Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/f44e2e-2610-4997-bb12-aee9a4bea3aa/1/acInf2mWkx85sPM8rHZ1IIMcYKM.roa
File: acInf2mWkx85sPM8rHZ1IIMcYKM.roa (raw, json)
Hash identifier: qlq9DFRtjTLMUTmc2eQMgl4WSo006qu29FhpASJinkc=
Subject key identifier: 69:C2:27:7F:69:96:93:1F:39:B0:F3:3C:AC:76:75:20:83:1C:60:A3
Certificate issuer: /CN=fd6f5c0b8a7339ad3d597421e9f00877e3f4b6f7
Certificate serial: CE5A87
Authority key identifier: FD:6F:5C:0B:8A:73:39:AD:3D:59:74:21:E9:F0:08:77:E3:F4:B6:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_W9cC4pzOa09WXQh6fAId-P0tvc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/f44e2e-2610-4997-bb12-aee9a4bea3aa/1/acInf2mWkx85sPM8rHZ1IIMcYKM.roa
Signing time: Sat 01 Jan 2022 12:54:50 +0000
ROA not before: Sat 01 Jan 2022 12:54:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56655
IP address blocks: 185.14.97.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13523591 (0xce5a87)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fd6f5c0b8a7339ad3d597421e9f00877e3f4b6f7
Validity
Not Before: Jan 1 12:54:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=69c2277f6996931f39b0f33cac767520831c60a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:10:a5:9c:a0:74:87:51:8a:f3:4b:bb:43:b1:
12:47:5a:74:20:02:d2:14:8b:4b:87:c5:44:d4:ef:
8e:df:f0:d6:0a:1c:22:44:70:90:4e:f6:28:f4:f6:
f3:1a:19:e1:3d:3e:59:3b:3f:4c:e1:c7:7c:3a:2f:
36:d1:a0:0e:07:0e:1e:28:90:f4:5e:94:dd:3c:b6:
6c:3d:7e:93:64:85:38:88:32:c7:a9:53:3a:80:e2:
57:0c:e8:53:44:db:6c:ae:28:9e:ac:ad:28:c3:5c:
36:a3:e9:fd:5e:43:25:2c:20:61:c4:6f:1d:64:4b:
70:34:d0:6f:20:ea:c8:e2:cf:7b:ea:92:6d:06:eb:
fd:5a:12:6f:b6:74:be:ac:40:72:6d:a5:f6:8b:cc:
98:4e:5d:c4:5a:ed:07:f0:ef:84:cd:36:91:2f:b0:
17:32:a8:59:64:26:26:4c:65:41:ce:3e:86:a7:18:
2c:ab:d4:54:54:fc:7d:01:e2:0f:a0:a1:17:11:f7:
0e:ee:35:1d:47:98:a5:47:0e:7e:5d:45:13:21:ba:
ff:29:ba:c1:1e:2a:69:52:e9:8a:d0:fa:34:8a:70:
b5:ed:73:d3:b7:6c:bf:2c:3a:be:ee:5c:48:c1:c4:
f8:71:41:77:54:6a:93:74:66:ec:1c:35:b5:eb:28:
62:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:C2:27:7F:69:96:93:1F:39:B0:F3:3C:AC:76:75:20:83:1C:60:A3
X509v3 Authority Key Identifier:
keyid:FD:6F:5C:0B:8A:73:39:AD:3D:59:74:21:E9:F0:08:77:E3:F4:B6:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_W9cC4pzOa09WXQh6fAId-P0tvc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/f44e2e-2610-4997-bb12-aee9a4bea3aa/1/acInf2mWkx85sPM8rHZ1IIMcYKM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/f44e2e-2610-4997-bb12-aee9a4bea3aa/1/_W9cC4pzOa09WXQh6fAId-P0tvc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.14.97.0/24
Signature Algorithm: sha256WithRSAEncryption
cf:b7:78:ac:ee:0b:e0:3b:ff:2d:1f:41:6f:20:d3:8b:6a:c7:
39:d3:9e:0b:32:f6:30:de:75:36:97:19:22:56:6f:67:c8:0b:
56:50:fa:c5:66:83:93:23:91:78:6f:1c:b4:3c:dd:13:1a:b4:
3f:2f:b9:73:f7:f8:5d:4f:39:ab:0d:f9:41:03:b8:91:30:9c:
0e:bd:7d:ad:00:00:78:25:61:80:68:a7:44:49:46:13:f5:67:
79:cf:72:05:31:3a:08:ae:67:9d:3f:49:6e:f4:1b:93:fa:f0:
64:4b:62:98:ac:6e:20:b9:fe:de:f9:da:66:bc:2d:13:35:26:
f6:6c:a1:12:f4:e5:b0:07:86:d8:a2:ab:5b:c3:76:30:46:0a:
39:87:14:9b:2b:f8:d4:be:54:18:85:3e:e8:e7:1a:da:1d:4e:
80:00:6f:98:bd:4a:b8:f0:0c:97:16:ae:cb:35:16:13:4d:7a:
a9:0d:c1:59:aa:99:3c:27:90:2d:0a:f0:25:dc:09:73:2c:e5:
c0:d3:e5:d9:8f:e9:29:6b:29:b8:4c:d6:e4:00:62:88:41:69:
71:fa:a6:fc:9e:ac:47:48:72:48:59:2f:e7:af:84:35:f6:31:
aa:a7:01:6f:ff:45:20:cc:33:75:74:82:7e:ee:e5:69:73:7f:
23:f6:b6:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:36:09 2025 by rpki-client