Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/e3aa51-6129-493d-91d2-51751b29f8b4/1/wKcQ1LtLPXkZHX1UF-o2a3BL8to.roa
File: wKcQ1LtLPXkZHX1UF-o2a3BL8to.roa (raw, json)
Hash identifier: 0ys66DdZ1WFaXzGZ6afAmlWmpKJDfkmrf0WB5d1FkoM=
Subject key identifier: C0:A7:10:D4:BB:4B:3D:79:19:1D:7D:54:17:EA:36:6B:70:4B:F2:DA
Certificate issuer: /CN=29878a2888c9ac3123c795ff9681f1957ca0f964
Certificate serial: 066D27A3
Authority key identifier: 29:87:8A:28:88:C9:AC:31:23:C7:95:FF:96:81:F1:95:7C:A0:F9:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KYeKKIjJrDEjx5X_loHxlXyg-WQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/e3aa51-6129-493d-91d2-51751b29f8b4/1/wKcQ1LtLPXkZHX1UF-o2a3BL8to.roa
Signing time: Sat 01 Jan 2022 04:59:52 +0000
ROA not before: Sat 01 Jan 2022 04:59:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14618
IP address blocks: 185.97.212.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 107816867 (0x66d27a3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29878a2888c9ac3123c795ff9681f1957ca0f964
Validity
Not Before: Jan 1 04:59:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c0a710d4bb4b3d79191d7d5417ea366b704bf2da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:ef:db:20:95:b8:62:4e:02:ef:79:73:cc:54:
0a:cc:a3:6c:d9:1b:0e:6b:bc:4b:ec:27:87:60:f5:
1f:5f:a2:12:01:78:7d:64:cd:4a:b0:13:f3:a9:b5:
9b:bf:55:ff:e3:a7:37:32:7c:7b:84:6a:9e:35:d9:
18:b9:66:2b:e0:0e:68:00:94:66:98:3f:87:25:72:
fd:68:62:0b:5a:01:22:b6:36:53:a4:1c:a5:fd:99:
17:40:1b:f2:2b:c3:cd:03:11:28:42:f5:86:ee:22:
19:9e:91:b6:0c:51:41:d0:28:e3:10:72:cf:ad:cc:
1b:79:71:c3:12:eb:7d:69:27:8a:c3:15:26:23:07:
fa:24:34:66:21:41:67:80:6b:96:3c:74:b1:63:5f:
f2:96:fe:f4:c0:80:a8:a6:24:3d:49:43:60:d9:c0:
36:da:e0:de:2f:4c:8a:b6:9e:77:7a:24:b8:68:0b:
8e:16:be:71:d9:4f:14:e9:73:22:e4:19:5a:58:03:
8f:69:dd:b3:d8:86:e7:37:1d:cc:c8:1d:38:c3:75:
65:ef:31:97:86:92:33:a9:5b:58:d8:9d:55:d1:2d:
3a:f8:07:dc:28:c7:32:d7:e0:13:55:94:5e:01:d2:
39:44:e0:ac:33:2d:3e:3d:7a:f9:6e:65:4d:5e:e6:
27:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:A7:10:D4:BB:4B:3D:79:19:1D:7D:54:17:EA:36:6B:70:4B:F2:DA
X509v3 Authority Key Identifier:
keyid:29:87:8A:28:88:C9:AC:31:23:C7:95:FF:96:81:F1:95:7C:A0:F9:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KYeKKIjJrDEjx5X_loHxlXyg-WQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/e3aa51-6129-493d-91d2-51751b29f8b4/1/wKcQ1LtLPXkZHX1UF-o2a3BL8to.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/e3aa51-6129-493d-91d2-51751b29f8b4/1/KYeKKIjJrDEjx5X_loHxlXyg-WQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.97.212.0/24
