Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/b284a3-c2f1-4205-b1d5-47977669958d/1/O9SZrqZeRQDXYy_G-ELM_CeVFyw.roa
File: O9SZrqZeRQDXYy_G-ELM_CeVFyw.roa (raw, json)
Hash identifier: LCsSlQVxCzAxayA25ESx6LDDiWZAUKDWx5qxJNEUd4g=
Subject key identifier: 3B:D4:99:AE:A6:5E:45:00:D7:63:2F:C6:F8:42:CC:FC:27:95:17:2C
Certificate issuer: /CN=44c3b44cbbc4f3da5a4b4285c96ea3cb50d4d073
Certificate serial: 0247FE
Authority key identifier: 44:C3:B4:4C:BB:C4:F3:DA:5A:4B:42:85:C9:6E:A3:CB:50:D4:D0:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RMO0TLvE89paS0KFyW6jy1DU0HM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/b284a3-c2f1-4205-b1d5-47977669958d/1/O9SZrqZeRQDXYy_G-ELM_CeVFyw.roa
Signing time: Wed 01 Jun 2022 15:55:20 +0000
ROA not before: Wed 01 Jun 2022 15:55:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 24961
IP address blocks: 185.249.64.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 149502 (0x247fe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=44c3b44cbbc4f3da5a4b4285c96ea3cb50d4d073
Validity
Not Before: Jun 1 15:55:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3bd499aea65e4500d7632fc6f842ccfc2795172c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:b0:0b:fb:01:ae:90:70:3e:a3:6e:a6:f4:9d:
6d:41:8f:a8:a9:99:cf:c7:5d:85:e8:59:68:4c:12:
d7:4c:0a:50:cb:91:f2:1a:7a:b5:fb:84:8c:59:0e:
66:84:aa:0c:f9:cc:ab:c2:23:05:bf:65:d4:43:a3:
29:73:59:41:61:7b:ec:2f:15:65:6f:65:e7:0a:9f:
6d:b8:e2:e9:dc:95:6a:d0:bb:0a:ae:1c:39:7c:00:
78:be:95:79:16:69:b9:0f:b1:17:ef:bb:f7:03:6c:
a7:05:1b:e3:e7:19:bc:03:cb:9b:5a:71:0e:3d:c5:
c0:39:02:03:31:d2:2d:bf:29:84:8d:df:9a:9d:50:
a6:e5:25:7b:30:9f:3b:5a:0f:5e:02:ce:cd:5e:f2:
21:60:20:59:0d:c4:e7:68:2d:bf:12:89:62:3d:b5:
1c:c7:c0:5a:4b:52:6f:08:13:7f:64:38:18:c3:f3:
07:0f:bd:ad:04:28:99:82:ce:90:95:83:df:33:ee:
37:c9:89:d1:11:ee:27:a8:f8:bb:80:42:e0:68:7a:
09:39:77:d7:05:ca:d8:d1:7b:2c:9e:37:e5:60:27:
c2:b2:dd:e1:4c:82:74:0e:fd:08:7c:60:53:fd:b5:
b6:f4:c5:50:bd:9c:69:01:b6:f1:5f:dd:0d:ff:81:
62:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:D4:99:AE:A6:5E:45:00:D7:63:2F:C6:F8:42:CC:FC:27:95:17:2C
X509v3 Authority Key Identifier:
keyid:44:C3:B4:4C:BB:C4:F3:DA:5A:4B:42:85:C9:6E:A3:CB:50:D4:D0:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RMO0TLvE89paS0KFyW6jy1DU0HM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/b284a3-c2f1-4205-b1d5-47977669958d/1/O9SZrqZeRQDXYy_G-ELM_CeVFyw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/b284a3-c2f1-4205-b1d5-47977669958d/1/RMO0TLvE89paS0KFyW6jy1DU0HM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.249.64.0/22
Signature Algorithm: sha256WithRSAEncryption
77:71:8f:5e:00:8a:36:40:2b:ca:88:8f:f2:17:a8:0a:87:de:
16:82:4e:c3:f2:04:9c:5f:75:2c:e6:85:99:a9:77:5b:ce:54:
89:44:9a:2d:53:50:2f:30:36:98:da:2a:3a:3e:bf:60:69:7a:
fb:1b:88:99:d3:ff:ab:2a:a4:32:cb:d5:98:83:38:b8:01:17:
b7:cd:25:e3:5f:f8:2c:a5:79:8b:3d:ef:5f:7c:49:2f:00:b8:
63:82:68:4c:ce:e0:61:90:43:91:97:f1:aa:06:b9:6a:80:3d:
0d:4f:48:c7:2e:e3:b8:ff:f8:80:91:16:32:a3:62:e3:7c:fd:
05:6a:03:5a:f3:29:c0:9c:f6:e5:84:5a:20:91:23:99:05:18:
75:46:0f:3a:57:ec:0c:52:05:bc:4e:45:1d:63:ba:fc:9f:b9:
6b:89:49:34:f2:69:c1:89:7e:d6:1e:9d:af:40:10:df:ad:bb:
90:d1:4a:f2:31:08:9f:9b:55:5f:bd:a2:83:e2:89:d9:a7:de:
8e:27:d1:30:87:7e:f7:0f:f5:f5:71:c9:ea:28:5f:8c:36:d4:
46:a8:f1:b6:f9:e5:db:31:eb:f7:7f:cd:92:32:6f:98:97:24:
63:d3:77:d1:00:00:b6:ac:93:8b:b7:a4:20:51:9d:b9:5f:4e:
b8:91:a2:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 00:29:34 2025 by rpki-client