Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/6b8bce-584c-492c-bd7e-d0f31bc93079/1/1WLSb_7oWIhBJP1_R71ylXWixcA.roa
File: 1WLSb_7oWIhBJP1_R71ylXWixcA.roa (raw, json)
Hash identifier: Lz9+EGb2xbbMV3C2qJihrpRS8uKyvProQ7RlGtbGloA=
Subject key identifier: D5:62:D2:6F:FE:E8:58:88:41:24:FD:7F:47:BD:72:95:75:A2:C5:C0
Certificate issuer: /CN=ddf1df598f4a8f3a2d074ccb6f6d16b54d1d111c
Certificate serial: 3DADB27E
Authority key identifier: DD:F1:DF:59:8F:4A:8F:3A:2D:07:4C:CB:6F:6D:16:B5:4D:1D:11:1C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3fHfWY9KjzotB0zLb20WtU0dERw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/6b8bce-584c-492c-bd7e-d0f31bc93079/1/1WLSb_7oWIhBJP1_R71ylXWixcA.roa
Signing time: Sat 01 Jan 2022 12:06:21 +0000
ROA not before: Sat 01 Jan 2022 12:06:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60435
IP address blocks: 185.178.224.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1034793598 (0x3dadb27e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddf1df598f4a8f3a2d074ccb6f6d16b54d1d111c
Validity
Not Before: Jan 1 12:06:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d562d26ffee858884124fd7f47bd729575a2c5c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:b1:1d:23:b3:59:08:57:18:1a:5d:3f:12:d3:
05:ca:57:04:e5:3e:cb:90:93:84:5c:5b:16:f7:04:
b7:e1:18:67:58:46:8a:c8:fb:52:ff:09:fb:2c:3b:
4b:d7:72:11:47:ea:d2:96:05:6a:0d:6a:1e:2c:c5:
ad:97:3a:d5:9e:b1:64:cc:81:20:fa:03:ef:8b:22:
48:ce:8a:e4:7c:5b:b5:7d:89:b9:57:58:68:0d:f6:
a1:53:a9:c8:a5:7e:33:cf:e6:9b:dc:d8:ee:d7:f9:
da:10:95:6e:f3:4b:b1:ee:f0:8a:a9:7d:25:98:e2:
1f:b5:99:5c:89:ce:6c:ee:6f:d2:97:71:49:36:84:
6d:6a:19:e1:57:17:ff:a5:79:ab:81:34:fa:0f:29:
f1:9b:58:eb:98:59:11:3c:4a:ff:f6:be:81:5b:ac:
da:e7:2c:72:11:8d:62:82:b0:28:75:58:0e:14:ff:
42:6c:11:6d:5b:6d:15:d3:b4:11:43:f1:21:07:7d:
93:15:1e:65:8b:6c:a3:4a:da:7f:31:58:88:c8:14:
90:dd:2a:e4:2b:07:87:8e:3d:80:9e:9b:4e:7d:3c:
c0:b2:76:cd:47:14:3e:08:43:57:36:c6:46:98:3a:
02:27:ad:2d:1a:cf:89:0b:2f:02:56:85:64:0a:f2:
56:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:62:D2:6F:FE:E8:58:88:41:24:FD:7F:47:BD:72:95:75:A2:C5:C0
X509v3 Authority Key Identifier:
keyid:DD:F1:DF:59:8F:4A:8F:3A:2D:07:4C:CB:6F:6D:16:B5:4D:1D:11:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3fHfWY9KjzotB0zLb20WtU0dERw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/6b8bce-584c-492c-bd7e-d0f31bc93079/1/1WLSb_7oWIhBJP1_R71ylXWixcA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/6b8bce-584c-492c-bd7e-d0f31bc93079/1/3fHfWY9KjzotB0zLb20WtU0dERw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.178.224.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:a4:a4:9e:2c:d1:66:93:d2:ce:91:00:78:9e:97:6c:89:fe:
1e:4c:34:5a:a0:92:ad:da:b2:11:40:38:b1:81:a1:93:49:49:
2f:bf:88:42:02:fb:81:cd:49:ba:be:c1:31:71:2d:f8:11:43:
21:f6:2e:04:2e:40:70:3d:5b:00:82:7b:58:04:09:c8:19:25:
99:24:05:64:ef:04:76:16:56:24:86:5f:3c:4f:5c:76:9a:d6:
ae:ff:e0:71:9d:f9:b3:a1:58:28:e9:e5:40:4c:75:cf:e2:e4:
8d:c1:e2:2a:40:85:85:b0:49:c7:ae:5b:be:51:5e:10:67:3d:
62:00:ac:9c:db:d0:38:e0:78:a3:4e:b5:c3:97:0c:c4:c4:d4:
c1:e6:79:fc:6f:7c:da:dd:37:c3:80:56:fd:e4:7e:4e:33:14:
30:50:a0:8d:8e:60:46:94:20:a7:a9:64:5d:fd:b0:9e:4f:cb:
1e:86:7d:16:05:a5:9c:48:de:26:d0:a4:db:77:21:5b:63:2f:
d9:80:97:12:29:0c:90:9e:14:2d:ed:c7:b6:7d:24:9e:c2:db:
68:bf:b6:9d:6f:82:ba:72:a6:08:37:a8:af:d0:4f:59:d0:55:
d2:77:1d:ed:cb:d5:4e:63:37:d4:de:1d:0a:d7:f4:2b:54:7c:
57:98:b9:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 23:34:20 2025 by rpki-client