Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/2MZ4ssiy_UXPwIZNB3Ko_9N2YeA.roa
File: 2MZ4ssiy_UXPwIZNB3Ko_9N2YeA.roa (raw, json)
Hash identifier: /i45smE/vVVmH3MwonJ1E3ehnG+nEHfE3GWJ752bqTo=
Subject key identifier: D8:C6:78:B2:C8:B2:FD:45:CF:C0:86:4D:07:72:A8:FF:D3:76:61:E0
Certificate issuer: /CN=dc7821e1bcbf6e074ea4814aaa5c63e3ba813c5f
Certificate serial: 07CA59CB
Authority key identifier: DC:78:21:E1:BC:BF:6E:07:4E:A4:81:4A:AA:5C:63:E3:BA:81:3C:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3Hgh4by_bgdOpIFKqlxj47qBPF8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/2MZ4ssiy_UXPwIZNB3Ko_9N2YeA.roa
Signing time: Mon 27 Jun 2022 10:03:49 +0000
ROA not before: Mon 27 Jun 2022 10:03:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3223
IP address blocks: 185.247.61.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 130701771 (0x7ca59cb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc7821e1bcbf6e074ea4814aaa5c63e3ba813c5f
Validity
Not Before: Jun 27 10:03:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d8c678b2c8b2fd45cfc0864d0772a8ffd37661e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:42:e8:32:c6:8c:9a:0b:91:57:4f:98:13:ec:
0e:d9:2d:a3:d9:08:b1:32:03:3a:53:b0:1a:60:0d:
59:19:a8:16:7c:56:2e:a3:85:54:d9:c0:6e:1b:3b:
74:c0:50:9e:cb:99:6c:48:d3:ad:e2:ad:e8:72:b3:
b8:e7:39:0a:83:e9:f6:2e:6f:55:2c:30:b4:10:c8:
6d:c9:e4:38:9b:fc:c4:87:18:82:44:9e:89:b1:ad:
ef:c2:56:04:bd:24:9b:2a:a9:22:2e:bf:9c:03:79:
18:79:d0:46:2b:91:91:94:e5:35:9a:f5:8d:fe:0b:
f6:3e:c5:8b:00:05:bd:12:66:b4:b9:f2:6c:57:a7:
6f:59:6c:14:66:84:6c:d7:0d:24:d2:4a:a6:4a:9f:
94:e5:f9:98:b9:ce:03:2a:ae:21:87:06:ee:03:be:
a6:82:55:d0:bc:03:03:a5:70:19:5e:ee:17:0d:31:
d8:03:ff:f5:8f:c3:f9:d2:67:ed:1b:56:1d:ad:24:
b6:0b:c6:9c:96:fe:b5:3c:3e:48:30:e8:96:c0:9a:
dd:c4:e4:ff:7d:d7:60:5e:ba:4b:4f:e9:51:0a:73:
5e:7a:b6:25:1c:47:bb:a6:2c:06:26:bf:b2:5a:7c:
31:63:05:65:21:f6:7c:0d:96:47:20:50:42:b1:bb:
33:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:C6:78:B2:C8:B2:FD:45:CF:C0:86:4D:07:72:A8:FF:D3:76:61:E0
X509v3 Authority Key Identifier:
keyid:DC:78:21:E1:BC:BF:6E:07:4E:A4:81:4A:AA:5C:63:E3:BA:81:3C:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3Hgh4by_bgdOpIFKqlxj47qBPF8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/2MZ4ssiy_UXPwIZNB3Ko_9N2YeA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.247.61.0/24
Signature Algorithm: sha256WithRSAEncryption
55:dd:84:7e:26:93:45:35:71:33:65:70:91:d8:de:a5:3c:9e:
1f:ad:b2:d4:6b:b4:8f:71:e2:1c:3c:0e:46:1b:2b:1e:7a:0b:
92:34:65:33:d6:81:5a:dc:18:56:cc:25:2e:b5:bc:6a:6e:ef:
55:a7:c4:49:de:ec:9e:f8:b7:d6:4d:1a:e8:cf:75:39:ef:a7:
41:ac:b1:4b:0a:c2:7b:05:07:7b:fd:b6:28:9c:8a:ab:b2:11:
ee:d2:4a:61:7c:f6:2c:a0:de:bb:95:c0:67:74:03:a5:e7:c1:
5e:d0:8b:d2:9e:11:e5:25:ed:e4:43:42:6e:e0:8b:53:92:2a:
18:11:31:ff:1d:51:b4:28:f1:3a:e1:98:a4:29:da:f1:c1:11:
8d:c3:76:29:82:5c:b2:b7:95:e2:11:da:33:26:4e:0a:c5:83:
d0:90:7a:08:fe:9d:29:00:e6:d6:36:1f:e8:44:d2:5c:ed:6c:
d4:82:7a:86:3e:08:a5:39:07:36:bf:46:63:61:12:91:c3:6f:
09:ee:29:48:2d:d8:06:d5:88:6d:4b:76:15:3f:36:6d:60:ea:
47:1b:40:d6:6e:35:3e:25:26:06:98:3e:f1:b0:fe:1c:ff:22:
7a:21:60:01:10:3b:b5:8b:10:ab:38:99:9c:32:2b:51:7a:df:
ba:a5:3c:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:16:07 2025 by rpki-client