Signature Algorithm: sha256WithRSAEncryption
41:21:52:61:25:d8:f7:fc:08:e8:a6:df:1e:0a:f6:d9:30:d9:
0c:91:cf:80:ee:5d:b4:2b:1b:3e:19:e1:3f:26:a4:0e:e9:eb:
6f:88:47:21:23:95:5d:88:3b:74:79:ab:08:72:cc:af:05:91:
68:ce:ff:85:71:8a:6e:c9:c8:3f:c7:78:50:31:09:92:64:07:
76:6f:6a:fe:00:d9:8d:95:a1:31:9b:66:26:ea:86:3f:2f:74:
5a:2d:3c:87:06:e6:ba:b9:84:13:ff:20:10:a6:1d:87:4d:14:
61:02:49:69:73:fe:5d:34:de:0f:9a:ca:dd:d4:07:d1:f4:d7:
8f:83:db:59:6c:bc:e8:69:9e:71:3c:5c:79:3b:b6:5d:26:cc:
9c:dc:0e:fe:ca:20:2c:dc:b2:36:e0:98:d1:6d:35:ed:9c:44:
50:6b:dc:c0:18:b1:8f:09:f6:6a:5e:48:31:f1:58:c7:7c:0a:
90:c4:fc:52:d3:15:ac:37:e1:90:46:31:17:35:eb:26:73:9a:
29:df:ce:63:ce:5d:69:c1:89:59:d7:d2:3d:f4:4a:de:b0:57:
f7:6d:99:6e:dc:3a:54:ae:57:94:05:3a:f7:58:b6:41:f9:0f:
b8:4b:de:de:e0:cf:2b:0e:99:eb:03:84:d4:bd:a0:86:50:eb:
39:f1:ba:75
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBm0nozANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygy
OTg3OGEyODg4YzlhYzMxMjNjNzk1ZmY5NjgxZjE5NTdjYTBmOTY0MB4XDTIyMDEw
MTA0NTk1MloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYzBhNzEwZDRiYjRi
M2Q3OTE5MWQ3ZDU0MTdlYTM2NmI3MDRiZjJkYTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJDv2yCVuGJOAu95c8xUCsyjbNkbDmu8S+wnh2D1H1+iEgF4
fWTNSrAT86m1m79V/+OnNzJ8e4RqnjXZGLlmK+AOaACUZpg/hyVy/WhiC1oBIrY2
U6Qcpf2ZF0Ab8ivDzQMRKEL1hu4iGZ6RtgxRQdAo4xByz63MG3lxwxLrfWknisMV
JiMH+iQ0ZiFBZ4Brljx0sWNf8pb+9MCAqKYkPUlDYNnANtrg3i9Miraed3okuGgL
jha+cdlPFOlzIuQZWlgDj2nds9iG5zcdzMgdOMN1Ze8xl4aSM6lbWNidVdEtOvgH
3CjHMtfgE1WUXgHSOUTgrDMtPj16+W5lTV7mJw8CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTApxDUu0s9eRkdfVQX6jZrcEvy2jAfBgNVHSMEGDAWgBQph4ooiMmsMSPH
lf+WgfGVfKD5ZDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0tZZUtLSWpKckRFang1WF9sb0h4bFh5Zy1XUS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZTYvZTNhYTUxLTYxMjktNDkzZC05MWQyLTUxNzUxYjI5ZjhiNC8x
L3dLY1ExTHRMUFhrWkhYMVVGLW8yYTNCTDh0by5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZTYv
ZTNhYTUxLTYxMjktNDkzZC05MWQyLTUxNzUxYjI5ZjhiNC8xL0tZZUtLSWpKckRF
ang1WF9sb0h4bFh5Zy1XUS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALlh1DANBgkqhkiG9w0BAQsFAAOC
AQEAQSFSYSXY9/wI6KbfHgr22TDZDJHPgO5dtCsbPhnhPyakDunrb4hHISOVXYg7
dHmrCHLMrwWRaM7/hXGKbsnIP8d4UDEJkmQHdm9q/gDZjZWhMZtmJuqGPy90Wi08
hwbmurmEE/8gEKYdh00UYQJJaXP+XTTeD5rK3dQH0fTXj4PbWWy86GmecTxceTu2
XSbMnNwO/sogLNyyNuCY0W017ZxEUGvcwBixjwn2al5IMfFYx3wKkMT8UtMVrDfh
kEYxFzXrJnOaKd/OY85dacGJWdfSPfRK3rBX922Zbtw6VK5XlAU691i2QfkPuEve
3uDPKw6Z6wOE1L2ghlDrOfG6dQ==
-----END CERTIFICATE-----
Generated at Thu Feb 20 02:44:30 2025 by rpki-client