Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/f6b173-912c-4151-bac5-4c8883327a2a/1/DZJR4bTudKGfOD2plqjMraGXKPI.roa
File: DZJR4bTudKGfOD2plqjMraGXKPI.roa (raw, json)
Hash identifier: afFNGMdolO4FUUzhk+Z0qg5nsIvBE/NcGT79oWvLR/s=
Subject key identifier: 0D:92:51:E1:B4:EE:74:A1:9F:38:3D:A9:96:A8:CC:AD:A1:97:28:F2
Certificate issuer: /CN=07e5c4e4be3b8cbde0eae9460a11032d6a64ab71
Certificate serial: 0834D16F
Authority key identifier: 07:E5:C4:E4:BE:3B:8C:BD:E0:EA:E9:46:0A:11:03:2D:6A:64:AB:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B-XE5L47jL3g6ulGChEDLWpkq3E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/f6b173-912c-4151-bac5-4c8883327a2a/1/DZJR4bTudKGfOD2plqjMraGXKPI.roa
Signing time: Sat 01 Jan 2022 10:55:54 +0000
ROA not before: Sat 01 Jan 2022 10:55:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56611
IP address blocks: 185.173.232.0/24 maxlen: 24
185.173.233.0/24 maxlen: 24
185.173.234.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 137679215 (0x834d16f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07e5c4e4be3b8cbde0eae9460a11032d6a64ab71
Validity
Not Before: Jan 1 10:55:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0d9251e1b4ee74a19f383da996a8ccada19728f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:c4:dc:8f:bc:b5:76:fb:d4:dd:a0:c0:b0:71:
26:09:f9:a8:2d:65:a8:78:45:d7:c1:fa:d4:a8:e6:
43:b4:61:19:a3:48:4f:4f:22:d6:3b:63:a5:52:8c:
05:d3:e4:66:7b:40:8b:04:e5:8e:a5:fd:7a:69:04:
40:ae:b5:5d:9d:1a:f9:d8:92:3e:b9:f6:3b:ca:8c:
2f:63:c7:6d:a3:f5:53:0e:ad:5f:13:63:db:fe:eb:
25:44:e6:fc:40:3b:ac:28:80:c7:d2:d3:4c:2e:6e:
ee:5b:60:dc:bc:cc:6e:ad:23:55:0d:5f:22:a6:00:
74:a9:c0:c0:7b:35:5c:6a:69:d5:6b:e6:17:f0:2b:
45:90:f7:49:34:be:8e:e2:19:9e:67:98:20:1c:ab:
de:c6:4e:de:c6:c6:a9:8a:75:e6:a6:05:d3:88:9a:
39:c2:04:73:8e:82:ba:40:72:67:5c:7d:77:79:82:
3f:0a:22:db:14:b1:a8:85:77:24:da:30:93:af:e5:
54:87:73:6f:90:bc:b4:80:17:7c:e8:db:0a:51:c7:
6c:85:f4:25:3e:5f:7a:ec:1e:48:e9:f8:88:02:ab:
f9:ae:de:f7:52:c5:16:10:ec:b6:ad:ba:05:f4:68:
87:05:c0:b7:f0:19:73:3a:0a:5a:e4:b9:8a:ed:e1:
d3:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:92:51:E1:B4:EE:74:A1:9F:38:3D:A9:96:A8:CC:AD:A1:97:28:F2
X509v3 Authority Key Identifier:
keyid:07:E5:C4:E4:BE:3B:8C:BD:E0:EA:E9:46:0A:11:03:2D:6A:64:AB:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B-XE5L47jL3g6ulGChEDLWpkq3E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/f6b173-912c-4151-bac5-4c8883327a2a/1/DZJR4bTudKGfOD2plqjMraGXKPI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/f6b173-912c-4151-bac5-4c8883327a2a/1/B-XE5L47jL3g6ulGChEDLWpkq3E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.173.232.0-185.173.234.255
Signature Algorithm: sha256WithRSAEncryption
70:d7:5e:38:7d:09:11:33:88:92:54:ab:70:fb:05:e3:e6:61:
ee:d9:e5:cd:56:f7:5a:c4:44:cb:42:9e:5b:e8:49:4c:b5:04:
ca:77:99:28:ef:25:7e:0c:62:9d:84:23:1a:58:85:f8:df:3b:
18:8b:9a:1c:0e:0c:9d:d1:b7:fa:7a:0b:a0:1e:b5:85:21:e2:
da:25:f6:87:3f:7f:7c:b5:34:8d:26:b3:ed:c0:50:43:f3:7b:
bc:85:d7:6a:fe:c9:ee:8b:0a:a6:f2:20:f2:a9:57:e0:7a:ff:
32:cf:68:61:4b:f1:ee:c0:b0:1c:74:c4:23:88:14:9f:a7:10:
13:9f:0e:4c:cd:41:2f:40:54:75:55:94:82:f4:a2:07:1c:2c:
c6:84:b9:55:ac:85:51:40:12:0f:4b:4e:fd:55:a6:09:e8:00:
79:c2:4b:ec:5f:c3:aa:8b:fc:b7:76:cc:d3:ba:85:a6:76:cc:
32:79:bd:32:b7:24:60:a9:30:e4:07:4f:db:6d:7d:30:bb:f7:
40:d3:2b:c3:1b:0d:dd:3d:75:90:dd:7b:ef:f9:7f:e0:6f:bd:
ad:66:63:e3:8e:ba:29:a9:0b:ce:46:24:75:91:02:de:1d:cb:
e5:ad:6f:43:51:db:3e:50:ab:72:73:2b:37:2a:a4:83:e9:a9:
1d:04:86:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 09:47:19 2025 by rpki-client