Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/eb239a-33c8-4dbd-bc96-3259496e7c5f/1/oDYLnwkGgAxYv9u5udIzrGW4lKY.roa
File: oDYLnwkGgAxYv9u5udIzrGW4lKY.roa (raw, json)
Hash identifier: kHrjkwiOxMyFaVc+PyTw+jMSO2tvh0VzNrXmHJJ3hA8=
Subject key identifier: A0:36:0B:9F:09:06:80:0C:58:BF:DB:B9:B9:D2:33:AC:65:B8:94:A6
Certificate issuer: /CN=624039399017fa093dc8d503799f6ca403f0bd05
Certificate serial: 018360B10882959018F9387EC9B13FBF139A
Authority key identifier: 62:40:39:39:90:17:FA:09:3D:C8:D5:03:79:9F:6C:A4:03:F0:BD:05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YkA5OZAX-gk9yNUDeZ9spAPwvQU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/eb239a-33c8-4dbd-bc96-3259496e7c5f/1/oDYLnwkGgAxYv9u5udIzrGW4lKY.roa
Signing time: Wed 21 Sep 2022 15:35:58 +0000
ROA not before: Wed 21 Sep 2022 15:35:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210703
IP address blocks: 85.209.228.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:60:b1:08:82:95:90:18:f9:38:7e:c9:b1:3f:bf:13:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=624039399017fa093dc8d503799f6ca403f0bd05
Validity
Not Before: Sep 21 15:35:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a0360b9f0906800c58bfdbb9b9d233ac65b894a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:ea:db:36:67:af:a3:87:bb:fb:78:20:9a:d0:
09:21:94:ab:31:61:c1:09:6b:27:66:c1:12:ac:f0:
42:0b:97:3d:58:6b:4e:0d:e4:b6:41:77:7b:d6:a2:
74:9e:7f:49:f9:89:5a:f3:39:32:3b:cc:bd:e8:29:
31:64:59:fb:3a:cc:19:d8:ba:ef:9e:dc:c8:af:99:
0a:f3:04:20:b9:53:82:65:06:94:51:ed:6e:5c:3c:
9f:46:fc:5f:bf:0b:07:23:b8:ab:88:c2:74:74:2d:
da:c6:1c:1c:7c:5e:be:d7:10:59:1b:bd:48:ea:1c:
8a:49:ab:9a:33:a4:1c:1e:e6:e5:e1:fa:24:9c:6a:
b9:fc:f9:04:1d:86:ec:e7:db:54:96:1f:09:86:e5:
ab:f2:72:3f:6a:9f:b3:27:c9:a2:e2:91:d2:bf:56:
60:28:05:ac:44:b9:d6:8d:4c:fc:e0:27:08:48:cf:
b5:a8:dd:09:3e:07:62:52:a1:63:13:ec:7a:c3:78:
0a:ce:4b:97:3c:86:9b:cf:d4:e5:fa:a5:31:f7:37:
f5:fe:85:be:a6:51:35:52:55:7d:3f:f0:73:0c:6b:
e2:bf:29:f5:c9:ff:9a:25:c9:d3:5c:b2:a5:44:f5:
26:b0:3b:25:98:70:01:55:b1:29:76:19:50:cd:e1:
4e:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:36:0B:9F:09:06:80:0C:58:BF:DB:B9:B9:D2:33:AC:65:B8:94:A6
X509v3 Authority Key Identifier:
keyid:62:40:39:39:90:17:FA:09:3D:C8:D5:03:79:9F:6C:A4:03:F0:BD:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YkA5OZAX-gk9yNUDeZ9spAPwvQU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/eb239a-33c8-4dbd-bc96-3259496e7c5f/1/oDYLnwkGgAxYv9u5udIzrGW4lKY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/eb239a-33c8-4dbd-bc96-3259496e7c5f/1/YkA5OZAX-gk9yNUDeZ9spAPwvQU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.209.228.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:40:a4:a8:4a:17:bf:c0:4e:3f:ba:f9:b1:2a:e5:bc:50:73:
bc:4a:a5:ab:32:d5:76:18:4c:9a:c0:ab:59:ca:90:b7:65:f4:
9f:3a:e2:f3:fb:ca:c9:4a:48:08:a2:89:5d:89:0a:6a:bd:9c:
f4:2f:15:86:4e:3c:37:6a:43:b0:06:89:55:95:af:27:85:5a:
c8:8c:27:19:11:a2:d6:65:af:57:11:97:0a:f8:9a:75:de:1b:
72:4b:82:05:44:3b:4a:4b:29:56:72:c9:16:37:02:fe:47:be:
38:c8:7f:72:a6:43:a5:b7:88:d2:7f:80:9b:20:d8:73:51:fd:
0b:64:0c:ab:fd:b0:10:b9:98:df:b4:a6:3e:2b:7c:35:c7:aa:
14:2c:d9:58:17:7e:e7:6f:80:6e:c2:27:76:94:1e:fb:ae:af:
8b:7a:b4:b2:df:cf:16:c8:59:73:d6:21:dd:b4:af:48:cf:dc:
8e:97:d4:db:2d:69:31:7a:1e:ce:9d:d3:60:8b:b4:c8:98:81:
75:ce:cd:35:87:e4:3a:00:ab:b4:99:a8:03:e0:8d:a1:22:bd:
a8:d8:fa:db:b2:85:42:f6:d9:e0:62:31:19:d5:38:43:03:85:
a1:0e:76:8f:bb:05:71:d0:c5:26:c5:09:2d:71:d2:f1:f5:0e:
40:f8:4d:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 18:52:44 2025 by rpki-client