Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/e3aa51-6129-493d-91d2-51751b29f8b4/1/f7aLIIGI4JMTkUrB815NvsqtLdc.roa
File: f7aLIIGI4JMTkUrB815NvsqtLdc.roa (raw, json)
Hash identifier: orYWQqBQJ42OH4XvZfMoo057+LtJT4tvNabgUSRv5PM=
Subject key identifier: 7F:B6:8B:20:81:88:E0:93:13:91:4A:C1:F3:5E:4D:BE:CA:AD:2D:D7
Certificate issuer: /CN=29878a2888c9ac3123c795ff9681f1957ca0f964
Certificate serial: 066C231D
Authority key identifier: 29:87:8A:28:88:C9:AC:31:23:C7:95:FF:96:81:F1:95:7C:A0:F9:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KYeKKIjJrDEjx5X_loHxlXyg-WQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/e3aa51-6129-493d-91d2-51751b29f8b4/1/f7aLIIGI4JMTkUrB815NvsqtLdc.roa
Signing time: Sat 01 Jan 2022 04:59:51 +0000
ROA not before: Sat 01 Jan 2022 04:59:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3292
IP address blocks: 185.97.215.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 107750173 (0x66c231d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29878a2888c9ac3123c795ff9681f1957ca0f964
Validity
Not Before: Jan 1 04:59:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7fb68b208188e09313914ac1f35e4dbecaad2dd7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:73:dd:2e:e7:95:89:0c:95:16:8b:4b:06:fd:
16:03:a6:05:ee:67:87:55:a9:68:5a:c3:ba:5c:f5:
23:cd:58:29:60:23:2b:91:18:54:5a:8a:fa:c8:8c:
ff:f4:4e:f9:8b:93:65:36:bb:e6:91:67:0f:e6:07:
59:27:34:e7:44:2f:65:38:fd:7a:3a:1c:ce:23:57:
99:f5:de:69:16:1b:2a:68:5b:32:4e:0d:e2:cc:fc:
7e:d1:cb:93:26:35:f2:d6:13:64:df:41:89:15:f5:
9e:c1:d4:f8:bb:c7:68:23:4e:ba:7f:c0:96:99:1a:
5b:a3:39:dc:36:d4:43:70:2b:ef:74:83:12:89:91:
97:c0:c4:ea:71:2d:7f:83:be:f9:fd:e5:f4:1f:12:
62:d6:94:2e:30:28:18:e5:2c:b7:79:13:88:4d:d3:
fe:ed:9c:9a:d3:3d:e6:03:38:9d:40:6c:23:55:2f:
de:f8:77:63:84:e0:f3:16:88:54:bf:ba:c9:64:9c:
2f:c7:2e:bf:24:1c:6a:a4:d8:08:7b:8c:91:a0:30:
30:4d:32:77:df:b5:7d:2d:14:e0:5d:6c:81:99:9c:
95:b8:3b:25:36:7d:c3:95:c5:5f:7c:5b:8b:52:06:
5f:e2:f5:ed:b3:d6:05:65:2c:e3:9b:97:df:1c:af:
bf:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:B6:8B:20:81:88:E0:93:13:91:4A:C1:F3:5E:4D:BE:CA:AD:2D:D7
X509v3 Authority Key Identifier:
keyid:29:87:8A:28:88:C9:AC:31:23:C7:95:FF:96:81:F1:95:7C:A0:F9:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KYeKKIjJrDEjx5X_loHxlXyg-WQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/e3aa51-6129-493d-91d2-51751b29f8b4/1/f7aLIIGI4JMTkUrB815NvsqtLdc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/e3aa51-6129-493d-91d2-51751b29f8b4/1/KYeKKIjJrDEjx5X_loHxlXyg-WQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.97.215.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:b0:56:31:51:e4:35:6d:c1:09:de:f7:ee:c9:b0:2b:b4:f7:
f8:12:b4:9d:85:ae:78:61:5a:24:ed:7e:aa:0a:1b:0e:ff:be:
b7:05:fe:41:ca:2a:eb:52:9a:9b:0b:4a:9d:54:4f:33:16:8a:
01:83:00:dd:30:7a:5e:9e:21:28:8f:b9:5a:fe:d9:a8:8d:4d:
58:66:aa:84:c6:61:41:b8:7f:7c:4d:d9:41:0e:f6:6a:79:a9:
d2:a7:8f:47:51:51:3f:dc:0e:d8:57:3a:35:02:fa:4c:25:2f:
a5:5d:d0:09:8f:1b:8f:86:7d:76:bf:39:87:8f:1e:0c:fa:6f:
3c:23:0d:2e:51:e3:f3:71:8e:a8:78:ba:a2:7d:f6:92:fe:6b:
b5:7f:78:44:2f:7a:b2:b7:a5:10:a2:68:01:93:f3:02:cd:0a:
32:ba:90:c1:2b:a3:00:8c:ac:89:9e:ea:35:f4:d9:8a:ca:af:
0d:1c:96:72:05:b7:fa:e4:b0:eb:d7:ae:66:fa:79:d3:98:26:
fc:45:82:40:21:12:47:41:c5:ef:70:70:a1:8d:39:f2:98:74:
78:d1:27:f0:3f:18:9c:77:59:03:65:bc:04:03:25:0a:42:00:
c0:0c:f9:ba:fc:77:16:00:f3:70:9e:c3:18:10:80:97:e6:c7:
44:b3:71:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 02:48:53 2025 by rpki-client