Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/722fe6-5f0a-49e8-abdb-caa2ad0de122/1/fBkMX9f8HJ3JqY2iKf73nUlYwCQ.roa
File: fBkMX9f8HJ3JqY2iKf73nUlYwCQ.roa (raw, json)
Hash identifier: BKs0YwF+d0AD17gFXSU3cxSORNuQCvIfE3Fg/IEISv8=
Subject key identifier: 7C:19:0C:5F:D7:FC:1C:9D:C9:A9:8D:A2:29:FE:F7:9D:49:58:C0:24
Certificate issuer: /CN=bb376d0c9bef6b098fa63140bcc40d83d76bd549
Certificate serial: 0300E158
Authority key identifier: BB:37:6D:0C:9B:EF:6B:09:8F:A6:31:40:BC:C4:0D:83:D7:6B:D5:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uzdtDJvvawmPpjFAvMQNg9dr1Uk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/722fe6-5f0a-49e8-abdb-caa2ad0de122/1/fBkMX9f8HJ3JqY2iKf73nUlYwCQ.roa
Signing time: Sat 01 Jan 2022 09:54:35 +0000
ROA not before: Sat 01 Jan 2022 09:54:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42724
IP address blocks: 194.169.120.0/24 maxlen: 24
185.235.77.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 50389336 (0x300e158)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb376d0c9bef6b098fa63140bcc40d83d76bd549
Validity
Not Before: Jan 1 09:54:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7c190c5fd7fc1c9dc9a98da229fef79d4958c024
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:20:81:c0:25:ff:e4:f6:81:20:be:2c:84:49:
d5:c6:8f:3c:9c:f1:89:ff:8d:90:09:5f:77:6f:0f:
2c:e3:91:34:f4:77:45:de:1b:1c:2e:a0:0f:72:97:
8c:f6:d7:21:49:bb:91:16:3c:fa:d4:2b:1e:7d:6f:
34:73:a4:ec:28:ba:05:5e:39:7b:1c:2d:80:9f:b0:
5f:25:9a:82:91:33:aa:ad:92:57:04:20:86:f5:b7:
ab:f6:ed:cb:7c:90:c8:ec:cc:6f:ff:34:b2:4a:9a:
0a:75:c8:55:5e:f6:18:08:6a:92:2b:48:cd:73:2f:
4a:86:a6:87:a3:43:6f:60:63:14:cd:f6:e5:2a:c2:
03:e3:65:41:5c:3c:8a:b9:72:9a:4d:2b:8c:97:db:
d3:74:73:d2:59:84:29:6b:20:dd:0f:0a:5d:af:bc:
f8:b4:5b:c9:17:91:22:a9:7b:17:29:28:ab:3a:8a:
cd:ff:b5:39:93:78:77:5a:15:93:f2:44:df:24:28:
6d:d4:94:e6:12:bc:e3:db:dc:02:cf:9a:2d:d8:63:
91:b2:79:c9:fa:26:1e:37:22:03:d1:b8:2e:f8:d4:
dd:9e:70:c7:44:c0:38:23:61:0c:95:79:61:2d:77:
18:eb:8e:ac:82:d2:18:f6:b0:1e:39:e6:6f:c0:b1:
7c:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:19:0C:5F:D7:FC:1C:9D:C9:A9:8D:A2:29:FE:F7:9D:49:58:C0:24
X509v3 Authority Key Identifier:
keyid:BB:37:6D:0C:9B:EF:6B:09:8F:A6:31:40:BC:C4:0D:83:D7:6B:D5:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uzdtDJvvawmPpjFAvMQNg9dr1Uk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/722fe6-5f0a-49e8-abdb-caa2ad0de122/1/fBkMX9f8HJ3JqY2iKf73nUlYwCQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/722fe6-5f0a-49e8-abdb-caa2ad0de122/1/uzdtDJvvawmPpjFAvMQNg9dr1Uk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.235.77.0/24
194.169.120.0/24
Signature Algorithm: sha256WithRSAEncryption
05:d3:52:25:2e:cd:6f:85:c5:95:86:43:5c:52:77:79:9f:71:
b1:68:3d:a1:d0:e6:50:50:29:0c:48:4a:44:69:9c:8a:57:0a:
74:65:49:97:65:13:ce:3d:1d:d8:c0:fe:a4:72:6a:c8:6e:c0:
7e:8c:fb:8d:fb:fd:ca:32:40:c9:33:48:40:8f:e7:94:2d:14:
b8:b1:a7:73:fe:6e:86:fe:57:f1:9f:b2:3d:1f:ba:b0:76:ed:
ee:aa:fd:37:c0:12:96:12:32:25:25:42:71:79:16:e1:39:ed:
5c:03:b5:a5:5b:41:84:c1:6b:e7:f8:6b:90:eb:4b:a8:36:23:
8f:f7:d7:83:32:75:07:f5:0d:33:79:5b:52:d2:17:52:72:08:
b1:f8:fb:0a:6c:2b:dd:12:62:a0:c8:c2:4d:7a:8e:ff:15:71:
35:e6:b0:3f:d2:68:ca:e3:26:74:f9:f8:3b:eb:54:dd:5e:51:
4f:be:79:63:84:83:87:b7:61:98:10:6c:89:c0:a9:3e:9a:31:
77:6d:44:97:b4:dc:80:a0:5e:56:53:8d:c7:32:44:00:d4:3a:
f5:62:c7:32:c8:2b:e3:ec:ed:30:0b:bd:f5:2f:6d:d5:8e:94:
4f:0e:e6:3c:7c:d0:a6:c1:c0:8f:32:dd:e6:96:17:9d:3e:55:
73:58:4c:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 13:09:46 2025 by rpki-client