Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/b5b45d-7780-434b-a912-efb9a04d3caa/1/IWv2udW3ecYWoU8JFNOzbViI_M4.roa
File: IWv2udW3ecYWoU8JFNOzbViI_M4.roa (raw, json)
Hash identifier: oOzvCXxHiWGkwXoJxSsNUJEvXeggspPJ9+zZiBndmf4=
Subject key identifier: 21:6B:F6:B9:D5:B7:79:C6:16:A1:4F:09:14:D3:B3:6D:58:88:FC:CE
Certificate issuer: /CN=8d29a41e6f507a37458a49643a7be5790758f726
Certificate serial: 0CB088D6
Authority key identifier: 8D:29:A4:1E:6F:50:7A:37:45:8A:49:64:3A:7B:E5:79:07:58:F7:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jSmkHm9QejdFiklkOnvleQdY9yY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/b5b45d-7780-434b-a912-efb9a04d3caa/1/IWv2udW3ecYWoU8JFNOzbViI_M4.roa
Signing time: Sat 01 Jan 2022 05:57:33 +0000
ROA not before: Sat 01 Jan 2022 05:57:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212781
IP address blocks: 185.107.64.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 212895958 (0xcb088d6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d29a41e6f507a37458a49643a7be5790758f726
Validity
Not Before: Jan 1 05:57:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=216bf6b9d5b779c616a14f0914d3b36d5888fcce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:e7:45:32:b9:f0:34:18:4e:ef:57:7d:f2:4a:
32:6b:8a:28:ff:85:34:0c:62:76:e9:ac:6e:e2:cd:
b2:08:76:54:65:f7:c1:eb:94:5a:eb:99:7a:e7:a0:
a7:eb:d6:4f:37:66:94:5e:78:0b:ae:5c:16:84:e6:
80:0b:de:ea:0d:4f:d2:5b:64:d9:df:de:3b:09:09:
2f:6d:04:41:ba:69:fa:70:f5:35:b2:58:bb:15:50:
c5:79:94:66:e2:c1:24:86:1c:ff:49:d8:24:6b:4a:
36:f2:25:6b:d0:44:31:b5:f3:04:36:dc:55:82:c7:
19:17:50:92:84:39:d9:6b:56:58:a4:9f:14:44:ce:
15:12:e1:91:3b:c9:49:a4:25:d6:1b:ad:df:06:69:
9c:85:58:f6:7f:6a:d9:69:82:bc:2a:b3:cd:dc:7a:
f6:7c:8e:7f:c9:59:a8:a2:29:d9:49:27:61:5b:91:
d3:de:31:f2:35:1f:df:aa:77:b1:44:df:7a:69:08:
d5:be:98:aa:2a:dc:a9:21:4e:79:f6:15:70:38:3b:
ec:61:ea:ff:9d:17:17:dc:10:9a:6a:78:88:ea:c6:
9e:97:be:2b:2f:d5:89:11:b8:63:4a:27:af:5d:1a:
c5:20:08:60:a2:23:73:90:82:22:28:87:a5:b8:83:
92:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:6B:F6:B9:D5:B7:79:C6:16:A1:4F:09:14:D3:B3:6D:58:88:FC:CE
X509v3 Authority Key Identifier:
keyid:8D:29:A4:1E:6F:50:7A:37:45:8A:49:64:3A:7B:E5:79:07:58:F7:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jSmkHm9QejdFiklkOnvleQdY9yY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/b5b45d-7780-434b-a912-efb9a04d3caa/1/IWv2udW3ecYWoU8JFNOzbViI_M4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/b5b45d-7780-434b-a912-efb9a04d3caa/1/jSmkHm9QejdFiklkOnvleQdY9yY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.107.64.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:2e:b1:76:69:b7:e0:13:c6:86:48:2a:2b:69:e2:3a:e6:18:
54:4a:e8:a1:1b:1a:f3:eb:74:85:4c:bb:99:f4:d4:7f:f2:97:
2d:e1:0e:ef:b2:58:78:f9:29:57:92:a7:d7:4a:e0:65:12:2b:
b2:d9:36:bd:35:84:4a:b2:6f:40:57:14:18:33:ec:dd:a5:4b:
d0:96:f6:ec:75:30:12:c1:7e:91:4f:a7:e8:99:26:50:37:85:
9c:e1:c3:ba:ac:b6:1b:cb:d6:08:5e:0e:c1:e7:93:08:44:a5:
37:9e:c7:7d:7e:9a:04:39:7b:1b:bb:6f:d4:2d:f1:97:55:ff:
c2:83:2a:ee:88:9b:b1:26:7d:bd:18:8a:bb:5a:28:23:74:c9:
83:3e:46:6f:4f:1c:50:29:37:fe:01:73:90:52:d5:fb:35:d2:
bc:31:26:96:d1:7a:fb:47:e8:c0:36:db:d0:39:3c:f9:c6:4c:
c7:00:eb:0e:36:8a:e4:fe:41:b4:7e:a3:d6:65:e0:96:33:ea:
06:15:7c:ce:82:c7:19:1d:db:c4:db:33:b8:65:34:de:80:ca:
bb:a4:e3:b2:87:a5:6e:c4:52:52:81:0c:80:b4:77:89:13:fd:
05:2b:61:4b:9f:57:a2:40:cd:57:41:b6:cb:ee:37:65:61:6e:
00:8b:d1:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:20:52 2025 by rpki-client