658f3
Certificate serial: 0297438E
Authority key identifier: 73:34:0F:D7:B3:C2:85:63:7A:DC:00:F1:E6:1E:2B:8E:40:26:58:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/czQP17PChWN63ADx5h4rjkAmWPM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/0b4dba-0747-4e0f-8036-f2223606c538/1/h-4IpQ83l-zuUUJWS2bLLIkUaaE.roa
Signing time: Sat 01 Jan 2022 04:01:24 +0000
ROA not before: Sat 01 Jan 2022 04:01:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51299
IP address blocks: 185.158.144.0/22 maxlen: 24
194.61.87.0/24 maxlen: 24
2a07:ae00::/31 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43467662 (0x297438e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73340fd7b3c285637adc00f1e61e2b8e402658f3
Validity
Not Before: Jan 1 04:01:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=87ee08a50f3797ecee5142564b66cb2c891469a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:42:66:be:78:d8:c8:44:72:21:ed:20:ac:7d:
6f:ac:33:de:d7:c0:6c:bb:77:7a:f5:9a:9c:ed:39:
b8:26:7b:bf:5a:ee:95:a2:56:3d:a3:9c:73:37:03:
d0:86:9d:f8:15:65:c3:ec:5b:c5:ba:34:10:3d:9b:
d6:68:a3:f8:64:62:9d:fe:68:3b:ea:60:4f:3e:41:
98:6f:c9:8a:08:bb:6a:df:c0:ae:06:f2:65:66:c9:
4d:79:6a:cb:f7:31:2e:b9:76:8e:ac:98:53:1f:5d:
7f:b9:a5:a9:70:09:08:8c:41:a1:f4:49:ff:31:e2:
44:db:d8:66:46:63:78:6c:52:c0:34:2d:ca:53:f8:
eb:fc:10:ec:40:93:73:6f:9f:bc:27:0d:54:b9:20:
67:5b:51:57:26:91:c9:3b:d6:08:e6:a4:4f:23:be:
0c:c0:96:66:2b:e4:e1:d7:39:e5:3f:f3:56:e6:24:
f9:ea:eb:d7:4c:be:0d:56:4c:50:27:9f:db:93:fe:
f5:9d:32:57:1b:d9:67:6d:ae:47:a3:55:b2:41:48:
6a:bf:42:15:e1:fd:87:6d:ac:b3:b2:64:71:4a:d8:
14:53:34:ab:16:f2:df:5e:78:3a:82:00:80:b1:cb:
c6:b2:d7:40:e7:98:01:7b:26:7f:97:2b:43:84:b8:
c5:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:EE:08:A5:0F:37:97:EC:EE:51:42:56:4B:66:CB:2C:89:14:69:A1
X509v3 Authority Key Identifier:
keyid:73:34:0F:D7:B3:C2:85:63:7A:DC:00:F1:E6:1E:2B:8E:40:26:58:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/czQP17PChWN63ADx5h4rjkAmWPM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/0b4dba-0747-4e0f-8036-f2223606c538/1/h-4IpQ83l-zuUUJWS2bLLIkUaaE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/0b4dba-0747-4e0f-8036-f2223606c538/1/czQP17PChWN63ADx5h4rjkAmWPM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.158.144.0/22
194.61.87.0/24
IPv6:
2a07:ae00::/31
Signature Algorithm: sha256WithRSAEncryption
8d:58:91:a9:e8:61:75:6b:12:bc:b5:69:c3:89:dc:50:6a:f3:
bc:20:bb:1f:73:0e:e0:da:8b:dd:08:0c:17:58:6f:b0:4c:dc:
ae:6a:a5:e1:96:75:00:9b:ec:83:65:17:fd:bb:0b:21:5a:cc:
cf:cd:ca:7e:46:50:55:ca:cd:fb:60:e2:7b:71:73:69:01:34:
91:e9:40:02:0d:1e:37:0a:92:ba:af:be:65:a5:11:cf:86:37:
f3:d6:f5:26:1a:34:21:4a:ab:a3:ed:aa:26:bd:f3:31:5a:67:
34:f2:ce:56:04:25:30:97:10:0f:c1:95:80:98:7a:d3:4c:7a:
d1:19:3a:2a:9a:86:b9:4d:fd:24:8b:f3:57:87:ca:7e:78:92:
92:53:7f:a6:e8:a0:c6:d5:56:e6:d0:f6:f0:be:5f:c4:4b:6c:
de:08:4c:1f:ec:08:c3:1c:50:93:2e:a3:c5:49:63:a4:82:10:
61:70:0c:d0:a7:19:74:4d:05:d3:d5:a8:9f:0e:29:dd:2d:22:
c2:b9:82:0a:70:8f:80:23:f4:d0:8b:ae:b6:25:29:e6:28:0b:
48:df:45:61:77:7b:f9:00:87:4b:da:f4:39:69:12:e2:d2:fc:
01:8f:5f:4d:a1:04:bd:cf:d9:43:1b:1b:9e:0c:f8:ff:d5:db:
06:d0:9e:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 23:43:50 2025 by rpki-client