Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/bfb168-1b3d-48ae-9800-1744e7259b17/1/4WeOaYTBDtEUmlEUVkhHKZPC7xc.roa
File: 4WeOaYTBDtEUmlEUVkhHKZPC7xc.roa (raw, json)
Hash identifier: iinnZNZ8HvxKxFJS1Chb+hlPUmnmyH3usTbd1slobsE=
Subject key identifier: E1:67:8E:69:84:C1:0E:D1:14:9A:51:14:56:48:47:29:93:C2:EF:17
Certificate issuer: /CN=e8a905b0a4f1ba373d9e7892d2455bc5ea8bbf89
Certificate serial: 01882086B7E474C240812E51EF979677A01E
Authority key identifier: E8:A9:05:B0:A4:F1:BA:37:3D:9E:78:92:D2:45:5B:C5:EA:8B:BF:89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6KkFsKTxujc9nniS0kVbxeqLv4k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/bfb168-1b3d-48ae-9800-1744e7259b17/1/4WeOaYTBDtEUmlEUVkhHKZPC7xc.roa
Signing time: Mon 15 May 2023 17:47:59 +0000
ROA not before: Mon 15 May 2023 17:47:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 7393
IP address blocks: 185.235.227.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:20:86:b7:e4:74:c2:40:81:2e:51:ef:97:96:77:a0:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e8a905b0a4f1ba373d9e7892d2455bc5ea8bbf89
Validity
Not Before: May 15 17:47:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e1678e6984c10ed1149a51145648472993c2ef17
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:16:3b:a3:3f:7a:f4:a4:6f:e9:67:ce:6f:6f:
86:dc:38:50:cb:b6:d0:f1:83:c9:41:54:e1:e2:1c:
8f:6b:df:2b:e0:7b:36:3b:a2:cc:67:89:a2:e0:65:
18:bf:f4:77:4a:f1:1b:8e:8f:0b:b9:c2:47:67:bb:
06:ea:03:e8:b7:57:8c:48:6c:61:6e:56:7c:2f:1a:
4f:b3:01:6e:e6:f1:a6:93:67:1f:fa:c1:a5:6d:00:
ff:17:b9:1f:96:9f:a9:6e:7a:86:f6:b5:b8:c7:11:
f3:d0:07:c8:d9:ff:b5:cc:b1:88:4d:89:8a:b8:91:
b0:72:35:be:89:a6:7a:2e:67:7b:65:44:4e:09:63:
73:2f:b4:ec:ad:77:bf:81:fa:9f:58:3f:75:a5:8d:
22:9e:18:1e:7b:7d:86:82:09:3c:17:d9:69:1d:5e:
93:ec:aa:d0:bd:29:e8:19:db:94:80:86:57:8d:9b:
8c:99:66:bc:8a:d6:34:8b:52:16:01:16:11:c5:e3:
94:35:dd:21:0a:e2:d8:da:5d:cb:25:67:7b:f3:69:
ed:2f:21:94:e1:d6:15:62:3e:20:2a:11:c6:72:0b:
3c:87:ac:d3:b2:fb:78:fc:aa:f4:32:06:0e:f9:ab:
b2:f9:5d:64:e4:82:7e:3f:dc:2a:f6:dc:92:6c:13:
6a:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:67:8E:69:84:C1:0E:D1:14:9A:51:14:56:48:47:29:93:C2:EF:17
X509v3 Authority Key Identifier:
keyid:E8:A9:05:B0:A4:F1:BA:37:3D:9E:78:92:D2:45:5B:C5:EA:8B:BF:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6KkFsKTxujc9nniS0kVbxeqLv4k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/bfb168-1b3d-48ae-9800-1744e7259b17/1/4WeOaYTBDtEUmlEUVkhHKZPC7xc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/bfb168-1b3d-48ae-9800-1744e7259b17/1/6KkFsKTxujc9nniS0kVbxeqLv4k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.235.227.0/24
Signature Algorithm: sha256WithRSAEncryption
30:cb:2a:89:7e:99:b6:c9:93:f1:8a:83:86:7c:49:8f:a9:c7:
91:7a:81:63:24:57:04:45:6c:ae:d8:fb:6f:c6:9e:fd:bb:7f:
cf:13:5c:e8:12:0a:d0:77:37:13:c2:1e:f2:08:27:aa:17:a3:
4e:c4:13:8e:8a:31:db:3b:54:0b:80:55:fc:92:8a:29:b6:35:
95:c2:c6:93:07:bb:83:54:29:bb:83:50:56:86:f1:eb:6b:d9:
f0:b0:79:76:55:0a:48:4a:b3:7c:9a:63:e2:82:76:15:82:be:
81:d2:17:e2:26:17:8e:91:e2:4a:39:06:c9:c8:b4:bf:bd:9e:
45:45:e8:6b:5f:7a:32:ea:bd:39:77:f0:17:0c:b7:8c:f9:26:
73:b9:b4:f5:35:a7:cd:7c:45:ab:e7:71:05:66:e0:0a:60:4e:
a3:9f:b3:a0:09:5c:37:c0:cc:3a:44:c3:f7:0d:30:96:21:b6:
1b:8c:30:37:47:bc:87:3e:3b:e6:4e:e6:66:32:e6:34:14:b0:
7d:9f:51:e4:aa:45:01:90:9d:63:25:eb:0d:a1:49:55:80:52:
f2:9f:45:cc:90:68:d3:07:a0:7e:a8:b6:51:f5:c4:cf:e8:37:
61:8e:67:8a:7e:79:7c:f6:8b:34:c0:e0:4f:32:eb:91:bb:9b:
57:11:b4:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:19:52 2025 by rpki-client