Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/3c9e24-7e5a-48b6-b75f-d1b36841dee1/1/f7zm4kNVsjEKkrD2ofAkWRjMGXc.roa
File: f7zm4kNVsjEKkrD2ofAkWRjMGXc.roa (raw, json)
Hash identifier: Uz74uzPqfzzuZ0rJIpcX2FtwYGmh39CQ7yqpVCsII98=
Subject key identifier: 7F:BC:E6:E2:43:55:B2:31:0A:92:B0:F6:A1:F0:24:59:18:CC:19:77
Certificate issuer: /CN=d162caa6a984f0885bfe8a7e5e091f932377442b
Certificate serial: 01856C1C8C7CA068DC5B8C85C176E3E488F1
Authority key identifier: D1:62:CA:A6:A9:84:F0:88:5B:FE:8A:7E:5E:09:1F:93:23:77:44:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0WLKpqmE8Ihb_op-XgkfkyN3RCs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/3c9e24-7e5a-48b6-b75f-d1b36841dee1/1/f7zm4kNVsjEKkrD2ofAkWRjMGXc.roa
Signing time: Sun 01 Jan 2023 06:54:48 +0000
ROA not before: Sun 01 Jan 2023 06:54:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212346
IP address blocks: 185.217.36.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:1c:8c:7c:a0:68:dc:5b:8c:85:c1:76:e3:e4:88:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d162caa6a984f0885bfe8a7e5e091f932377442b
Validity
Not Before: Jan 1 06:54:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7fbce6e24355b2310a92b0f6a1f0245918cc1977
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:53:28:c2:20:34:81:2f:7d:57:2b:ea:e1:1f:
6f:ed:1e:0f:b1:eb:5f:84:e4:af:e4:8e:1d:37:4a:
e1:b4:5b:e2:fc:52:3a:a1:94:b6:99:68:c6:71:70:
46:21:19:ac:e4:76:fb:fe:5b:2f:00:60:a2:27:78:
eb:4d:8f:55:8b:9d:85:c8:66:c7:04:c5:bc:04:1c:
4e:91:33:ec:89:24:14:d2:c2:40:2a:ef:36:3c:34:
6c:9b:58:0e:f1:54:1f:c1:02:39:49:15:c8:10:00:
89:f1:30:ab:95:b0:94:d5:e4:c9:7e:fa:0c:14:73:
34:8f:32:00:aa:90:6f:78:3c:ee:b1:59:63:32:61:
13:90:0f:ed:e8:27:c1:0a:cc:4b:08:e8:0a:2d:cc:
62:c3:a4:d8:b6:4b:84:ea:3c:70:5f:74:5a:cc:cb:
b7:c1:94:4a:8d:5c:f2:2f:40:1f:45:72:b5:91:1c:
d5:7a:86:98:2c:d1:66:b0:4b:53:e1:ee:75:c7:f0:
88:5b:b4:86:39:cb:24:07:6f:24:c0:51:2b:01:51:
9c:85:1f:c8:de:20:d9:8f:11:ce:da:cd:0e:c8:d3:
4e:13:38:85:9a:22:fc:47:21:c2:bf:94:02:ff:f5:
3f:ef:11:d3:00:f1:99:9c:6b:ea:fd:59:01:d9:40:
63:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:BC:E6:E2:43:55:B2:31:0A:92:B0:F6:A1:F0:24:59:18:CC:19:77
X509v3 Authority Key Identifier:
keyid:D1:62:CA:A6:A9:84:F0:88:5B:FE:8A:7E:5E:09:1F:93:23:77:44:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0WLKpqmE8Ihb_op-XgkfkyN3RCs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/3c9e24-7e5a-48b6-b75f-d1b36841dee1/1/f7zm4kNVsjEKkrD2ofAkWRjMGXc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/3c9e24-7e5a-48b6-b75f-d1b36841dee1/1/0WLKpqmE8Ihb_op-XgkfkyN3RCs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.217.36.0/24
