Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/2095e6-6688-4582-bb20-437f1579494c/1/h9izBbrbJXAxRSpwjoGhkcmwpdE.roa
File: h9izBbrbJXAxRSpwjoGhkcmwpdE.roa (raw, json)
Hash identifier: SIYu2DTq/75Fh/I9kszET2ejTKSLWngCtQ8J2gJ0XqQ=
Subject key identifier: 87:D8:B3:05:BA:DB:25:70:31:45:2A:70:8E:81:A1:91:C9:B0:A5:D1
Certificate issuer: /CN=be05fdc3bface13274c33a2b6b105f2e28a05535
Certificate serial: 1C75B631
Authority key identifier: BE:05:FD:C3:BF:AC:E1:32:74:C3:3A:2B:6B:10:5F:2E:28:A0:55:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vgX9w7-s4TJ0wzoraxBfLiigVTU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/2095e6-6688-4582-bb20-437f1579494c/1/h9izBbrbJXAxRSpwjoGhkcmwpdE.roa
Signing time: Fri 10 Jun 2022 13:33:02 +0000
ROA not before: Fri 10 Jun 2022 13:33:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44592
IP address blocks: 185.44.140.0/22 maxlen: 22
185.12.204.0/22 maxlen: 22
37.140.200.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 477476401 (0x1c75b631)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=be05fdc3bface13274c33a2b6b105f2e28a05535
Validity
Not Before: Jun 10 13:33:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=87d8b305badb257031452a708e81a191c9b0a5d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:2d:67:17:47:ea:45:62:d1:1e:e0:dc:67:34:
48:39:0c:55:cd:62:99:a0:e7:ca:bf:96:0f:1c:bc:
59:34:01:df:50:60:83:c1:75:fd:74:24:ef:6c:1e:
08:4f:b6:a9:d7:3c:91:9b:6c:d3:8c:02:2d:9b:a3:
f0:b3:c7:92:14:10:3f:fc:15:73:39:8c:4b:04:c2:
63:13:19:23:5b:c8:e5:e6:9c:b5:ef:6f:f1:35:3e:
28:c9:1b:bd:9e:4e:a4:92:a6:fb:70:d0:af:90:83:
55:7e:06:92:be:8e:5f:60:46:21:28:30:a2:f7:88:
af:19:87:c0:2d:40:fb:85:7f:1d:c0:df:73:01:b3:
49:8d:c5:f6:b5:32:9e:d4:ab:42:d9:f9:fc:f0:41:
51:43:dc:81:02:29:3a:13:0f:51:ea:e6:f0:ae:5e:
3b:a2:ff:50:ea:12:e7:ac:a7:28:e1:cb:09:7a:75:
7e:04:73:6d:9e:81:55:64:62:79:60:3c:18:1e:da:
91:00:69:82:b1:4c:0a:6d:8d:a3:74:34:9f:e8:f1:
29:e6:bc:c5:58:49:d5:32:f8:ee:db:87:44:b7:e0:
02:cf:ad:94:c0:d6:57:24:67:08:13:57:51:7e:92:
16:7e:92:ea:02:91:01:bc:7d:a1:93:4d:bf:e4:66:
bd:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:D8:B3:05:BA:DB:25:70:31:45:2A:70:8E:81:A1:91:C9:B0:A5:D1
X509v3 Authority Key Identifier:
keyid:BE:05:FD:C3:BF:AC:E1:32:74:C3:3A:2B:6B:10:5F:2E:28:A0:55:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vgX9w7-s4TJ0wzoraxBfLiigVTU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/2095e6-6688-4582-bb20-437f1579494c/1/h9izBbrbJXAxRSpwjoGhkcmwpdE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/2095e6-6688-4582-bb20-437f1579494c/1/vgX9w7-s4TJ0wzoraxBfLiigVTU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.140.200.0/21
185.12.204.0/22
185.44.140.0/22
Signature Algorithm: sha256WithRSAEncryption
70:17:d7:f0:94:69:b0:53:43:9f:65:1c:08:0d:b8:5a:49:4e:
16:5b:c4:f4:6b:61:97:d1:cb:6b:cc:97:74:fc:1f:3d:2c:d9:
71:8c:27:0e:48:3f:b5:47:a6:be:51:62:15:4d:f6:0b:4c:78:
8e:98:8a:7a:2d:e1:fd:d1:d8:b8:d3:39:fa:22:2b:32:f9:39:
ad:b0:d7:87:0c:fc:b1:ea:96:00:3c:3b:2b:9e:90:e0:82:3f:
94:2b:01:d0:ba:b0:de:1d:d8:85:44:55:68:11:85:6e:7d:6e:
b8:30:7d:fd:df:9e:1d:6c:9d:92:4e:3a:81:66:81:22:30:30:
44:a2:a0:66:7d:f8:16:ee:e4:2a:0f:c6:8e:18:86:e1:07:03:
f0:98:bf:39:47:f4:12:52:d2:29:5d:ea:dc:59:f2:68:ce:73:
3c:0a:96:bd:6a:4f:e8:a5:28:5c:9c:8a:b7:df:ce:4d:ea:b6:
41:d1:83:c0:2e:dc:5c:4b:f3:4e:02:08:21:cb:02:bf:50:63:
0a:96:fa:6d:45:62:95:93:7a:d4:8e:a7:a6:57:53:c7:e9:6b:
9f:75:dc:6e:f2:1e:60:bc:2e:65:9c:7e:d2:5f:ab:b0:6a:fc:
80:69:2a:e9:fb:25:8d:dd:79:78:d7:ac:4f:2a:a9:d7:d5:10:
a9:5e:01:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 07:18:43 2025 by rpki-client