Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/6b0707-1584-41db-899b-3abed42221f6/1/U06h5GzDSeg36Qi-0Tho6xjHnOg.roa
File: U06h5GzDSeg36Qi-0Tho6xjHnOg.roa (raw, json)
Hash identifier: IdmPBEVenDSi+FTfya5+2ZCg1lYZrTQimus0lAmnaOs=
Subject key identifier: 53:4E:A1:E4:6C:C3:49:E8:37:E9:08:BE:D1:38:68:EB:18:C7:9C:E8
Certificate issuer: /CN=376688c837023671bc5e87d83ffa1783b7ceab4e
Certificate serial: 016C3F11
Authority key identifier: 37:66:88:C8:37:02:36:71:BC:5E:87:D8:3F:FA:17:83:B7:CE:AB:4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N2aIyDcCNnG8XofYP_oXg7fOq04.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/6b0707-1584-41db-899b-3abed42221f6/1/U06h5GzDSeg36Qi-0Tho6xjHnOg.roa
Signing time: Sat 01 Jan 2022 14:01:36 +0000
ROA not before: Sat 01 Jan 2022 14:01:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 185.196.92.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 23871249 (0x16c3f11)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=376688c837023671bc5e87d83ffa1783b7ceab4e
Validity
Not Before: Jan 1 14:01:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=534ea1e46cc349e837e908bed13868eb18c79ce8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:8a:26:ac:16:0e:0e:18:a6:8a:a9:07:89:80:
01:03:2a:84:ab:76:81:26:98:af:66:17:56:1d:91:
82:f7:bb:4a:62:8b:0a:0d:06:00:d6:04:90:6b:89:
8f:1d:ca:57:d1:7f:98:5f:b1:8d:ad:81:b6:cb:a8:
9f:c8:89:63:e1:7b:dc:64:2a:91:3a:36:56:75:98:
55:43:9c:b5:6c:5f:31:26:5b:b0:a6:50:a0:3a:25:
b8:3f:09:1b:5f:3b:61:2c:fa:a2:70:94:77:7e:50:
cb:e5:8b:43:71:f9:35:4c:7b:04:3c:ce:9c:83:d8:
27:6c:01:30:82:db:e6:a6:1b:f6:7a:00:1e:16:41:
11:c9:60:e9:eb:d1:01:f6:5b:e1:96:bb:83:8f:8d:
f1:07:24:4a:70:e8:96:b8:63:fe:22:62:33:2f:4d:
d5:49:b2:67:96:eb:50:f6:6c:6b:bd:ac:4b:f8:20:
31:e0:fe:11:b2:cc:37:12:4d:d0:6d:0e:57:53:a3:
4d:27:6a:49:2a:bd:15:dd:1e:26:60:db:67:17:f3:
3f:6a:4d:40:a3:9e:2e:ac:87:52:b2:51:0e:d3:37:
a8:f6:04:60:26:a5:43:f2:42:b0:4f:49:8e:a7:d1:
41:77:af:e6:d4:f4:6c:0b:1c:20:8a:9a:ea:52:53:
02:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:4E:A1:E4:6C:C3:49:E8:37:E9:08:BE:D1:38:68:EB:18:C7:9C:E8
X509v3 Authority Key Identifier:
keyid:37:66:88:C8:37:02:36:71:BC:5E:87:D8:3F:FA:17:83:B7:CE:AB:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N2aIyDcCNnG8XofYP_oXg7fOq04.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/6b0707-1584-41db-899b-3abed42221f6/1/U06h5GzDSeg36Qi-0Tho6xjHnOg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/6b0707-1584-41db-899b-3abed42221f6/1/N2aIyDcCNnG8XofYP_oXg7fOq04.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.196.92.0/22
Signature Algorithm: sha256WithRSAEncryption
17:e8:2a:ae:98:07:14:e8:3c:0c:be:e0:72:90:69:c6:2c:9e:
20:fb:96:82:1d:9c:26:8f:60:3b:a0:06:8a:7c:77:db:b9:46:
0c:e1:66:fe:ee:d1:27:ec:c7:e7:d2:fb:c6:b4:29:d6:f5:2f:
3f:ea:85:0b:ef:34:b9:70:bf:bc:59:e6:a4:69:7e:31:8b:a4:
3d:d8:82:6f:04:11:0f:ec:2f:0f:7d:5a:d2:b2:80:2e:a0:43:
09:a7:6e:1b:0a:a4:aa:03:05:99:7d:b4:24:28:e3:c2:4a:05:
84:fe:be:b4:fa:d9:e6:7a:db:fa:ce:ba:c5:d3:6e:d8:62:8b:
b1:b8:9a:7f:19:ac:fa:80:16:ce:a8:aa:32:ad:55:88:81:31:
dd:2f:cd:27:a6:9f:1e:27:41:b1:05:e6:9f:2c:e4:93:25:d2:
27:a1:d5:10:a2:a2:51:b3:19:5b:77:70:46:02:22:0e:a2:f0:
21:18:88:63:64:c3:64:d9:e3:14:18:5b:d4:28:bf:22:19:9a:
61:53:f4:a4:a7:93:20:8a:ee:f3:4d:82:c9:1e:24:0b:57:b5:
a8:e7:f9:20:8e:7e:80:0c:d9:3e:3b:99:d5:95:af:13:71:aa:
17:ce:bb:17:46:a2:bb:14:9a:14:38:17:5e:d6:ef:06:2f:3d:
57:14:75:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 00:22:31 2025 by rpki-client