Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/7f7lwwVQkFdpv2PGk2e5VJ4tAt0.roa
File: 7f7lwwVQkFdpv2PGk2e5VJ4tAt0.roa (raw, json)
Hash identifier: 42nVO9/XQyXO/IjaoCJEGoy0wn/EiyTgkhJbgP7vVUg=
Subject key identifier: ED:FE:E5:C3:05:50:90:57:69:BF:63:C6:93:67:B9:54:9E:2D:02:DD
Certificate issuer: /CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Certificate serial: 019420D5DE2F62D3623C7824D168BFF82EDA
Authority key identifier: 7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/7f7lwwVQkFdpv2PGk2e5VJ4tAt0.roa
Signing time: Wed 01 Jan 2025 07:47:54 +0000
ROA not before: Wed 01 Jan 2025 07:47:54 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 200740
IP address blocks: 109.205.215.0/24 maxlen: 24
185.81.216.0/24 maxlen: 24
185.81.219.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:d5:de:2f:62:d3:62:3c:78:24:d1:68:bf:f8:2e:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Validity
Not Before: Jan 1 07:47:54 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=edfee5c30550905769bf63c69367b9549e2d02dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:fa:3c:b9:f3:de:79:6a:9e:8c:0b:1d:ab:ef:
9e:39:08:bb:ae:0e:f7:fc:50:b0:bc:51:08:57:88:
a4:a7:1b:da:b8:b2:aa:5c:5d:9c:ce:96:23:41:e4:
b4:d5:9b:4f:0c:00:54:06:23:ce:10:b4:8d:2d:3e:
3e:fb:97:9a:0b:37:6b:3f:d8:a9:9f:fb:92:d2:14:
f7:b3:79:80:f9:b8:10:36:06:46:50:ee:72:e7:8c:
1a:bf:7a:09:63:28:94:ff:f8:13:dd:c6:c2:48:16:
6b:9d:fc:32:2f:ad:24:ac:50:18:1c:a2:3b:fe:d5:
a7:16:b5:80:f7:f4:d2:a7:1a:47:9a:b2:83:b1:c7:
4c:d3:03:88:70:5c:83:3d:45:7f:85:62:10:96:62:
9d:99:f9:36:b8:45:9f:b9:b4:68:c0:ca:47:02:97:
89:dc:44:1b:cf:26:39:2b:f5:00:9c:21:13:a0:86:
2f:b2:d8:24:ab:50:ae:c1:86:0a:62:a5:cc:0c:65:
25:d8:d7:06:3c:bc:f7:82:26:4b:b1:6d:e9:08:2e:
44:9a:38:d0:15:5a:28:97:2d:62:19:81:9b:74:f2:
5b:77:2b:bb:52:9c:f2:68:bd:20:c9:4c:a1:81:b9:
17:43:4d:54:72:6e:2b:99:77:66:3d:ae:35:a7:af:
04:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:FE:E5:C3:05:50:90:57:69:BF:63:C6:93:67:B9:54:9E:2D:02:DD
X509v3 Authority Key Identifier:
keyid:7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/7f7lwwVQkFdpv2PGk2e5VJ4tAt0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/fQakK7JEblHxkuo3W99-7FpRx38.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.205.215.0/24
185.81.216.0/24
185.81.219.0/24
Signature Algorithm: sha256WithRSAEncryption
c2:93:27:35:a4:c1:b4:70:8f:c5:a3:88:f7:47:79:2a:12:09:
05:ac:f1:d2:13:a9:33:7c:90:2c:4c:31:33:18:1e:51:14:90:
b7:5b:c1:30:e7:c3:74:a5:ca:5e:a3:b2:dc:79:31:19:3d:b0:
59:ba:6a:9b:da:29:e9:4e:57:b4:2e:5e:f3:42:36:6f:23:2c:
34:35:65:bc:b7:9e:b3:fd:4a:84:88:e8:7f:d3:48:d1:fc:be:
a0:bb:04:ef:86:42:49:b9:5c:b2:fc:68:13:66:5d:18:35:bb:
ca:c3:ff:d4:cd:4c:7f:b8:94:39:e2:a9:da:38:03:43:53:92:
67:62:80:77:21:c5:ce:1e:ca:4a:4f:19:a1:9d:ba:19:11:69:
b1:29:2c:f8:40:e9:0f:e0:e9:bc:c9:ed:dc:43:ba:9b:eb:71:
41:7a:e5:86:a5:f3:1d:90:0d:8e:c6:55:57:bc:80:73:b7:e4:
4d:bd:fe:97:e7:74:85:51:f0:b0:1b:1a:2b:95:4e:16:93:94:
5d:19:dc:14:96:ef:ce:67:fd:56:86:ef:84:af:0e:63:5b:f1:
7c:d2:7f:6e:d1:61:69:f0:90:3f:7a:83:f0:9d:43:e1:38:6c:
9d:04:ca:fe:b7:45:38:fc:3f:92:f0:2d:cf:bd:44:a4:50:ad:
73:e8:23:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:36:41 2025 by rpki-client