Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/5a2f80-cad4-495e-b6b7-dc3c7c3823db/1/bZ0aMgZ-3rgdpDkDmFn8bE9O7v8.roa
File: bZ0aMgZ-3rgdpDkDmFn8bE9O7v8.roa (raw, json)
Hash identifier: JL8lZxsSwxQdGxIkwl/Ddh5GLCRZoK8G0CrQ1wkjxR4=
Subject key identifier: 6D:9D:1A:32:06:7E:DE:B8:1D:A4:39:03:98:59:FC:6C:4F:4E:EE:FF
Certificate issuer: /CN=a410dfd9476c92a14a377a11c2683b58fcb21dbd
Certificate serial: 03F42984
Authority key identifier: A4:10:DF:D9:47:6C:92:A1:4A:37:7A:11:C2:68:3B:58:FC:B2:1D:BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pBDf2UdskqFKN3oRwmg7WPyyHb0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/5a2f80-cad4-495e-b6b7-dc3c7c3823db/1/bZ0aMgZ-3rgdpDkDmFn8bE9O7v8.roa
Signing time: Sat 01 Jan 2022 13:58:54 +0000
ROA not before: Sat 01 Jan 2022 13:58:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209711
IP address blocks: 185.204.187.0/24 maxlen: 24
2a10:7cc0::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66333060 (0x3f42984)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a410dfd9476c92a14a377a11c2683b58fcb21dbd
Validity
Not Before: Jan 1 13:58:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6d9d1a32067edeb81da439039859fc6c4f4eeeff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:6f:74:2c:0a:80:cf:16:30:c2:0c:19:74:40:
0f:07:d1:c5:87:8e:88:08:5c:11:b6:c5:0e:bb:44:
94:97:71:e8:40:47:72:b1:46:19:5a:30:47:16:fa:
df:84:4d:2e:19:ab:96:03:09:cf:4b:7c:75:41:2a:
f3:7e:68:2c:c6:6b:4e:37:4a:f3:1c:40:b3:36:f8:
9d:be:28:35:a1:9d:a0:a9:23:58:c1:2c:bd:9e:83:
1c:39:f8:89:ea:98:6f:7c:b9:33:0c:29:2d:c6:a5:
e6:5a:1c:b2:79:04:72:e0:85:e9:6e:09:2e:af:af:
62:2f:f5:ac:a3:c7:a5:d8:20:5e:de:23:54:87:68:
88:1f:24:c9:f0:6c:f0:cb:f8:b2:f4:56:26:f7:6f:
3a:a2:36:99:eb:dc:79:8f:77:94:55:72:ca:1b:01:
83:ea:12:2f:f5:4f:7d:30:1f:5f:47:8b:fd:f9:be:
b6:53:9e:3f:01:ff:62:57:ba:43:bf:5f:78:58:7b:
15:4b:66:29:ef:34:73:03:74:b5:b3:79:c1:71:3f:
f6:c7:af:50:58:f8:48:ee:12:9e:55:e4:52:82:1c:
bb:e8:84:69:79:38:79:7a:b8:de:b0:12:bc:69:b8:
47:45:e6:3b:ec:5a:68:ec:81:b4:72:b7:8e:33:93:
8c:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:9D:1A:32:06:7E:DE:B8:1D:A4:39:03:98:59:FC:6C:4F:4E:EE:FF
X509v3 Authority Key Identifier:
keyid:A4:10:DF:D9:47:6C:92:A1:4A:37:7A:11:C2:68:3B:58:FC:B2:1D:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pBDf2UdskqFKN3oRwmg7WPyyHb0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/5a2f80-cad4-495e-b6b7-dc3c7c3823db/1/bZ0aMgZ-3rgdpDkDmFn8bE9O7v8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/5a2f80-cad4-495e-b6b7-dc3c7c3823db/1/pBDf2UdskqFKN3oRwmg7WPyyHb0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.204.187.0/24
IPv6:
2a10:7cc0::/29
Signature Algorithm: sha256WithRSAEncryption
00:8b:c7:4e:05:b9:24:6d:9f:c3:d5:4f:b8:60:9a:a8:23:71:
bd:58:76:3a:a9:50:98:f7:03:a4:ed:08:51:a2:1f:3f:cd:2c:
07:a1:7e:76:32:6d:44:a3:c5:9e:8d:29:73:63:17:77:10:81:
ab:e0:b5:3e:64:fe:c1:96:f0:93:01:f0:ac:05:c0:d0:ba:1e:
e6:75:0d:b7:91:c3:2e:b8:37:d7:4e:2a:8c:ee:51:6c:8b:e5:
96:c7:5a:c6:79:3a:2c:2e:18:68:10:65:75:55:c3:8d:2b:c6:
a5:23:bd:d9:15:ee:32:08:87:9f:2f:db:77:b6:67:0b:25:8a:
08:42:af:0a:1e:1c:e6:80:94:2d:d9:56:a1:0f:88:71:b6:af:
7a:bd:55:e3:9b:2e:65:81:94:0b:cf:9a:29:a8:8d:bf:33:38:
20:41:be:e7:e1:15:a3:0a:1c:bf:9c:73:cb:35:0b:2e:1e:27:
ee:b2:83:40:35:16:66:0c:2c:b2:4c:90:90:5f:db:16:c8:2f:
3d:fb:b6:48:e0:0d:e0:90:76:ee:4a:1f:a3:7a:37:8d:81:c4:
aa:1e:b6:e9:93:37:f3:fe:9c:e0:26:3f:11:65:a6:3b:9c:fe:
48:a3:c3:34:2a:44:b2:b9:fa:cb:39:61:e1:d7:a7:58:4b:a5:
9d:2f:34:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:00:10 2025 by rpki-client