Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/b5b45d-7780-434b-a912-efb9a04d3caa/1/9deDXK0R04K9rMMqh82xmn9vkvk.roa
File: 9deDXK0R04K9rMMqh82xmn9vkvk.roa (raw, json)
Hash identifier: fmI3c3U4xlGRIpt0QtDSt2V+7sX87Cnxit13LLE+aP8=
Subject key identifier: F5:D7:83:5C:AD:11:D3:82:BD:AC:C3:2A:87:CD:B1:9A:7F:6F:92:F9
Certificate issuer: /CN=8d29a41e6f507a37458a49643a7be5790758f726
Certificate serial: 0CA9DDC7
Authority key identifier: 8D:29:A4:1E:6F:50:7A:37:45:8A:49:64:3A:7B:E5:79:07:58:F7:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jSmkHm9QejdFiklkOnvleQdY9yY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/b5b45d-7780-434b-a912-efb9a04d3caa/1/9deDXK0R04K9rMMqh82xmn9vkvk.roa
Signing time: Sat 01 Jan 2022 05:57:30 +0000
ROA not before: Sat 01 Jan 2022 05:57:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57536
IP address blocks: 212.7.212.0/24 maxlen: 24
185.107.65.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 212458951 (0xca9ddc7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d29a41e6f507a37458a49643a7be5790758f726
Validity
Not Before: Jan 1 05:57:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f5d7835cad11d382bdacc32a87cdb19a7f6f92f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:74:51:3c:23:4b:95:7f:a3:e8:02:ec:48:db:
03:89:5f:f2:60:a2:af:24:eb:9a:b8:c1:65:d8:bf:
17:27:54:5d:12:76:fd:a4:92:83:2f:e6:19:80:7f:
05:47:15:f9:71:f3:36:cf:50:73:c4:fb:f0:d4:1a:
a5:f2:0a:af:69:07:c1:13:af:67:7b:0e:b9:4e:90:
6e:eb:49:0b:9c:24:83:a2:de:af:a9:3a:09:63:1d:
2a:79:ae:44:e2:75:b2:26:d1:79:ab:d6:7b:88:b5:
05:c2:1b:86:7a:21:ea:0d:9a:2b:89:bd:24:68:f0:
34:14:17:20:2d:b8:c1:e7:60:15:66:69:c4:ed:05:
d1:17:a0:bc:b7:d8:7e:da:08:79:0f:cd:1f:43:f1:
bd:3a:a9:70:a1:0f:d7:a5:1e:15:0d:77:70:f1:d0:
54:fd:0c:9b:33:01:6e:76:54:7d:de:14:23:be:2f:
bf:4c:b4:6f:54:78:1b:21:34:a3:3f:fb:b1:25:8b:
80:c7:98:25:07:a2:ae:58:39:69:fb:4e:9f:7b:96:
6d:9d:40:17:99:d7:ea:ff:9e:e1:91:db:f6:2c:5b:
0d:a2:70:e5:1b:90:aa:10:57:a6:41:98:16:0c:28:
57:1c:6e:ce:70:72:e9:55:3c:db:5f:41:0e:c7:08:
57:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:D7:83:5C:AD:11:D3:82:BD:AC:C3:2A:87:CD:B1:9A:7F:6F:92:F9
X509v3 Authority Key Identifier:
keyid:8D:29:A4:1E:6F:50:7A:37:45:8A:49:64:3A:7B:E5:79:07:58:F7:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jSmkHm9QejdFiklkOnvleQdY9yY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/b5b45d-7780-434b-a912-efb9a04d3caa/1/9deDXK0R04K9rMMqh82xmn9vkvk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/b5b45d-7780-434b-a912-efb9a04d3caa/1/jSmkHm9QejdFiklkOnvleQdY9yY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.107.65.0/24
212.7.212.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:ca:86:69:bd:cf:8c:b2:e1:a0:99:53:c9:ed:6a:5d:60:a8:
cb:9c:b6:d8:51:04:9b:66:e7:66:da:d1:e0:b3:25:58:98:c8:
02:17:6f:f3:cb:da:28:17:2c:d4:16:2f:10:8c:df:48:5b:2a:
ab:d4:75:b8:92:1a:ae:eb:47:f9:87:be:ee:5b:8f:8f:88:5a:
c8:5b:32:79:2a:8a:05:2f:9e:e2:f0:09:1c:7f:b4:8a:ad:31:
88:ee:43:a3:22:c0:89:c4:7c:92:69:46:0a:94:df:a8:68:8d:
6e:17:5b:e9:f5:81:2a:de:c6:d2:eb:9f:7d:31:ad:4f:0b:54:
2c:c3:ef:5f:df:44:bf:c0:ed:de:2e:60:d9:e5:35:54:f6:01:
7b:08:92:b4:0a:7e:1d:ba:8b:8f:f7:6a:a0:58:c8:b1:a2:7c:
50:56:5f:01:9f:26:98:76:a3:ca:2e:6d:ff:e9:b2:5f:19:5e:
4d:e8:74:80:07:5d:38:a2:c9:de:13:a4:8f:e2:8b:0f:4f:50:
40:88:e7:4f:ef:87:f9:f0:3c:2d:87:1f:f0:43:1e:7b:a1:b7:
cd:a8:45:57:da:81:f1:b1:c2:a0:fe:d5:3a:c4:b9:1e:54:5c:
d4:26:c1:e1:ff:22:52:36:79:d8:1d:d8:51:69:74:c4:b3:26:
d4:d3:77:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:15:50 2025 by rpki-client