Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/58a759-84ed-41b7-86cf-203560f26914/1/fhg-Bz8hgoe7GEpBLOwBoaB8wSY.roa
File: fhg-Bz8hgoe7GEpBLOwBoaB8wSY.roa (raw, json)
Hash identifier: CAE5cHPJj6x+oGi4+7wOHLZK34UJ+GV8KAM8jWrC8Yo=
Subject key identifier: 7E:18:3E:07:3F:21:82:87:BB:18:4A:41:2C:EC:01:A1:A0:7C:C1:26
Certificate issuer: /CN=7c54534c4ac3d163276a725bd82a3a7d8b2e0448
Certificate serial: 033F8E9B
Authority key identifier: 7C:54:53:4C:4A:C3:D1:63:27:6A:72:5B:D8:2A:3A:7D:8B:2E:04:48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fFRTTErD0WMnanJb2Co6fYsuBEg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/58a759-84ed-41b7-86cf-203560f26914/1/fhg-Bz8hgoe7GEpBLOwBoaB8wSY.roa
Signing time: Sat 01 Jan 2022 06:05:24 +0000
ROA not before: Sat 01 Jan 2022 06:05:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212552
IP address blocks: 185.231.59.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54496923 (0x33f8e9b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7c54534c4ac3d163276a725bd82a3a7d8b2e0448
Validity
Not Before: Jan 1 06:05:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7e183e073f218287bb184a412cec01a1a07cc126
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:dd:c1:5a:12:29:52:9e:73:28:6f:25:f7:47:
e4:8f:49:b9:96:02:a0:70:50:48:ae:74:4d:8d:65:
82:d7:2d:16:f8:3f:f6:e3:da:8d:2a:29:ca:37:f9:
28:a2:cc:4c:6e:47:a0:b7:6b:d1:50:b0:e7:8d:d1:
2e:a5:0b:b5:83:e5:ec:17:11:13:6a:e5:cd:44:93:
37:a2:5c:f1:e0:82:01:14:11:47:eb:2a:14:86:6a:
2e:cb:0c:6a:e8:3c:19:a5:6b:13:e5:5c:29:1c:2c:
23:73:f9:11:83:aa:e2:a4:99:e2:4e:4e:a8:62:c2:
4e:4b:64:c4:9b:1d:ca:c1:e1:2f:97:98:bf:a8:8e:
a1:f1:2e:e5:64:72:c7:b9:13:fd:6e:fc:a7:56:8b:
80:ba:12:5d:e5:39:4e:a0:df:6e:f3:dd:93:5f:56:
a5:7d:fb:44:b5:31:7d:d1:26:70:cd:1e:97:28:fa:
c7:b5:a0:6b:97:f9:66:23:94:d4:61:fb:a3:bd:d1:
ec:ac:0c:73:9e:2b:94:cb:a0:19:f9:db:95:e2:ee:
57:bf:03:08:94:05:e5:38:84:93:fc:f9:10:79:82:
48:a4:ce:c5:a0:1f:04:ee:d9:3d:12:e5:70:da:a9:
50:e2:d6:85:86:87:a0:90:d2:cd:90:cd:37:14:d3:
97:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:18:3E:07:3F:21:82:87:BB:18:4A:41:2C:EC:01:A1:A0:7C:C1:26
X509v3 Authority Key Identifier:
keyid:7C:54:53:4C:4A:C3:D1:63:27:6A:72:5B:D8:2A:3A:7D:8B:2E:04:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fFRTTErD0WMnanJb2Co6fYsuBEg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/58a759-84ed-41b7-86cf-203560f26914/1/fhg-Bz8hgoe7GEpBLOwBoaB8wSY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/58a759-84ed-41b7-86cf-203560f26914/1/fFRTTErD0WMnanJb2Co6fYsuBEg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.231.59.0/24
Signature Algorithm: sha256WithRSAEncryption
b9:84:10:03:b2:14:61:f3:a5:a2:71:0d:59:ff:9d:d0:46:9e:
d8:12:f8:8e:d9:e5:74:04:16:a1:6f:fe:17:6c:b5:78:39:dd:
2f:69:38:01:a8:4a:b8:b2:43:55:df:1b:5c:e6:2e:e8:6f:c5:
d0:f9:d1:b1:2b:f5:6c:ed:d1:4b:b3:06:6c:df:8d:85:e5:d0:
97:82:f5:67:50:9e:5b:e9:6b:0d:96:9b:85:b5:74:30:34:e2:
41:92:2b:23:77:c5:87:53:9b:f9:a9:5e:57:31:4b:36:d8:82:
23:cd:e8:ef:6c:de:73:0d:54:6b:5b:a1:c2:78:6e:e0:dd:48:
25:f5:e8:85:09:c7:8f:12:ac:de:15:52:5d:e7:91:6c:b7:74:
ff:3f:a7:9e:49:a9:06:ad:1f:65:12:d5:b6:9c:64:9e:a8:09:
53:80:5b:10:b0:e3:f7:ae:a6:89:8d:ae:c1:5f:88:3d:2a:d3:
25:42:9f:e0:81:1b:9e:8d:80:18:45:cb:89:27:d6:aa:6e:00:
d6:5e:04:bb:81:a0:f6:01:dc:ef:62:14:66:a3:44:42:46:f4:
73:32:18:aa:2d:c1:40:1e:3a:ca:d8:50:cc:53:52:21:26:ad:
ac:d3:55:ab:bc:67:3d:3a:91:a3:6e:bd:23:27:bc:93:83:71:
63:e4:28:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 02:56:10 2025 by rpki-client