Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/7a1aee-671b-4f39-b4dd-212a9f310622/1/RdOdP3DlBfXpnxBBT7lO73v8oG8.roa
File: RdOdP3DlBfXpnxBBT7lO73v8oG8.roa (raw, json)
Hash identifier: 9+BQ0Xt7iU/x6pUN6YyjEsb6BHBaV2Ejuirq22nlRh8=
Subject key identifier: 45:D3:9D:3F:70:E5:05:F5:E9:9F:10:41:4F:B9:4E:EF:7B:FC:A0:6F
Certificate issuer: /CN=7dc555352323dbcc287b87e0d6a4814a63abbd46
Certificate serial: 0194206838A56162214BB7CB6A92E352E310
Authority key identifier: 7D:C5:55:35:23:23:DB:CC:28:7B:87:E0:D6:A4:81:4A:63:AB:BD:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fcVVNSMj28woe4fg1qSBSmOrvUY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/7a1aee-671b-4f39-b4dd-212a9f310622/1/RdOdP3DlBfXpnxBBT7lO73v8oG8.roa
Signing time: Wed 01 Jan 2025 05:48:08 +0000
ROA not before: Wed 01 Jan 2025 05:48:08 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 47264
IP address blocks: 185.203.64.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:68:38:a5:61:62:21:4b:b7:cb:6a:92:e3:52:e3:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7dc555352323dbcc287b87e0d6a4814a63abbd46
Validity
Not Before: Jan 1 05:48:08 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=45d39d3f70e505f5e99f10414fb94eef7bfca06f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:1c:f3:5e:13:40:d3:d9:9f:0c:af:0c:0b:49:
a2:5b:6a:0c:77:0e:18:cd:f5:b1:bb:fb:59:39:57:
c7:b2:ba:6f:c5:05:a0:97:78:8b:1a:79:bc:c8:e4:
4f:4b:82:17:33:88:0c:c9:9f:b2:1c:2d:5e:45:97:
fc:43:0f:df:ba:26:89:2d:cc:b6:1b:ad:f4:37:83:
4b:fe:eb:dc:d5:74:60:f7:e9:79:71:36:eb:2a:90:
f1:6a:db:7c:ab:b0:f9:dd:32:4a:bf:9c:ac:56:49:
08:3a:e1:7d:74:2b:b7:92:7f:27:1c:19:17:dc:23:
d2:ca:77:7b:d1:cf:e6:77:dc:0e:90:e1:15:4f:5c:
70:0b:f6:99:0a:97:aa:b0:85:63:c0:01:48:fa:12:
2b:91:33:03:be:f4:cf:7f:23:09:d6:c8:27:e8:64:
48:0b:54:22:3e:fa:4f:bb:c6:07:16:52:5b:90:ec:
0a:8c:02:72:a6:9b:3b:52:12:39:ad:4d:c2:8d:d9:
10:6e:d7:77:cd:d3:ab:92:93:14:43:23:ea:35:3b:
ee:59:9a:92:f2:35:6b:d4:19:0a:60:39:33:56:ad:
d4:27:10:00:3b:38:08:ff:06:c4:cb:91:6b:fb:98:
17:b6:df:1e:6e:cf:70:11:7c:ea:d1:71:39:d5:6b:
9e:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:D3:9D:3F:70:E5:05:F5:E9:9F:10:41:4F:B9:4E:EF:7B:FC:A0:6F
X509v3 Authority Key Identifier:
keyid:7D:C5:55:35:23:23:DB:CC:28:7B:87:E0:D6:A4:81:4A:63:AB:BD:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fcVVNSMj28woe4fg1qSBSmOrvUY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/7a1aee-671b-4f39-b4dd-212a9f310622/1/RdOdP3DlBfXpnxBBT7lO73v8oG8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/7a1aee-671b-4f39-b4dd-212a9f310622/1/fcVVNSMj28woe4fg1qSBSmOrvUY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.203.64.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:02:37:56:93:a3:56:fc:3b:98:39:9c:b4:3f:59:6d:e1:35:
59:2d:62:81:38:d2:7f:df:6a:1c:70:5c:dd:99:5a:90:82:27:
85:39:94:2e:68:d9:61:e4:4b:e3:84:02:6e:2c:42:2c:0e:01:
d1:fc:d3:0b:62:6c:b7:cd:f0:f2:ff:33:6a:6c:70:46:5c:fe:
3a:28:f6:ed:64:13:5e:26:ac:e5:79:93:e3:0f:c1:85:5f:31:
81:04:b4:4d:4a:65:89:a2:c5:49:a2:c4:73:9c:0e:b3:0b:60:
d3:68:c4:49:9a:79:41:a4:33:8c:71:25:16:56:c8:79:ff:d2:
bf:85:2b:aa:49:f2:a5:f2:fe:c8:20:af:c1:69:58:cc:9a:df:
a4:0d:07:4a:4f:49:78:40:32:35:b7:18:18:2f:bb:fa:9b:70:
f8:20:b4:3e:fa:d6:c7:63:9d:97:11:fc:cb:8a:95:6a:09:3c:
40:be:15:fa:bf:e7:0c:70:04:8a:cd:8d:c0:5c:21:87:43:47:
ea:e3:67:24:db:fe:0a:6a:c3:e3:9c:1d:95:16:0c:a7:83:4c:
40:87:f6:7f:6f:dc:f3:88:36:1c:e5:a8:e3:1b:61:6c:cd:44:
92:f0:23:11:f6:6c:ff:68:8c:07:9b:b3:43:b3:3b:7e:a3:9e:
ec:e6:d6:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 02:39:50 2025 by rpki-client