Signature Algorithm: sha256WithRSAEncryption
23:cc:a8:1a:28:e2:f5:de:00:61:40:16:47:b9:4b:24:63:1e:
f1:1f:36:41:2f:c3:3f:32:53:47:08:ec:ae:c7:ef:8c:b6:6f:
4a:08:b2:fb:a9:be:47:f6:9f:88:83:92:17:e9:fb:0e:48:6f:
0d:e0:f8:72:c4:57:85:0b:12:94:68:d5:82:2d:84:3d:e3:c5:
8a:1f:7d:0e:e7:92:74:28:0b:b2:4b:fb:de:48:45:9f:2e:c9:
43:37:d4:a3:10:7b:52:ae:3e:be:62:69:55:74:99:dd:b9:e4:
ed:0b:59:ac:b6:29:d9:72:e6:e7:d2:9d:2d:cf:8c:fd:c9:6c:
d7:9e:98:4b:f0:c9:ea:4e:95:db:ea:88:61:d9:01:50:8b:13:
96:0f:11:a1:0e:dc:b0:75:e6:c7:64:8f:c7:b0:26:a6:09:1d:
8e:f5:1f:0b:53:db:4d:07:f7:76:4a:32:e6:3e:9e:e2:7b:7e:
c1:0c:99:cc:bf:55:a0:92:de:0d:29:f7:82:1c:7d:88:57:21:
e0:63:f6:73:78:d5:87:56:fe:67:39:4c:f5:22:38:f0:f7:19:
61:5f:ab:73:0f:cb:17:e5:f7:ed:1d:f4:98:c0:9c:ad:ef:fb:
f4:6f:b4:97:5b:da:a9:ce:ca:ae:c9:f3:b4:0c:eb:36:34:f6:
d7:f3:ab:67
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVsHIx8oGjcW4yFwXbj5IjxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQxNjJjYWE2YTk4NGYwODg1YmZlOGE3ZTVlMDkxZjkzMjM3
NzQ0MmIwHhcNMjMwMTAxMDY1NDQ4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3ZmJjZTZlMjQzNTViMjMxMGE5MmIwZjZhMWYwMjQ1OTE4Y2MxOTc3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvVMowiA0gS99Vyvq4R9v7R4Psetf
hOSv5I4dN0rhtFvi/FI6oZS2mWjGcXBGIRms5Hb7/lsvAGCiJ3jrTY9Vi52FyGbH
BMW8BBxOkTPsiSQU0sJAKu82PDRsm1gO8VQfwQI5SRXIEACJ8TCrlbCU1eTJfvoM
FHM0jzIAqpBveDzusVljMmETkA/t6CfBCsxLCOgKLcxiw6TYtkuE6jxwX3RazMu3
wZRKjVzyL0AfRXK1kRzVeoaYLNFmsEtT4e51x/CIW7SGOcskB28kwFErAVGchR/I
3iDZjxHO2s0OyNNOEziFmiL8RyHCv5QC//U/7xHTAPGZnGvq/VkB2UBjBQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFH+85uJDVbIxCpKw9qHwJFkYzBl3MB8GA1UdIwQY
MBaAFNFiyqaphPCIW/6Kfl4JH5Mjd0QrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMFdMS3BxbUU4SWhiX29wLVhna2ZreU4zUkNzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOS8zYzllMjQtN2U1YS00OGI2LWI3NWYt
ZDFiMzY4NDFkZWUxLzEvZjd6bTRrTlZzakVLa3JEMm9mQWtXUmpNR1hjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hOS8zYzllMjQtN2U1YS00OGI2LWI3NWYtZDFiMzY4NDFkZWUx
LzEvMFdMS3BxbUU4SWhiX29wLVhna2ZreU4zUkNzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAudkkMA0G
CSqGSIb3DQEBCwUAA4IBAQAjzKgaKOL13gBhQBZHuUskYx7xHzZBL8M/MlNHCOyu
x++Mtm9KCLL7qb5H9p+Ig5IX6fsOSG8N4PhyxFeFCxKUaNWCLYQ948WKH30O55J0
KAuyS/veSEWfLslDN9SjEHtSrj6+YmlVdJndueTtC1mstinZcubn0p0tz4z9yWzX
nphL8MnqTpXb6ohh2QFQixOWDxGhDtywdebHZI/HsCamCR2O9R8LU9tNB/d2SjLm
Pp7ie37BDJnMv1Wgkt4NKfeCHH2IVyHgY/ZzeNWHVv5nOUz1Ijjw9xlhX6tzD8sX
5fftHfSYwJyt7/v0b7SXW9qpzsquyfO0DOs2NPbX86tn
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:44:34 2025 by rpki-client