Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/097658-648d-4b70-ba1d-c997641ff2e9/1/7opYfbe5NySSr3gjDx4w3keg0eU.roa
File: 7opYfbe5NySSr3gjDx4w3keg0eU.roa (raw, json)
Hash identifier: Sf59Jw54EZnOiVf8lgBKwU+aXPijQoV01Hgyeq+/j+E=
Subject key identifier: EE:8A:58:7D:B7:B9:37:24:92:AF:78:23:0F:1E:30:DE:47:A0:D1:E5
Certificate issuer: /CN=ac4b9a5778be4c16b7c6a260036adfe2e4562d6e
Certificate serial: 0644BB5B
Authority key identifier: AC:4B:9A:57:78:BE:4C:16:B7:C6:A2:60:03:6A:DF:E2:E4:56:2D:6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rEuaV3i-TBa3xqJgA2rf4uRWLW4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/097658-648d-4b70-ba1d-c997641ff2e9/1/7opYfbe5NySSr3gjDx4w3keg0eU.roa
Signing time: Sat 01 Jan 2022 01:54:42 +0000
ROA not before: Sat 01 Jan 2022 01:54:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3302
IP address blocks: 195.184.75.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 105167707 (0x644bb5b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ac4b9a5778be4c16b7c6a260036adfe2e4562d6e
Validity
Not Before: Jan 1 01:54:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ee8a587db7b9372492af78230f1e30de47a0d1e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:12:35:48:cf:5b:33:e2:b7:a0:0c:af:13:c1:
05:99:bf:08:11:ec:a8:c5:03:58:0a:77:07:6d:bd:
7c:80:c4:e5:57:40:67:a0:64:89:d4:8a:a0:77:59:
e5:cc:93:f0:cd:96:7e:0e:f4:cc:16:6a:1f:8f:24:
ad:6b:42:41:b4:4a:0b:72:1b:d6:e9:60:8b:03:e1:
30:d0:d1:72:63:14:6c:3f:49:38:68:2e:9d:9c:06:
7f:e7:bc:5b:62:45:b1:ae:5d:80:19:51:49:e2:ac:
90:60:00:48:f6:ac:c6:de:70:89:43:61:f4:63:59:
ec:a5:45:81:a2:02:3f:f4:98:75:64:8d:e0:92:b2:
5f:35:4b:ca:3c:d5:ef:d0:7c:c0:12:f5:8a:60:3b:
b2:23:7e:f4:26:5b:21:29:c1:c1:c7:a9:50:49:b8:
54:55:7c:aa:ce:50:97:c0:8f:5f:40:38:d3:41:88:
d4:b3:a9:d0:6e:17:f8:b4:f3:af:10:41:90:27:75:
f9:93:75:a8:b2:6b:85:09:0c:be:ff:6c:d1:49:27:
b8:58:a5:a8:79:52:05:53:60:e2:b6:a0:45:a3:e0:
3c:9a:83:4b:4a:d7:c9:e7:4f:53:41:bd:92:96:30:
25:0e:16:b2:62:1a:14:5b:ce:4e:0c:a3:62:7e:d0:
28:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:8A:58:7D:B7:B9:37:24:92:AF:78:23:0F:1E:30:DE:47:A0:D1:E5
X509v3 Authority Key Identifier:
keyid:AC:4B:9A:57:78:BE:4C:16:B7:C6:A2:60:03:6A:DF:E2:E4:56:2D:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rEuaV3i-TBa3xqJgA2rf4uRWLW4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/097658-648d-4b70-ba1d-c997641ff2e9/1/7opYfbe5NySSr3gjDx4w3keg0eU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/097658-648d-4b70-ba1d-c997641ff2e9/1/rEuaV3i-TBa3xqJgA2rf4uRWLW4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.184.75.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:3a:fa:d7:52:3b:83:65:4d:b2:06:23:b6:e2:78:e3:3a:e2:
cb:dc:62:1a:70:3b:e2:df:52:0a:4c:84:45:1c:10:40:b3:64:
3a:5c:b1:5a:94:59:69:7e:e1:c7:2f:c9:cb:fe:f9:86:b2:ca:
9b:76:a0:a7:18:f0:d1:60:59:e6:29:28:ed:38:74:67:47:5c:
bb:6a:89:9b:01:ee:2e:ed:48:08:9a:bf:19:8d:cc:73:18:50:
80:7b:7d:5a:b2:94:f4:5d:ab:74:16:94:1d:1a:b3:a2:80:e1:
5c:0d:44:87:91:52:56:40:bd:75:98:43:d4:16:3f:b7:6f:42:
37:c7:bb:74:a2:de:46:5e:70:02:9b:04:59:a8:80:5e:27:31:
d5:a5:88:e8:b2:ca:43:e9:6f:a9:a8:dd:f5:a1:26:dc:e4:8b:
47:5f:d0:ba:ca:6a:a3:a3:52:52:19:0b:c0:f6:78:e3:4b:26:
a3:75:21:37:d2:db:6e:94:af:fb:2c:31:3b:35:c0:53:af:3e:
00:2d:5e:60:7f:cf:dd:54:df:d0:29:8b:e1:98:03:e7:01:db:
9b:81:70:7f:0a:68:3f:83:d4:8e:84:f9:75:d3:a1:4c:5f:09:
f0:aa:de:e8:a2:9f:30:7a:63:2e:3d:18:ab:ca:ba:c1:2b:23:
ab:08:03:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:02:20 2025 by rpki-client