Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/0b1815-53d7-456d-9fb4-670308d1ec9d/1/RwucBh6hs7N6skIXj0Els4JZ1pU.roa
File: RwucBh6hs7N6skIXj0Els4JZ1pU.roa (raw, json)
Hash identifier: urOGL/E1uzQWav8PyCITeQ0aVsbHv+AD48HSKevp4uc=
Subject key identifier: 47:0B:9C:06:1E:A1:B3:B3:7A:B2:42:17:8F:41:25:B3:82:59:D6:95
Certificate issuer: /CN=4364fe73419bc86d5f2e72b414b6b4d4379d5bf5
Certificate serial: 0A5EFCF7
Authority key identifier: 43:64:FE:73:41:9B:C8:6D:5F:2E:72:B4:14:B6:B4:D4:37:9D:5B:F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q2T-c0GbyG1fLnK0FLa01DedW_U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/0b1815-53d7-456d-9fb4-670308d1ec9d/1/RwucBh6hs7N6skIXj0Els4JZ1pU.roa
Signing time: Sat 01 Jan 2022 15:55:28 +0000
ROA not before: Sat 01 Jan 2022 15:55:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206898
IP address blocks: 185.172.111.0/24 maxlen: 24
185.172.108.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 173997303 (0xa5efcf7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4364fe73419bc86d5f2e72b414b6b4d4379d5bf5
Validity
Not Before: Jan 1 15:55:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=470b9c061ea1b3b37ab242178f4125b38259d695
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:ab:12:f3:24:31:97:de:99:ac:3c:27:74:16:
f1:52:b2:9e:90:c0:c7:e8:02:4c:b7:bf:4f:f0:6f:
9a:41:4a:c5:c6:d7:40:d4:ba:0b:11:36:df:88:3d:
49:a7:d0:36:8f:95:6a:6d:a4:d8:81:9d:ec:50:73:
ed:a5:2b:3c:5a:cd:23:a9:97:de:f4:22:57:42:d4:
7c:10:31:1f:d8:a8:8c:bf:23:40:4b:b6:8d:17:3f:
b0:a2:69:d6:ff:7a:d9:ab:b1:4d:99:6f:90:fe:c4:
c4:7c:6c:a1:c1:af:18:2d:92:fa:99:32:75:2f:01:
a0:05:bf:3a:f5:24:6d:93:63:29:55:6a:10:c6:df:
b3:27:33:94:2a:e3:a1:ab:73:16:2e:74:f2:5c:9d:
02:ce:88:15:55:67:b6:e1:c3:34:fe:fe:7d:bb:18:
49:30:80:c5:03:75:c2:9b:50:c6:f0:25:f2:10:8f:
0a:9b:24:15:24:1d:fd:1c:bf:57:3d:c8:aa:01:95:
16:81:56:9c:15:ab:ec:49:dc:46:18:c9:46:3a:98:
1a:b8:a8:8c:45:6b:d8:2a:33:61:44:53:c0:c6:49:
1b:c0:c7:7d:aa:c5:5b:d8:b9:1a:16:5d:7b:e9:e8:
85:ee:9c:b1:5c:02:d6:63:0f:d8:7f:ba:e6:01:d3:
11:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:0B:9C:06:1E:A1:B3:B3:7A:B2:42:17:8F:41:25:B3:82:59:D6:95
X509v3 Authority Key Identifier:
keyid:43:64:FE:73:41:9B:C8:6D:5F:2E:72:B4:14:B6:B4:D4:37:9D:5B:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q2T-c0GbyG1fLnK0FLa01DedW_U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/0b1815-53d7-456d-9fb4-670308d1ec9d/1/RwucBh6hs7N6skIXj0Els4JZ1pU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/0b1815-53d7-456d-9fb4-670308d1ec9d/1/Q2T-c0GbyG1fLnK0FLa01DedW_U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.172.108.0/22
Signature Algorithm: sha256WithRSAEncryption
0b:eb:47:b8:b2:ef:e2:07:92:b3:85:38:00:cd:11:10:89:95:
ea:b2:77:00:b3:19:09:7f:2e:e3:c2:c9:b5:a0:67:c1:1c:56:
90:69:8c:fc:b6:f7:c7:cf:64:82:25:1e:4c:0b:d2:6b:00:eb:
dd:c7:4d:c3:5a:9e:44:1e:d9:64:a5:98:a0:7e:6b:f0:0b:e0:
7a:9d:77:5f:c7:8b:4e:b6:0b:f7:aa:63:71:0e:b0:95:ec:e8:
fe:a7:f5:dd:63:e9:0a:0d:8f:87:96:23:36:29:08:42:14:e3:
ba:62:72:08:f3:38:a8:24:6c:35:d9:1b:cd:62:d8:51:56:95:
f2:2e:13:8f:8a:18:da:70:9c:33:d2:55:dd:c2:c6:b6:32:d1:
d0:a4:c0:04:f5:3c:71:bd:bf:73:15:e7:d6:8e:3b:39:b1:a1:
c0:25:6a:6c:80:7b:a8:6c:9b:7f:43:ea:a3:97:3d:7c:15:b0:
55:f7:fe:35:cf:26:39:c4:7d:8c:dd:54:64:7d:aa:72:e0:63:
17:55:01:97:db:fa:e1:5d:f6:ca:d6:5d:be:9e:b1:c6:b5:d1:
bf:f4:31:57:1c:4c:ab:75:19:23:49:44:3b:79:ea:f8:2b:5f:
b2:63:70:4b:0e:7d:d9:17:92:95:63:85:87:22:fe:74:03:20:
ec:48:52:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:41:51 2025 by rpki-client