Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/8d40c2-c28e-45dd-ac10-07fe7760a979/1/ndJ2MhkoQuhgQvlyuxM5yOAHIio.roa
File: ndJ2MhkoQuhgQvlyuxM5yOAHIio.roa (raw, json)
Hash identifier: ysAnvngJtyyl1mDS8/bs2ZRrKR4OY4G71xPqT6qLdyg=
Subject key identifier: 9D:D2:76:32:19:28:42:E8:60:42:F9:72:BB:13:39:C8:E0:07:22:2A
Certificate issuer: /CN=868e89c7ab4e1512a9b46d5389b5de9c6a1d7e99
Certificate serial: 3809CEFE
Authority key identifier: 86:8E:89:C7:AB:4E:15:12:A9:B4:6D:53:89:B5:DE:9C:6A:1D:7E:99
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ho6Jx6tOFRKptG1TibXenGodfpk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/8d40c2-c28e-45dd-ac10-07fe7760a979/1/ndJ2MhkoQuhgQvlyuxM5yOAHIio.roa
Signing time: Sat 01 Jan 2022 11:54:29 +0000
ROA not before: Sat 01 Jan 2022 11:54:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208043
IP address blocks: 83.209.153.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 940166910 (0x3809cefe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=868e89c7ab4e1512a9b46d5389b5de9c6a1d7e99
Validity
Not Before: Jan 1 11:54:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9dd27632192842e86042f972bb1339c8e007222a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:df:6f:d6:21:1c:48:80:43:23:f5:c3:db:b6:
49:9a:86:4a:13:d7:8d:11:1d:48:13:6c:c0:9b:bc:
da:c2:24:c2:ac:bc:8b:9f:78:00:4f:d3:a6:12:ee:
7e:51:52:15:aa:af:f9:e0:e2:b4:04:06:6f:82:0c:
4b:9a:8a:81:12:c0:b6:a3:04:21:85:b8:80:64:17:
7f:cf:57:86:03:26:a7:79:a4:79:e2:59:5d:eb:c3:
35:98:80:eb:5d:ca:12:5c:59:cc:d1:8a:04:f7:a8:
10:5e:3b:ce:db:8b:b1:60:93:75:22:db:81:47:95:
3e:4a:9c:ab:2a:b4:6b:87:81:cb:cf:a9:17:66:21:
d4:e7:0c:ef:cb:d8:c7:9f:11:d5:b0:14:17:a6:62:
8f:b7:70:5d:c5:a6:d3:53:e0:da:37:9a:2c:a2:fa:
2b:d4:eb:32:f3:e5:37:17:93:8f:08:ad:72:90:44:
ce:73:14:c3:18:03:83:31:9a:04:2e:3f:68:06:32:
e1:84:de:f8:71:e0:37:49:86:61:06:01:0a:d5:a9:
ad:88:5a:98:da:ea:57:dc:30:22:cb:43:17:c5:0f:
d4:11:9d:87:b6:b7:2e:97:a1:1b:34:35:bc:f8:e4:
ae:06:cf:39:6c:9c:3b:c7:75:cb:c5:db:36:0e:0b:
d7:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:D2:76:32:19:28:42:E8:60:42:F9:72:BB:13:39:C8:E0:07:22:2A
X509v3 Authority Key Identifier:
keyid:86:8E:89:C7:AB:4E:15:12:A9:B4:6D:53:89:B5:DE:9C:6A:1D:7E:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ho6Jx6tOFRKptG1TibXenGodfpk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/8d40c2-c28e-45dd-ac10-07fe7760a979/1/ndJ2MhkoQuhgQvlyuxM5yOAHIio.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/8d40c2-c28e-45dd-ac10-07fe7760a979/1/ho6Jx6tOFRKptG1TibXenGodfpk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.209.153.0/24
Signature Algorithm: sha256WithRSAEncryption
53:64:e0:8e:4d:d0:5d:92:2e:79:48:a3:79:8d:0d:71:54:c3:
d9:35:fc:9a:5b:a6:96:d0:94:99:fe:62:ae:9e:24:03:34:a9:
fc:4e:a9:ce:a2:53:37:30:88:63:64:dd:f4:ee:47:ad:b6:4f:
21:aa:1e:4b:95:a0:fe:ba:f4:4a:c8:d0:21:df:0d:ae:e6:bb:
51:05:2e:6b:2c:e6:73:2f:6e:15:cf:a6:e2:6b:5c:04:82:7b:
2c:06:35:f9:a9:59:dd:a3:71:1b:a6:14:e0:66:2e:70:1a:c7:
c6:7c:eb:de:14:89:73:93:e4:ad:5d:8e:69:9b:28:22:b3:cf:
ff:6b:3b:fb:4b:55:6c:8e:ec:89:9d:2c:3a:0c:d5:20:9b:c7:
57:18:ef:6e:ac:6f:15:83:11:17:46:87:63:98:32:e4:f4:21:
b3:14:39:34:fe:bf:97:dc:0a:fd:42:fc:6c:8d:8d:50:d0:5f:
bc:51:34:17:5d:4e:ea:b0:19:d4:7d:29:ca:02:63:9e:99:86:
98:f9:e8:c3:f3:00:32:fa:bf:9d:8e:0c:17:84:d9:0e:f8:49:
45:0b:7b:5f:34:76:ce:24:cb:d4:f3:27:2b:bf:de:ce:ae:1c:
f5:39:94:28:1b:33:b8:24:50:ec:e2:69:7d:0b:73:b9:56:5a:
91:e5:e9:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 02:55:01 2025 by rpki-client