Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/e3aa51-6129-493d-91d2-51751b29f8b4/1/3Nx97497070K6By8vIywrvPaLok.roa
File: 3Nx97497070K6By8vIywrvPaLok.roa (raw, json)
Hash identifier: pgCajiNtlw3scZPLerC/nKWjsBZrzmreXfula+g1q9k=
Subject key identifier: DC:DC:7D:EF:8F:7B:D3:BD:0A:E8:1C:BC:BC:8C:B0:AE:F3:DA:2E:89
Certificate issuer: /CN=29878a2888c9ac3123c795ff9681f1957ca0f964
Certificate serial: 01856E144794581C565CB1D9AD530377AB70
Authority key identifier: 29:87:8A:28:88:C9:AC:31:23:C7:95:FF:96:81:F1:95:7C:A0:F9:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KYeKKIjJrDEjx5X_loHxlXyg-WQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/e3aa51-6129-493d-91d2-51751b29f8b4/1/3Nx97497070K6By8vIywrvPaLok.roa
Signing time: Sun 01 Jan 2023 16:05:00 +0000
ROA not before: Sun 01 Jan 2023 16:05:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3292
IP address blocks: 185.97.215.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:14:47:94:58:1c:56:5c:b1:d9:ad:53:03:77:ab:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29878a2888c9ac3123c795ff9681f1957ca0f964
Validity
Not Before: Jan 1 16:05:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dcdc7def8f7bd3bd0ae81cbcbc8cb0aef3da2e89
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:41:b4:a3:d0:74:92:40:4a:73:b4:b9:5e:43:
5e:21:fc:7b:49:d5:1d:90:0d:30:47:1a:d4:bb:78:
ba:e5:1e:c9:28:0a:d9:9b:5f:15:71:e0:9c:c4:90:
e6:b3:5f:85:72:b8:4f:19:04:13:9e:05:09:a8:fe:
0b:19:e0:14:3f:a0:60:bb:1e:f3:0d:78:7a:6f:db:
86:2d:be:be:08:1e:c7:d8:96:75:ec:d0:f1:a2:eb:
bf:5f:55:b1:60:22:ed:d9:8a:93:01:96:53:95:6c:
15:dc:ca:95:d1:96:55:a8:35:84:9e:25:16:1e:4f:
a1:89:5c:8c:3e:52:72:ce:be:37:66:d5:ab:91:41:
59:58:da:58:fb:73:f9:75:ae:1a:ad:21:1d:ca:40:
26:6e:11:d2:c2:42:dd:ff:e3:97:bf:5a:aa:f1:ff:
5c:de:8c:64:e2:53:86:84:73:32:09:19:6a:d7:60:
27:3d:1c:0b:6b:06:7b:4a:ad:83:2c:05:2d:04:90:
40:18:4c:cd:77:05:13:57:69:13:37:d4:3f:97:17:
dc:91:c9:91:72:6d:7e:3d:c1:63:d9:c7:4e:c4:e9:
42:1c:4c:22:80:d2:7a:bc:60:9d:65:ac:74:57:38:
7e:ed:1d:d8:15:e8:a6:b6:c1:57:4b:f2:fe:b5:1a:
92:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:DC:7D:EF:8F:7B:D3:BD:0A:E8:1C:BC:BC:8C:B0:AE:F3:DA:2E:89
X509v3 Authority Key Identifier:
keyid:29:87:8A:28:88:C9:AC:31:23:C7:95:FF:96:81:F1:95:7C:A0:F9:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KYeKKIjJrDEjx5X_loHxlXyg-WQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/e3aa51-6129-493d-91d2-51751b29f8b4/1/3Nx97497070K6By8vIywrvPaLok.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/e3aa51-6129-493d-91d2-51751b29f8b4/1/KYeKKIjJrDEjx5X_loHxlXyg-WQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.97.215.0/24
Signature Algorithm: sha256WithRSAEncryption
59:9d:17:e5:90:91:68:ca:f9:85:8d:79:70:4d:6c:e4:98:2d:
ea:83:22:5a:e0:14:68:26:04:65:f3:14:dc:9a:14:b3:fc:4e:
0f:93:f2:1b:44:ec:25:9c:8b:4f:0b:7a:9d:60:ea:5d:34:d3:
58:85:25:70:dd:61:5d:f7:d3:36:10:d7:fe:70:70:68:7b:1f:
a0:85:26:9e:45:fc:ad:34:ee:37:64:85:41:a9:73:80:e1:c4:
35:d3:fa:cd:bc:91:29:b6:f4:28:0f:93:3c:4f:2e:11:1e:d2:
81:a8:65:63:17:17:35:ac:c2:0e:54:ab:c9:97:17:66:17:39:
b0:32:58:98:01:86:e0:34:b3:a8:a2:16:fe:ed:0b:cf:1c:fd:
1a:a5:17:ce:4f:a2:69:4e:bb:ce:46:2c:dd:7d:8b:8e:33:44:
e5:1c:92:1f:86:69:5a:de:e2:d4:fe:1f:62:f0:ed:63:17:fb:
14:10:50:2f:ab:a4:09:cf:6c:72:1e:34:70:38:b6:90:a0:81:
b5:d8:c4:18:03:8b:13:a6:79:f4:35:a5:63:ef:8b:2c:91:2a:
7c:8f:3f:f1:5b:57:9b:f1:d3:b7:f6:78:d8:85:15:64:4b:31:
d3:41:72:af:a2:de:01:af:dd:94:18:e3:09:98:96:17:74:65:
be:18:98:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 02:38:36 2025 by rpki-client