Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/4MXMdJWAndzkkiHFnmOxrlOkHIs.roa
File: 4MXMdJWAndzkkiHFnmOxrlOkHIs.roa (raw, json)
Hash identifier: OiJ7+6r4bWAFN5vOHYBjk8U2TGkBpOBvwNxXY+Qb+To=
Subject key identifier: E0:C5:CC:74:95:80:9D:DC:E4:92:21:C5:9E:63:B1:AE:53:A4:1C:8B
Certificate issuer: /CN=dc7821e1bcbf6e074ea4814aaa5c63e3ba813c5f
Certificate serial: 019421B1B97E35059902B021FCE9ABBE79CD
Authority key identifier: DC:78:21:E1:BC:BF:6E:07:4E:A4:81:4A:AA:5C:63:E3:BA:81:3C:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3Hgh4by_bgdOpIFKqlxj47qBPF8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/4MXMdJWAndzkkiHFnmOxrlOkHIs.roa
Signing time: Wed 01 Jan 2025 11:48:02 +0000
ROA not before: Wed 01 Jan 2025 11:48:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 3223
IP address blocks: 185.247.61.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:b1:b9:7e:35:05:99:02:b0:21:fc:e9:ab:be:79:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc7821e1bcbf6e074ea4814aaa5c63e3ba813c5f
Validity
Not Before: Jan 1 11:48:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=e0c5cc7495809ddce49221c59e63b1ae53a41c8b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:48:f9:87:89:1f:f7:6b:0c:e0:e4:cb:d3:62:
3b:e9:0f:3f:c5:97:9b:c6:18:99:bd:df:0d:33:36:
92:eb:3b:8c:82:d0:1b:49:65:0a:98:b9:49:39:c9:
1e:08:d2:7a:bc:16:4b:cc:04:23:be:31:4b:45:d2:
1f:ae:fd:60:44:f7:4b:be:24:0e:c6:f4:ce:d0:01:
a1:cd:1d:f2:28:ee:d9:63:d6:49:c0:2f:4e:03:6f:
4d:e7:28:aa:83:a4:96:ac:d2:fa:c8:df:0f:f8:c7:
da:9b:e2:7c:03:e5:a5:7e:b8:04:03:4b:96:8c:2a:
1a:a3:35:3c:f7:b6:37:c8:dd:d0:80:fb:c2:39:df:
15:e1:cc:65:5e:21:97:fd:0b:e5:8a:2e:44:e6:c3:
54:e0:05:48:01:42:e3:ad:f5:4f:65:07:81:c0:04:
e5:e1:1e:23:be:21:df:6a:a6:d3:33:8a:e8:70:8b:
7c:27:89:fd:50:52:8e:e0:44:79:ff:b9:09:67:8d:
6d:cd:45:4c:50:95:9c:54:d4:ad:97:a1:c0:fa:c7:
83:4b:f7:b5:cf:57:47:79:5b:4f:d7:24:26:64:ce:
f3:ed:0a:84:3b:7d:51:72:af:d9:e2:e1:22:7a:af:
69:f3:92:e2:ae:68:ba:74:2d:34:14:f8:c1:53:8c:
c3:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:C5:CC:74:95:80:9D:DC:E4:92:21:C5:9E:63:B1:AE:53:A4:1C:8B
X509v3 Authority Key Identifier:
keyid:DC:78:21:E1:BC:BF:6E:07:4E:A4:81:4A:AA:5C:63:E3:BA:81:3C:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3Hgh4by_bgdOpIFKqlxj47qBPF8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/4MXMdJWAndzkkiHFnmOxrlOkHIs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.247.61.0/24
Signature Algorithm: sha256WithRSAEncryption
8c:98:1a:2d:c5:17:86:89:34:a1:09:70:20:93:87:15:03:15:
bc:ac:41:f5:92:d4:70:2f:be:35:f6:ea:84:4e:ef:e3:99:81:
5a:32:7b:b0:fd:54:17:17:d4:05:6c:d2:d3:4c:eb:1e:9d:73:
ad:cf:fd:71:74:ad:02:d8:1a:52:ec:c1:85:0f:88:51:21:79:
a4:c3:88:a2:08:3c:54:57:1b:2b:05:4d:7a:71:81:2d:5f:d1:
08:bb:f5:da:43:22:d4:ff:8f:01:cd:49:2d:80:e8:4e:35:33:
f4:e9:17:b6:92:4f:6f:a9:33:63:f8:84:1c:2d:6c:01:0a:1e:
8e:21:23:15:62:85:1d:96:90:2e:fd:03:00:c8:d0:8f:c3:85:
c6:20:4c:22:2a:94:76:25:da:98:f7:71:12:a1:60:84:b9:94:
9b:47:a1:77:20:2c:d6:8d:dd:bd:a6:7d:c9:04:9c:63:ef:08:
ba:54:80:e6:13:d3:86:f1:c8:db:41:64:4c:13:af:ba:54:f1:
ad:8b:22:f4:e7:5a:37:f5:63:46:39:7a:53:ca:ea:84:3e:d0:
3a:10:f3:24:93:d9:76:31:35:69:dc:bf:02:d0:f4:6a:2b:58:
79:81:26:d9:14:83:b1:e4:5e:f7:cd:e9:76:df:fc:f3:1a:b8:
27:99:6d:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:19:41 2025 by rpki-client