Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/18bda0-a885-4eb4-a00b-5be2451490f1/1/K8S7eLHytGTIpofiD6ahHMn9WbU.roa
File: K8S7eLHytGTIpofiD6ahHMn9WbU.roa (raw, json)
Hash identifier: xQ956VqgebmEqFlzJwOmPSVEwg9BttoLk/QiRIjWEFg=
Subject key identifier: 2B:C4:BB:78:B1:F2:B4:64:C8:A6:87:E2:0F:A6:A1:1C:C9:FD:59:B5
Certificate issuer: /CN=480bf1c136ecffd312fc39ba3c82aff939de24f9
Certificate serial: 01D3CEAB
Authority key identifier: 48:0B:F1:C1:36:EC:FF:D3:12:FC:39:BA:3C:82:AF:F9:39:DE:24:F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SAvxwTbs_9MS_Dm6PIKv-TneJPk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/18bda0-a885-4eb4-a00b-5be2451490f1/1/K8S7eLHytGTIpofiD6ahHMn9WbU.roa
Signing time: Wed 12 Jan 2022 00:25:20 +0000
ROA not before: Wed 12 Jan 2022 00:25:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 834
IP address blocks: 185.179.91.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 30658219 (0x1d3ceab)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=480bf1c136ecffd312fc39ba3c82aff939de24f9
Validity
Not Before: Jan 12 00:25:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2bc4bb78b1f2b464c8a687e20fa6a11cc9fd59b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:71:69:69:0a:8f:09:44:7e:c0:34:00:36:be:
42:4f:02:f1:82:ef:ca:1b:3d:da:a9:ac:e2:f8:81:
46:9a:59:f6:5c:61:3c:b3:b5:20:ec:15:26:5d:26:
2a:78:cd:fc:32:f8:85:f9:8c:3f:ae:21:33:75:db:
3b:f0:aa:af:b5:46:27:9e:c6:04:36:b4:d8:7e:ca:
47:5e:a1:59:15:24:1b:a8:9f:e5:f8:65:6a:89:cf:
43:c7:6e:b3:24:8f:1a:d0:57:b4:7e:35:f9:98:9a:
a7:9a:96:d5:61:18:91:fe:a4:ba:9d:6d:9a:23:6d:
cb:a4:1b:c6:39:21:41:d2:21:0a:0e:f3:7a:15:6b:
c1:77:50:dd:0f:f7:bc:00:15:a6:04:46:be:83:75:
00:ef:86:1a:53:ee:5a:6f:fe:59:48:07:f2:bd:93:
87:6b:13:50:30:ae:a0:eb:ab:64:0e:27:6e:0c:e3:
ce:73:a7:04:4a:c2:a3:5e:b5:73:e4:12:36:7b:03:
86:82:5d:01:1c:d6:1d:a3:db:75:48:58:37:42:b1:
73:12:7a:b9:0b:dc:00:f8:47:03:9d:aa:b1:01:e9:
e7:a3:e2:81:9c:4b:6a:71:4a:e4:41:46:2f:95:28:
cc:30:89:ab:41:85:bb:81:b9:28:3b:b3:23:78:c5:
e4:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:C4:BB:78:B1:F2:B4:64:C8:A6:87:E2:0F:A6:A1:1C:C9:FD:59:B5
X509v3 Authority Key Identifier:
keyid:48:0B:F1:C1:36:EC:FF:D3:12:FC:39:BA:3C:82:AF:F9:39:DE:24:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SAvxwTbs_9MS_Dm6PIKv-TneJPk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/18bda0-a885-4eb4-a00b-5be2451490f1/1/K8S7eLHytGTIpofiD6ahHMn9WbU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/18bda0-a885-4eb4-a00b-5be2451490f1/1/SAvxwTbs_9MS_Dm6PIKv-TneJPk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.179.91.0/24
Signature Algorithm: sha256WithRSAEncryption
61:84:cf:d8:c8:c1:c8:b7:f6:9e:38:f0:e1:1f:92:fe:46:85:
92:0a:ac:7c:18:2a:92:2b:2e:a0:d9:55:6d:e8:15:af:ed:c2:
d1:9c:fd:79:87:79:ce:78:e5:d6:78:6c:5a:b5:e7:84:f8:8e:
c9:0c:a8:2d:f8:5f:3d:2c:f6:2c:c2:f7:2e:8c:1a:44:d1:18:
6a:d8:4f:26:3b:fb:7c:95:50:82:89:05:28:6f:78:41:ac:c8:
65:5a:ec:61:6b:de:a5:36:fa:dc:3b:28:57:39:86:62:91:3b:
fe:d7:13:47:9a:c5:90:45:71:62:39:7a:f7:a1:99:e8:7c:a4:
03:da:de:24:df:c6:de:ec:97:29:f4:3b:32:2e:45:f7:aa:93:
44:c1:40:e2:40:30:f8:1b:fe:37:7d:d5:ac:e9:23:45:75:8a:
db:44:05:cf:d2:f5:ba:22:15:ec:07:08:9d:94:15:48:f2:cc:
8b:8e:f2:85:df:49:c9:b5:e2:10:55:93:dc:08:8b:12:a6:d1:
5e:b4:27:27:9b:ad:db:a8:ac:11:ff:69:e9:c6:ac:47:ab:66:
48:ce:6f:39:fd:7b:cd:f5:14:40:e6:56:5c:9f:33:b3:85:c2:
03:86:d8:26:7a:4d:e6:8c:2a:8f:5c:cb:0d:3f:c4:f7:49:b2:
0a:3d:73:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:20:40 2025 by rpki-client