Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/e3aa51-6129-493d-91d2-51751b29f8b4/1/2DGYQfM6ZAmSy23Ql3an3G8fHzk.roa
File: 2DGYQfM6ZAmSy23Ql3an3G8fHzk.roa (raw, json)
Hash identifier: YBKBAxqBtBw571P5GKDzXMfMPdaDYnOoOAu0ofXh7FI=
Subject key identifier: D8:31:98:41:F3:3A:64:09:92:CB:6D:D0:97:76:A7:DC:6F:1F:1F:39
Certificate issuer: /CN=29878a2888c9ac3123c795ff9681f1957ca0f964
Certificate serial: 01856E14484F15682B3A2E52CDBAB2EA332F
Authority key identifier: 29:87:8A:28:88:C9:AC:31:23:C7:95:FF:96:81:F1:95:7C:A0:F9:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KYeKKIjJrDEjx5X_loHxlXyg-WQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/e3aa51-6129-493d-91d2-51751b29f8b4/1/2DGYQfM6ZAmSy23Ql3an3G8fHzk.roa
Signing time: Sun 01 Jan 2023 16:05:01 +0000
ROA not before: Sun 01 Jan 2023 16:05:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14618
IP address blocks: 185.97.212.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:14:48:4f:15:68:2b:3a:2e:52:cd:ba:b2:ea:33:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29878a2888c9ac3123c795ff9681f1957ca0f964
Validity
Not Before: Jan 1 16:05:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d8319841f33a640992cb6dd09776a7dc6f1f1f39
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:f6:a2:97:49:e3:75:db:5e:7a:fc:97:b0:ab:
93:3d:7f:74:ff:5a:91:f4:f9:0f:47:cd:23:eb:9d:
7f:4e:31:89:56:8d:76:7a:fa:97:31:c6:b3:82:11:
e9:04:f2:a8:39:ad:29:78:23:93:f2:2c:83:10:fd:
ed:45:95:de:c8:34:f1:d0:eb:3a:0e:e1:5a:45:f8:
dd:68:20:92:1a:d6:18:93:1d:e7:dc:89:cc:12:c1:
79:e5:6c:9c:2d:87:37:b1:b6:48:5e:f1:ff:5c:c1:
84:35:90:07:20:f3:20:9f:a0:55:f9:d0:05:be:5b:
86:87:92:0e:59:dd:6f:ca:2e:94:21:2e:03:df:a4:
86:9f:86:68:ca:fd:34:52:d0:36:e8:90:e2:78:36:
d5:10:89:94:72:2a:fa:c7:47:1d:86:18:80:f0:7b:
fa:65:e2:7b:f5:e6:05:62:f9:57:41:f7:e6:c1:18:
e1:f4:26:b2:c5:9d:56:95:d0:99:f6:6c:86:fc:d9:
20:4e:ba:d0:d1:b4:f1:69:a8:06:8b:06:98:eb:69:
03:7e:a1:2f:66:29:54:dd:23:6e:88:5f:60:5f:a6:
72:72:fc:56:53:55:31:d4:1f:37:84:0b:35:12:6f:
e7:ff:c9:ec:58:4e:5a:3b:b0:61:72:22:04:7d:f4:
6a:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:31:98:41:F3:3A:64:09:92:CB:6D:D0:97:76:A7:DC:6F:1F:1F:39
X509v3 Authority Key Identifier:
keyid:29:87:8A:28:88:C9:AC:31:23:C7:95:FF:96:81:F1:95:7C:A0:F9:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KYeKKIjJrDEjx5X_loHxlXyg-WQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/e3aa51-6129-493d-91d2-51751b29f8b4/1/2DGYQfM6ZAmSy23Ql3an3G8fHzk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/e3aa51-6129-493d-91d2-51751b29f8b4/1/KYeKKIjJrDEjx5X_loHxlXyg-WQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.97.212.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:96:0f:b3:2c:02:3d:ed:f9:7f:15:4b:76:1c:bb:0d:da:91:
10:cb:86:85:34:c1:7b:f6:cb:fe:79:88:de:39:c1:cb:52:b6:
4f:5f:ca:ca:75:e1:65:b6:d7:82:a9:ad:87:d1:36:9d:11:84:
e6:9e:58:79:66:ef:93:a1:d4:f1:21:7f:f0:79:ff:49:6f:a7:
b6:a7:27:3d:12:f4:39:d4:fd:70:ae:e7:d5:99:0c:b2:60:09:
73:42:13:50:b4:21:1c:bb:53:f4:74:57:7e:0a:67:66:74:26:
36:fc:32:56:01:95:3d:30:8d:62:cb:4b:24:cf:9a:dd:df:c4:
1a:84:e1:d6:bb:4e:be:c7:c2:6a:69:6b:62:06:66:84:46:14:
16:94:a3:f4:69:6c:34:e9:60:73:42:23:42:1a:a0:39:e4:da:
2c:36:37:d8:37:cc:16:5f:a0:7e:3d:26:78:0b:ee:df:0c:b7:
2e:85:80:70:86:28:d2:8e:3b:ab:74:ef:65:07:1b:54:ce:96:
7b:44:a4:b8:4a:39:4f:d8:92:1e:2f:d8:64:50:97:69:a8:c8:
54:0e:e3:0c:5b:19:b0:54:19:d1:80:60:9b:9c:ff:ef:74:ed:
ed:a2:df:0e:dc:e1:2c:99:b3:22:d2:fb:e5:cd:66:bb:1b:b3:
1c:e4:ef:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 02:39:08 2025 by rpki-client