Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/a50cc9-9c36-442d-887d-e8b8b01236b0/1/5u9TIrhD7r73sfXOdALTLqXu1W4.roa
File: 5u9TIrhD7r73sfXOdALTLqXu1W4.roa (raw, json)
Hash identifier: J89vFc4ddeye0XpN0aVF7nJLnartSzAJFOL8OSVH6Io=
Subject key identifier: E6:EF:53:22:B8:43:EE:BE:F7:B1:F5:CE:74:02:D3:2E:A5:EE:D5:6E
Certificate issuer: /CN=9580bb4438acdfd53971b3afa06dcf869f985005
Certificate serial: 61B70E
Authority key identifier: 95:80:BB:44:38:AC:DF:D5:39:71:B3:AF:A0:6D:CF:86:9F:98:50:05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lYC7RDis39U5cbOvoG3Php-YUAU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/a50cc9-9c36-442d-887d-e8b8b01236b0/1/5u9TIrhD7r73sfXOdALTLqXu1W4.roa
Signing time: Sat 01 Jan 2022 00:55:02 +0000
ROA not before: Sat 01 Jan 2022 00:55:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213006
IP address blocks: 185.109.162.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6403854 (0x61b70e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9580bb4438acdfd53971b3afa06dcf869f985005
Validity
Not Before: Jan 1 00:55:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e6ef5322b843eebef7b1f5ce7402d32ea5eed56e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:43:28:4f:b1:51:a6:85:0e:0a:cc:6f:ca:d5:
fe:8f:33:f1:d6:2a:eb:52:02:ba:03:c4:e7:f5:f7:
20:a0:1c:a9:40:ec:9f:47:63:49:e5:a2:f1:84:9e:
80:32:d9:60:7b:07:ed:fc:a5:10:42:d5:79:dc:d9:
a7:34:32:1b:49:65:2a:02:1f:53:e7:3d:f0:16:5d:
53:85:2e:c1:cb:2e:44:53:eb:6c:a7:20:fb:a7:92:
18:bb:13:0f:12:64:1f:cf:61:6a:21:da:9c:7c:bd:
38:10:c7:1b:dd:04:e0:fa:26:c1:74:ff:6d:74:17:
ae:4b:41:b1:d1:f8:8c:bb:13:06:e5:e7:23:c8:1b:
19:50:d4:f0:83:2c:f9:c3:d3:64:33:76:f4:c6:da:
3c:9b:12:d3:99:3b:99:d5:82:01:49:54:fb:88:66:
78:4e:4a:0f:d8:82:40:c5:c6:75:38:d5:42:6a:87:
b9:f2:e9:d5:4c:48:c1:4b:04:33:8f:da:9e:25:f9:
99:52:d3:84:9a:9b:f6:9e:5c:98:a6:2e:50:07:ca:
f3:e3:b8:34:af:0c:a4:0e:f4:5e:61:78:73:b1:c0:
79:8b:2b:69:db:32:7c:f5:e6:3f:dd:03:0a:e2:e8:
26:1f:88:a8:0a:8b:9e:c6:96:c7:df:46:73:4d:0f:
6d:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:EF:53:22:B8:43:EE:BE:F7:B1:F5:CE:74:02:D3:2E:A5:EE:D5:6E
X509v3 Authority Key Identifier:
keyid:95:80:BB:44:38:AC:DF:D5:39:71:B3:AF:A0:6D:CF:86:9F:98:50:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lYC7RDis39U5cbOvoG3Php-YUAU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/a50cc9-9c36-442d-887d-e8b8b01236b0/1/5u9TIrhD7r73sfXOdALTLqXu1W4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/a50cc9-9c36-442d-887d-e8b8b01236b0/1/lYC7RDis39U5cbOvoG3Php-YUAU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.109.162.0/24
Signature Algorithm: sha256WithRSAEncryption
23:88:dc:c6:0a:bd:53:39:46:82:a2:cf:91:74:d5:df:4b:d1:
af:0b:bf:09:ca:a7:8b:9e:b6:ab:06:9e:9b:18:25:55:cb:0e:
ce:50:c2:72:ab:f8:f5:84:85:b4:b1:a0:19:68:1f:07:ed:ae:
dc:fc:d4:3c:58:08:6b:c8:47:c2:4e:a1:c0:e9:0e:9a:3f:d5:
99:4d:c8:9a:7b:88:9c:b9:76:ef:74:06:e2:6c:9c:f2:d8:a2:
74:92:e5:02:4e:a4:ce:85:29:09:d1:d0:b5:ce:29:51:e1:b1:
25:a5:3a:22:9a:45:d2:29:b7:25:6a:8b:72:22:ef:a9:9f:59:
11:bf:25:be:ea:b2:a5:34:fc:b1:91:36:b2:1b:61:30:53:f5:
35:18:45:c9:41:89:2a:ae:a0:6f:19:7b:fa:bc:70:32:21:bb:
d0:aa:24:57:97:5c:d9:90:c7:a3:da:3e:02:81:53:95:c2:fd:
33:69:dc:aa:07:b9:27:55:8a:27:cd:45:40:e1:5d:72:35:44:
eb:da:45:15:da:52:1a:06:be:1e:6e:06:5c:47:66:a6:6c:13:
b3:b4:05:db:43:50:5a:8e:ab:b7:e7:2c:dc:ed:41:5a:a1:90:
aa:88:80:1a:8d:cf:a1:70:1b:c6:3c:0f:a9:b8:df:f7:8d:aa:
e5:71:e2:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:18:05 2025 by rpki-client