Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/a89801-c721-41bb-b517-b8c666e6d351/1/3IZAoxbeGMdG__hWF6fQL29BV6w.roa
File: 3IZAoxbeGMdG__hWF6fQL29BV6w.roa (raw, json)
Hash identifier: Xo9x0jKL/TetMrZCGONHfqVEPa7tRRRmFZesaakaz8k=
Subject key identifier: DC:86:40:A3:16:DE:18:C7:46:FF:F8:56:17:A7:D0:2F:6F:41:57:AC
Certificate issuer: /CN=191e27b29f65a24d9f94215715cd3671825a9eae
Certificate serial: 018573B185869A2E03F281C1AA4982D989CB
Authority key identifier: 19:1E:27:B2:9F:65:A2:4D:9F:94:21:57:15:CD:36:71:82:5A:9E:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GR4nsp9lok2flCFXFc02cYJanq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/a89801-c721-41bb-b517-b8c666e6d351/1/3IZAoxbeGMdG__hWF6fQL29BV6w.roa
Signing time: Mon 02 Jan 2023 18:14:51 +0000
ROA not before: Mon 02 Jan 2023 18:14:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60781
IP address blocks: 185.102.27.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:b1:85:86:9a:2e:03:f2:81:c1:aa:49:82:d9:89:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=191e27b29f65a24d9f94215715cd3671825a9eae
Validity
Not Before: Jan 2 18:14:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dc8640a316de18c746fff85617a7d02f6f4157ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:4f:c2:ab:18:0a:39:49:70:16:dd:97:3d:fa:
69:4d:73:41:c4:a7:06:21:5a:92:f1:10:a8:81:ee:
9f:e9:0f:71:7d:13:f4:00:34:cc:fe:9f:92:da:42:
53:8d:78:df:ca:21:85:10:19:fa:90:23:01:e2:20:
b6:24:89:9d:19:84:95:4d:f0:cb:3a:97:5e:36:e7:
39:bd:b0:28:7d:88:c5:c2:8d:a0:17:b6:d1:76:aa:
51:43:d5:31:a1:cc:50:de:ba:85:ad:5c:de:48:fb:
8d:35:9e:ff:66:f0:d3:de:0e:1d:c1:94:19:9d:d5:
e6:0d:cc:16:f3:dc:52:b5:6b:2a:16:94:4b:ea:ab:
ad:e9:7c:9e:80:c0:0d:d0:ba:66:9f:ee:04:7d:ff:
b8:f9:b0:ce:a2:ee:de:61:a8:4b:d7:1a:a2:a9:b3:
26:54:bd:31:28:c8:89:79:d9:da:7c:3e:cf:87:dd:
22:cf:81:4b:c5:05:84:b1:65:d5:a7:7b:5a:d7:0f:
cb:d9:23:49:41:d9:0d:a0:f2:93:14:c9:00:92:ab:
9e:f5:e3:bd:50:84:50:11:b7:35:5c:2c:e5:24:7d:
24:24:8e:35:b4:e0:a0:9d:8d:de:d5:bc:4c:53:aa:
d5:a2:71:e8:1d:f6:05:09:f8:03:21:f8:5a:3d:64:
d5:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:86:40:A3:16:DE:18:C7:46:FF:F8:56:17:A7:D0:2F:6F:41:57:AC
X509v3 Authority Key Identifier:
keyid:19:1E:27:B2:9F:65:A2:4D:9F:94:21:57:15:CD:36:71:82:5A:9E:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GR4nsp9lok2flCFXFc02cYJanq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/a89801-c721-41bb-b517-b8c666e6d351/1/3IZAoxbeGMdG__hWF6fQL29BV6w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/a89801-c721-41bb-b517-b8c666e6d351/1/GR4nsp9lok2flCFXFc02cYJanq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.102.27.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:16:07:66:3d:60:07:03:15:e6:a3:22:32:ee:62:9e:3e:cd:
c5:10:65:29:8c:a9:78:d9:b3:55:5a:ce:95:15:25:06:1d:ec:
8c:da:34:ac:54:d2:1c:c0:34:c0:3f:29:b1:81:4f:e6:0f:08:
12:2c:51:b6:01:d4:f5:b1:83:68:5a:2b:6a:19:9f:10:71:fb:
af:fd:73:61:4c:a2:83:01:88:ba:3b:dc:37:cc:27:cf:4e:8d:
04:7c:21:52:aa:d0:fd:72:f0:95:9b:26:98:a4:63:ff:86:df:
e3:c2:a6:24:c2:0a:bf:85:27:5d:90:fe:c0:4f:e7:71:8d:2e:
92:b5:f2:df:d4:dc:08:d0:0a:10:39:53:51:e2:8e:77:96:e1:
74:59:d4:2d:b0:c1:d6:d4:a9:35:ac:0f:f0:da:59:58:81:38:
ed:6f:8b:7e:4a:01:cb:e7:52:15:f7:06:ad:78:d2:3f:22:16:
e3:df:a3:90:79:b3:aa:59:b3:8a:a8:3f:1f:51:99:45:9f:23:
5f:f6:e1:ed:54:32:0f:b2:b4:67:5d:d4:f5:1c:d9:fe:d0:c2:
77:c8:8c:ca:ff:ac:46:5c:9a:b6:8e:b0:08:11:f9:5d:4d:df:
44:c9:74:31:40:07:f5:d0:c0:16:13:58:7b:97:83:cf:8f:e6:
19:8a:16:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:39:09 2025 by rpki-client