Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/8470df-cb19-4194-9d8e-e19053be66ef/1/TyavgfELUFpb-Q_gk78qgIyzRuE.roa
File: TyavgfELUFpb-Q_gk78qgIyzRuE.roa (raw, json)
Hash identifier: 4xVimrxw4RIsm/aG3R0CTVH91tAqp44Sytf4MNelcOc=
Subject key identifier: 4F:26:AF:81:F1:0B:50:5A:5B:F9:0F:E0:93:BF:2A:80:8C:B3:46:E1
Certificate issuer: /CN=2b0c6d298f2832caa0cb1e1ada7fdf0cf300d8e1
Certificate serial: 01856C014F008E4058DE17F69F3B3B9F108B
Authority key identifier: 2B:0C:6D:29:8F:28:32:CA:A0:CB:1E:1A:DA:7F:DF:0C:F3:00:D8:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KwxtKY8oMsqgyx4a2n_fDPMA2OE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/8470df-cb19-4194-9d8e-e19053be66ef/1/TyavgfELUFpb-Q_gk78qgIyzRuE.roa
Signing time: Sun 01 Jan 2023 06:25:02 +0000
ROA not before: Sun 01 Jan 2023 06:25:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199775
IP address blocks: 185.168.134.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:01:4f:00:8e:40:58:de:17:f6:9f:3b:3b:9f:10:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b0c6d298f2832caa0cb1e1ada7fdf0cf300d8e1
Validity
Not Before: Jan 1 06:25:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4f26af81f10b505a5bf90fe093bf2a808cb346e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:b0:f9:ed:24:79:cb:60:71:57:b6:be:fb:f5:
e8:33:75:9b:b6:77:5f:cb:16:5d:3d:db:32:4a:97:
28:26:ff:cb:11:60:94:d3:c1:ef:00:34:d4:4e:be:
be:cb:59:af:3f:ac:ce:2e:9e:bd:0a:36:cf:96:af:
26:4d:58:8e:8f:ab:80:7a:ce:9e:ce:26:5c:55:10:
51:27:30:1a:68:22:41:bc:5a:a0:82:a3:a3:20:57:
f4:65:5f:e4:af:bc:6c:5a:ca:bb:dc:6e:ea:65:04:
4d:29:5f:6c:c3:21:d5:02:e6:8d:b2:33:b4:93:2a:
c3:d4:51:ed:f6:92:b5:0a:85:42:21:ea:e9:3b:dd:
1b:20:2d:b4:d6:ab:7f:be:d0:22:49:cc:c8:82:ba:
48:db:02:db:8d:9b:a3:75:bd:63:23:47:c3:3f:82:
43:5a:39:98:f7:a8:95:2b:93:18:80:87:cf:a7:5a:
40:b7:19:1d:4d:8c:e7:7c:f5:ac:2c:14:25:d6:5a:
e6:03:2c:1d:3e:17:eb:5f:5b:2a:f9:a8:01:d0:b7:
4f:c4:e2:90:fb:8f:e6:0b:e9:32:90:6d:44:4d:36:
69:e0:72:dd:e4:51:20:94:c2:26:74:6d:c5:74:ee:
e4:58:b2:ff:f3:1c:2c:e9:1b:11:bb:a4:d6:f6:19:
45:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:26:AF:81:F1:0B:50:5A:5B:F9:0F:E0:93:BF:2A:80:8C:B3:46:E1
X509v3 Authority Key Identifier:
keyid:2B:0C:6D:29:8F:28:32:CA:A0:CB:1E:1A:DA:7F:DF:0C:F3:00:D8:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KwxtKY8oMsqgyx4a2n_fDPMA2OE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/8470df-cb19-4194-9d8e-e19053be66ef/1/TyavgfELUFpb-Q_gk78qgIyzRuE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/8470df-cb19-4194-9d8e-e19053be66ef/1/KwxtKY8oMsqgyx4a2n_fDPMA2OE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.168.134.0/23
Signature Algorithm: sha256WithRSAEncryption
8b:4a:ad:84:71:2b:41:c8:30:8a:17:bc:08:97:0c:e6:d4:0c:
1d:20:9a:7a:ff:35:66:aa:eb:12:fb:a0:d7:b0:0e:32:cf:e2:
d4:08:b3:90:84:8d:36:82:05:ba:4d:7f:b3:ab:55:fd:05:98:
08:2f:83:1a:fb:cd:c3:3d:a3:71:66:8a:ba:a5:4a:f4:aa:b7:
12:91:27:da:b7:e1:99:a2:a3:a7:55:6e:24:f5:d6:8f:b6:2d:
ed:a5:f0:f5:ac:f6:6c:9f:83:25:6d:92:e9:27:df:85:fd:6a:
a0:56:4a:b2:9b:cb:c8:1a:b0:d6:b5:9d:a7:7b:17:d5:91:26:
64:1d:8b:62:6a:8c:1b:58:35:b6:f4:42:c7:e5:b2:92:7d:6b:
61:e4:8f:75:14:6c:53:5a:92:07:37:98:b5:8f:a3:06:88:3d:
45:c1:ab:ef:66:cd:6b:08:67:c9:41:93:a3:46:cb:0e:64:25:
e7:be:fa:ef:43:2b:fd:be:91:d5:7e:59:44:c4:a0:a4:93:e7:
18:1a:98:a4:ac:8a:1d:a4:50:92:5f:88:be:7f:92:61:a0:7d:
42:01:9a:0d:7e:16:80:8f:60:5f:ee:cb:c9:5c:7f:a1:e9:6b:
66:af:71:ca:9e:90:bd:85:19:6b:7c:0a:e0:fa:85:8b:59:1a:
b9:2a:14:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 20:11:04 2025 by rpki-client