Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/9a331f-ddab-4d25-a6d7-a35c025fd122/1/ISD-ApS1i4KkR_tC3H2yLiHXjmk.roa
File: ISD-ApS1i4KkR_tC3H2yLiHXjmk.roa (raw, json)
Hash identifier: Xy0l8KQZeuC8BMshT2AfMDF4FCqV3jr16kAvX7nmWgA=
Subject key identifier: 21:20:FE:02:94:B5:8B:82:A4:47:FB:42:DC:7D:B2:2E:21:D7:8E:69
Certificate issuer: /CN=16779914bbc57b5eb908027a9d68b31017db8a0c
Certificate serial: 7E29ED
Authority key identifier: 16:77:99:14:BB:C5:7B:5E:B9:08:02:7A:9D:68:B3:10:17:DB:8A:0C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FneZFLvFe165CAJ6nWizEBfbigw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/9a331f-ddab-4d25-a6d7-a35c025fd122/1/ISD-ApS1i4KkR_tC3H2yLiHXjmk.roa
Signing time: Sat 01 Jan 2022 02:59:04 +0000
ROA not before: Sat 01 Jan 2022 02:59:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7018
IP address blocks: 109.205.190.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8268269 (0x7e29ed)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=16779914bbc57b5eb908027a9d68b31017db8a0c
Validity
Not Before: Jan 1 02:59:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2120fe0294b58b82a447fb42dc7db22e21d78e69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:89:29:42:25:43:9a:47:a9:7a:55:21:8e:ac:
bb:ef:cb:0d:da:e0:d1:8c:0e:8a:3d:93:f5:c9:b2:
e7:02:b2:34:e3:5a:0c:62:31:e7:1a:ed:c4:19:21:
9f:96:10:1b:15:89:67:35:b8:dd:f1:fc:7f:31:55:
f4:23:1d:47:56:b6:08:07:a3:9f:4f:cd:2e:57:03:
b7:d0:f6:e4:d5:be:66:1f:d9:34:3c:38:8d:8d:c1:
e7:e1:10:8d:ef:79:e6:bb:15:85:dd:00:5c:f0:c5:
11:90:b1:13:62:89:9d:1b:c3:3e:b7:32:c4:78:89:
a8:0f:e3:8a:d9:79:b0:3f:1e:d3:f4:84:39:3c:04:
51:32:69:d1:d9:a5:1c:1e:1c:c9:fb:44:8e:e5:5a:
be:a5:6f:c2:e9:54:11:c1:88:c4:7b:96:83:68:6a:
64:5c:e1:44:ca:dc:82:25:cf:78:b0:1e:de:ab:ed:
1d:0e:e8:e2:89:68:95:43:e4:5d:1a:62:69:ec:20:
31:2d:ec:67:5f:f4:63:44:3f:d3:fc:d9:d2:30:1d:
59:f9:c1:b5:44:39:0d:f5:9d:7e:38:07:55:07:a7:
09:7b:96:b5:36:13:2a:3c:6c:d7:7d:d4:66:2f:61:
35:da:d5:4f:1a:28:90:8d:f9:d4:a2:0f:7b:5d:13:
ff:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:20:FE:02:94:B5:8B:82:A4:47:FB:42:DC:7D:B2:2E:21:D7:8E:69
X509v3 Authority Key Identifier:
keyid:16:77:99:14:BB:C5:7B:5E:B9:08:02:7A:9D:68:B3:10:17:DB:8A:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FneZFLvFe165CAJ6nWizEBfbigw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/9a331f-ddab-4d25-a6d7-a35c025fd122/1/ISD-ApS1i4KkR_tC3H2yLiHXjmk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/9a331f-ddab-4d25-a6d7-a35c025fd122/1/FneZFLvFe165CAJ6nWizEBfbigw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.205.190.0/24
Signature Algorithm: sha256WithRSAEncryption
17:b1:f1:9f:aa:74:39:ce:6c:e5:a0:b0:d5:eb:4d:87:2b:8d:
f9:3e:08:09:52:95:50:46:7e:58:16:18:ab:4b:ca:f3:89:35:
fc:26:12:c8:94:c8:e9:fe:02:a1:88:9d:9c:5e:44:54:db:24:
b5:e6:30:8f:45:d9:d9:13:ae:cc:93:dd:60:e7:72:51:cb:d3:
24:e9:c7:61:55:85:6f:29:46:6f:47:f1:f1:ef:03:c3:ca:cd:
c5:2d:64:17:07:55:cc:3a:03:c8:c0:df:a1:b2:07:96:ec:95:
72:5c:9f:18:e3:ad:91:06:b1:0a:00:56:f9:6e:07:eb:30:fa:
7f:e4:51:fb:c5:3c:06:80:9a:f7:d0:f7:e4:37:52:73:16:60:
66:63:f2:a2:e7:33:76:94:4e:5f:89:93:00:55:83:e2:f8:88:
bb:21:32:2d:9e:6a:47:97:6f:d1:9d:62:d7:55:11:25:26:ad:
7c:f0:0b:02:c8:be:ee:41:c1:97:6b:59:72:4b:43:6e:ba:e2:
ab:01:a0:a3:63:f7:98:29:84:d3:f6:bd:75:df:e3:85:2e:48:
60:49:1a:da:0c:9c:7d:62:49:37:6c:56:73:cc:ff:46:df:47:
60:d6:3e:a2:3e:85:41:37:0b:9b:6b:a0:90:78:77:43:de:0c:
8e:e9:86:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:34:55 2025 by rpki-client