Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/7N7xJXBFZS0BEgSIf-o0YM2_qX0.roa
File: 7N7xJXBFZS0BEgSIf-o0YM2_qX0.roa (raw, json)
Hash identifier: 2mgtlcAjoVVncIo+fVnVbRWFKP1u++DbSjEPFmm7E3k=
Subject key identifier: EC:DE:F1:25:70:45:65:2D:01:12:04:88:7F:EA:34:60:CD:BF:A9:7D
Certificate issuer: /CN=7508475ff0d8ec960336016e0e04221a98e5ecf2
Certificate serial: 018A21838AD322DE0D4CD5A1318CD79D8B88
Authority key identifier: 75:08:47:5F:F0:D8:EC:96:03:36:01:6E:0E:04:22:1A:98:E5:EC:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dQhHX_DY7JYDNgFuDgQiGpjl7PI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/7N7xJXBFZS0BEgSIf-o0YM2_qX0.roa
Signing time: Wed 23 Aug 2023 08:29:43 +0000
ROA not before: Wed 23 Aug 2023 08:29:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216475
IP address blocks: 185.39.206.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:21:83:8a:d3:22:de:0d:4c:d5:a1:31:8c:d7:9d:8b:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7508475ff0d8ec960336016e0e04221a98e5ecf2
Validity
Not Before: Aug 23 08:29:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ecdef1257045652d011204887fea3460cdbfa97d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:fc:c3:2d:c8:e9:11:8a:9a:a0:3c:4c:51:de:
ec:be:68:a5:da:f2:d5:fd:a3:5b:03:1d:2f:e9:a4:
20:7f:c7:23:4f:74:26:74:75:df:fe:32:73:41:f4:
2e:66:cc:d8:99:c3:ab:06:e9:31:ba:f8:34:b2:89:
22:99:22:d5:2e:b1:a9:f6:9c:5b:21:6e:2f:bc:42:
9a:a0:59:b5:4b:e0:d4:3b:6a:9f:c6:9d:2c:3d:92:
fc:09:87:bf:2f:38:f5:d6:21:93:b6:c0:8a:7d:d7:
2c:27:b1:65:94:19:c7:ee:13:10:58:d4:c2:16:f8:
e6:fa:c6:3f:ca:64:d9:b4:e2:9a:20:54:a5:c9:92:
45:1b:3b:7b:b3:65:0a:dd:0a:22:ab:cc:00:3a:3c:
53:84:98:c2:12:2f:b3:46:c8:76:45:a0:96:bc:51:
c2:cc:91:7e:19:23:01:e6:86:ed:a7:67:6b:61:be:
26:27:6b:36:55:12:4b:3d:ac:3f:1b:5e:56:ce:d5:
b0:4a:f7:a6:23:dc:51:de:1c:42:f0:b0:89:07:bb:
16:01:02:e4:01:f7:2f:57:6e:37:95:d9:85:8b:f0:
5a:f7:88:21:9b:d7:86:63:e0:9a:d1:3f:a3:48:79:
58:8c:db:2d:92:80:88:59:ed:93:85:cd:c9:23:5d:
77:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:DE:F1:25:70:45:65:2D:01:12:04:88:7F:EA:34:60:CD:BF:A9:7D
X509v3 Authority Key Identifier:
keyid:75:08:47:5F:F0:D8:EC:96:03:36:01:6E:0E:04:22:1A:98:E5:EC:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dQhHX_DY7JYDNgFuDgQiGpjl7PI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/7N7xJXBFZS0BEgSIf-o0YM2_qX0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/dQhHX_DY7JYDNgFuDgQiGpjl7PI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.39.206.0/24
Signature Algorithm: sha256WithRSAEncryption
a3:f2:11:c0:87:ec:8b:60:ff:c2:0e:c8:82:e7:8a:eb:ce:6e:
8a:07:1b:4b:54:3b:08:85:a6:8e:67:02:3d:b4:e4:c3:91:4c:
4f:90:2e:bd:13:55:0e:30:fc:e1:ec:a4:46:a8:d6:da:67:26:
5f:c7:bd:89:dd:c7:64:af:37:17:ce:5d:53:89:44:81:2d:e2:
2c:63:4e:23:2f:dc:b3:e4:16:ea:6b:06:b8:0a:e6:26:cc:8c:
a7:4d:55:f1:9b:97:bb:3e:3b:c7:80:90:62:fd:8b:70:aa:04:
a7:f2:fe:ec:e1:69:b7:db:0b:75:c5:be:e7:d2:85:27:3a:a3:
21:82:ae:b9:83:4f:47:1b:a9:aa:1f:0f:5e:92:17:32:35:ad:
41:e0:28:f2:9d:43:e7:7e:07:7d:ea:c7:1f:33:9b:48:f5:03:
15:c7:ca:5d:d3:9e:65:5a:4e:dc:0e:d5:f8:82:7b:5b:39:56:
70:9b:76:4a:ae:6e:ab:d2:cb:16:26:4c:ce:f9:78:1d:80:04:
ae:ef:e3:6c:d3:d6:65:b7:9c:5c:7b:f9:f6:56:23:15:88:bc:
5f:25:e9:94:9a:c8:a4:14:37:0c:29:94:a1:56:02:d9:11:ef:
3e:19:d8:9f:7b:7f:11:8c:d5:f9:83:e6:a8:02:63:df:b8:06:
62:73:1f:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 19:03:23 2025 by rpki-client