Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/d5b824-7f42-4841-8326-71ba429c7f86/1/V-L3bGPSBB2GAMiCuJOKaygzZP0.roa
File: V-L3bGPSBB2GAMiCuJOKaygzZP0.roa (raw, json)
Hash identifier: OxyCZvirL1qKhRLhM8fRgL7sewtRkn1gvkDBwMywUSY=
Subject key identifier: 57:E2:F7:6C:63:D2:04:1D:86:00:C8:82:B8:93:8A:6B:28:33:64:FD
Certificate issuer: /CN=107d6b6da16ae39489717464fb84577c7188f1f9
Certificate serial: 04D4C147
Authority key identifier: 10:7D:6B:6D:A1:6A:E3:94:89:71:74:64:FB:84:57:7C:71:88:F1:F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EH1rbaFq45SJcXRk-4RXfHGI8fk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/d5b824-7f42-4841-8326-71ba429c7f86/1/V-L3bGPSBB2GAMiCuJOKaygzZP0.roa
Signing time: Sat 01 Jan 2022 14:07:55 +0000
ROA not before: Sat 01 Jan 2022 14:07:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202391
IP address blocks: 185.235.136.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 81051975 (0x4d4c147)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=107d6b6da16ae39489717464fb84577c7188f1f9
Validity
Not Before: Jan 1 14:07:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=57e2f76c63d2041d8600c882b8938a6b283364fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:04:e7:bc:4b:d6:77:5e:7d:11:b4:45:e2:09:
dc:57:c7:85:11:f8:84:cb:47:48:1a:13:42:71:1e:
4e:0a:35:e3:f5:35:f7:7f:73:a0:b5:33:f1:d6:93:
b7:f7:cd:20:3b:00:7c:82:f4:f4:b3:73:06:bb:16:
c1:24:72:4b:57:8a:15:87:0b:53:0e:f6:84:de:6a:
59:11:68:54:e4:37:bb:ef:66:09:15:17:3c:e1:89:
5b:db:cd:31:8f:e9:fd:b9:15:56:e3:05:70:46:b7:
db:15:3c:ca:be:8d:e7:9c:b3:db:0a:34:11:17:aa:
bc:35:2b:56:34:6e:f7:9d:9f:a6:39:09:3c:81:e5:
fb:59:62:8c:b4:4a:17:c0:ab:7d:3c:77:5d:f1:f3:
61:32:93:8c:bd:cc:78:7b:c7:ac:cf:08:1d:20:9a:
4a:77:7e:ee:4f:fa:bc:ff:e3:f7:3f:72:41:0a:a2:
2a:25:0a:38:42:3a:35:c8:1d:53:19:34:0c:ee:d6:
f9:9e:0b:62:01:fb:46:a1:9d:80:b7:2e:47:66:f1:
40:b3:47:e0:d4:d0:3b:fc:35:2a:d9:b9:54:ff:b8:
57:e1:e7:b8:98:9c:25:0f:5a:2c:a2:30:f1:36:50:
c2:1f:0e:6e:ae:b6:a3:97:62:d5:17:81:b6:8b:24:
15:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:E2:F7:6C:63:D2:04:1D:86:00:C8:82:B8:93:8A:6B:28:33:64:FD
X509v3 Authority Key Identifier:
keyid:10:7D:6B:6D:A1:6A:E3:94:89:71:74:64:FB:84:57:7C:71:88:F1:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EH1rbaFq45SJcXRk-4RXfHGI8fk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/d5b824-7f42-4841-8326-71ba429c7f86/1/V-L3bGPSBB2GAMiCuJOKaygzZP0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/d5b824-7f42-4841-8326-71ba429c7f86/1/EH1rbaFq45SJcXRk-4RXfHGI8fk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.235.136.0/22
Signature Algorithm: sha256WithRSAEncryption
a2:84:77:11:53:14:bc:cc:6f:4f:81:9e:00:2a:68:a3:5b:cc:
9f:76:35:4c:69:12:5f:ef:fe:eb:d7:bb:36:fe:33:90:dc:9a:
bd:f4:47:45:b2:f8:26:c6:22:a1:26:12:53:ff:f4:c7:97:a4:
e8:ee:1d:a3:c0:76:1b:04:0a:07:c0:d5:b1:92:ed:0c:8b:90:
cb:b8:c1:36:e4:22:27:81:ec:98:d6:1a:3b:f7:37:0b:37:b5:
0e:85:74:b0:18:4a:2c:60:6e:a7:35:11:1b:f0:f8:5b:f7:0d:
78:8b:b4:90:0f:ae:ac:c9:ec:8c:91:d4:67:31:9e:e3:85:76:
14:c1:ed:09:ba:08:aa:14:eb:6a:b1:24:ba:de:1b:e7:b1:39:
f1:31:8c:f5:60:e5:b2:88:71:10:18:17:11:cf:63:b8:35:9f:
2d:4f:64:f4:0e:69:a4:06:82:0c:f4:b5:e4:71:f8:48:e3:5a:
85:85:59:87:d5:25:e6:c9:65:62:57:0a:69:74:fc:91:11:4d:
84:42:9f:14:bd:e9:68:0a:ea:0e:6e:d8:05:d8:bf:f2:cd:b1:
80:69:11:cc:5c:4d:68:62:2e:64:ff:7e:11:4a:43:72:a7:61:
53:c4:0a:17:41:23:61:76:df:69:1c:02:c6:32:79:7a:0b:1c:
b3:d4:df:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:41:51 2025 by rpki-client