Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/b7abdf-3be1-4642-9f3e-f1f0b9598f32/1/5uk7IOkiJEIEYU7lB9coUcXWrJ0.roa
File: 5uk7IOkiJEIEYU7lB9coUcXWrJ0.roa (raw, json)
Hash identifier: S76y++M0x+FGZm7+p6cdyGrx1doUgnuDZSbGHn7OjnE=
Subject key identifier: E6:E9:3B:20:E9:22:24:42:04:61:4E:E5:07:D7:28:51:C5:D6:AC:9D
Certificate issuer: /CN=a71a2a2db4d7418e9bf4f93c8c046a0161663c62
Certificate serial: 018616D73C3063EDBC9FB0D244B096C24CEC
Authority key identifier: A7:1A:2A:2D:B4:D7:41:8E:9B:F4:F9:3C:8C:04:6A:01:61:66:3C:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pxoqLbTXQY6b9Pk8jARqAWFmPGI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/b7abdf-3be1-4642-9f3e-f1f0b9598f32/1/5uk7IOkiJEIEYU7lB9coUcXWrJ0.roa
Signing time: Fri 03 Feb 2023 10:34:09 +0000
ROA not before: Fri 03 Feb 2023 10:34:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205320
IP address blocks: 185.157.50.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:16:d7:3c:30:63:ed:bc:9f:b0:d2:44:b0:96:c2:4c:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a71a2a2db4d7418e9bf4f93c8c046a0161663c62
Validity
Not Before: Feb 3 10:34:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e6e93b20e922244204614ee507d72851c5d6ac9d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:0e:e1:d2:ff:fe:35:c3:80:72:3c:80:cb:ae:
a2:ea:4f:15:bb:5a:b3:e4:23:f0:7b:9f:59:29:df:
be:02:39:fc:75:3f:fc:00:de:52:66:b3:b6:e5:90:
9a:ea:a8:3e:2f:b3:c1:e9:fd:81:46:ac:df:58:6b:
7b:da:5e:48:4c:08:dd:10:90:f3:13:b3:a9:6a:22:
97:92:7d:c7:05:ab:a5:7e:c0:f7:20:e1:72:18:4a:
46:a5:5a:7c:32:6e:b0:14:ab:0a:81:5c:07:10:28:
44:24:72:d9:52:34:42:f1:56:67:9e:b7:02:40:19:
fa:f7:8c:92:a5:21:cb:1d:c1:3a:ed:74:37:3e:56:
ef:77:7d:9e:d8:ee:7e:f7:ee:37:ef:e0:82:4c:59:
4c:16:58:27:d8:bd:07:ac:ac:ac:20:ba:03:9c:c1:
f4:1f:6b:6f:a6:32:45:75:0e:fa:80:50:d4:b5:20:
85:cc:d1:62:fb:1e:29:c7:8f:90:c5:ee:8b:4f:15:
ae:7e:30:35:02:bf:62:bd:5f:44:a6:c2:6f:40:87:
71:c8:9f:fc:5d:53:67:cf:6c:fa:c1:69:e9:e4:03:
56:dd:35:e4:b0:39:5c:f0:fe:82:6c:07:ea:62:c5:
77:b1:ab:1c:ef:8f:c2:90:fd:e5:ba:17:c1:fc:3b:
bd:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:E9:3B:20:E9:22:24:42:04:61:4E:E5:07:D7:28:51:C5:D6:AC:9D
X509v3 Authority Key Identifier:
keyid:A7:1A:2A:2D:B4:D7:41:8E:9B:F4:F9:3C:8C:04:6A:01:61:66:3C:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pxoqLbTXQY6b9Pk8jARqAWFmPGI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/b7abdf-3be1-4642-9f3e-f1f0b9598f32/1/5uk7IOkiJEIEYU7lB9coUcXWrJ0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/b7abdf-3be1-4642-9f3e-f1f0b9598f32/1/pxoqLbTXQY6b9Pk8jARqAWFmPGI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.157.50.0/24
Signature Algorithm: sha256WithRSAEncryption
33:cd:60:e3:f0:9e:62:9e:99:0f:0e:0c:b7:8c:a9:8b:63:62:
48:df:88:ed:68:8b:96:35:52:8c:74:aa:9f:93:42:0a:2a:b2:
6a:d3:a9:06:42:12:27:d8:1b:5c:38:ff:47:7b:6a:80:72:2b:
05:28:79:d6:c9:2f:e0:22:5d:0d:42:61:d2:0f:e4:b6:f0:56:
25:9e:c2:ad:9f:9e:95:fc:ba:ad:0f:1e:d6:67:8d:23:b3:dc:
98:22:98:fe:28:45:fb:17:83:bb:80:40:3d:66:67:ec:7d:08:
01:ed:b9:f0:75:82:f1:de:8f:8f:d7:bc:94:1e:57:3b:2f:9b:
d5:37:ff:03:da:2e:ca:93:2a:4e:97:31:ce:8e:81:94:a6:f6:
69:8a:5f:ea:7c:79:57:ff:c1:31:3e:e5:78:24:48:ce:27:a4:
6f:ce:19:dd:57:30:c4:8b:66:50:1d:5c:c4:ec:4d:d8:46:a7:
6d:b0:93:a1:58:10:92:ae:cb:25:09:27:34:51:cd:a4:fa:a4:
f3:fd:43:48:fc:0c:5c:6e:de:5b:c0:23:06:f6:91:8f:e7:fb:
27:73:da:5d:16:4b:f3:e4:00:d9:10:ea:bb:22:a7:60:fb:a4:
ed:56:30:cc:20:88:19:df:3d:70:5f:87:53:0c:02:f2:f7:a0:
3d:88:ca:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Feb 21 11:26:06 2025 by rpki-client