Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/4ae0bd-d7e4-44d5-877e-4a9ce2131b42/1/rD7zRvb7ZOSrFNptFJIKjnHIijY.roa
File: rD7zRvb7ZOSrFNptFJIKjnHIijY.roa (raw, json)
Hash identifier: 6Kl9dTmuCjd2YPwZJzigIWIBDUWb7+H1Wc7Equtq1N0=
Subject key identifier: AC:3E:F3:46:F6:FB:64:E4:AB:14:DA:6D:14:92:0A:8E:71:C8:8A:36
Certificate issuer: /CN=667ae5ed7ca8bd5f8eff30b0e47ab4df93828ff1
Certificate serial: 0194266C2A39FD0D98869EC5A689A59AB698
Authority key identifier: 66:7A:E5:ED:7C:A8:BD:5F:8E:FF:30:B0:E4:7A:B4:DF:93:82:8F:F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Znrl7XyovV-O_zCw5Hq035OCj_E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/4ae0bd-d7e4-44d5-877e-4a9ce2131b42/1/rD7zRvb7ZOSrFNptFJIKjnHIijY.roa
Signing time: Thu 02 Jan 2025 09:50:10 +0000
ROA not before: Thu 02 Jan 2025 09:50:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 206182
IP address blocks: 185.77.48.0/22 maxlen: 24
2a03:52e0::/29 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:6c:2a:39:fd:0d:98:86:9e:c5:a6:89:a5:9a:b6:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=667ae5ed7ca8bd5f8eff30b0e47ab4df93828ff1
Validity
Not Before: Jan 2 09:50:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ac3ef346f6fb64e4ab14da6d14920a8e71c88a36
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:5b:a0:82:04:00:50:7f:dc:01:a6:93:a9:0d:
eb:9f:cc:b0:d7:89:62:6f:5d:e2:bb:d2:5b:c2:b0:
20:f6:ed:ed:d0:ee:ce:81:6e:5c:b7:d4:cc:90:7d:
09:c3:50:fb:10:c0:65:be:f2:cc:6d:cf:94:8d:46:
ad:76:35:1f:17:fe:01:8d:01:ae:d1:fe:fa:08:03:
1a:d8:2d:bb:eb:c6:c4:51:bc:53:8c:9b:ab:71:38:
9d:f0:ad:dc:22:fc:62:7d:7c:e8:5c:3b:78:8b:d6:
ab:dd:e4:c9:90:1f:93:90:af:db:e5:52:3b:23:94:
98:c4:99:a4:3f:53:1d:e5:31:ff:66:c2:55:99:f3:
5d:37:47:d9:d6:ae:73:78:e2:08:0f:60:58:90:1b:
82:f3:e1:37:b5:7b:b4:62:85:75:5c:bf:76:de:2f:
60:25:93:60:5b:58:42:86:63:47:de:fe:9f:1e:94:
c4:6b:90:7c:33:2e:1d:8c:38:ee:59:96:63:9e:90:
e6:8d:fc:6b:cf:6e:22:74:3c:6b:2a:4f:7a:ba:1e:
e8:28:af:c5:4b:81:86:38:0e:06:05:b4:7c:37:36:
7e:67:eb:31:b2:39:4a:ab:04:37:74:3a:01:e8:4e:
69:e4:e4:19:e8:6f:22:ed:85:aa:41:87:a2:28:25:
46:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:3E:F3:46:F6:FB:64:E4:AB:14:DA:6D:14:92:0A:8E:71:C8:8A:36
X509v3 Authority Key Identifier:
keyid:66:7A:E5:ED:7C:A8:BD:5F:8E:FF:30:B0:E4:7A:B4:DF:93:82:8F:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Znrl7XyovV-O_zCw5Hq035OCj_E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/4ae0bd-d7e4-44d5-877e-4a9ce2131b42/1/rD7zRvb7ZOSrFNptFJIKjnHIijY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/4ae0bd-d7e4-44d5-877e-4a9ce2131b42/1/Znrl7XyovV-O_zCw5Hq035OCj_E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.77.48.0/22
IPv6:
2a03:52e0::/29
Signature Algorithm: sha256WithRSAEncryption
0c:51:eb:82:cd:c9:21:83:aa:d9:20:b5:3e:95:36:cc:2a:08:
c3:01:d2:7b:86:d9:24:fb:2f:ca:7a:c3:f3:6a:83:c5:a4:b1:
52:43:66:bc:03:d6:8f:e1:02:dd:b2:69:59:80:4a:08:7f:f2:
a7:ab:6a:13:32:ff:ff:4e:67:93:1f:01:b1:0e:df:49:16:c4:
3a:fa:48:c0:39:6a:27:64:26:6e:47:62:b1:55:7d:58:51:35:
90:e1:dc:b2:7a:c5:08:0c:e8:63:79:46:f3:c4:7a:b0:3a:be:
0d:e8:b5:0d:d1:f5:6c:9b:df:84:02:a4:83:de:10:9a:3b:bf:
9f:08:04:79:70:fc:52:3c:a9:63:e3:90:93:cc:d3:da:89:5c:
5e:e8:58:07:34:8a:9e:a0:a2:ef:4e:3e:f7:f4:65:89:3e:a1:
d8:28:4b:83:4f:3a:54:d6:bc:46:da:21:da:30:55:57:f3:d3:
b7:31:7d:8f:71:5a:09:8c:7b:2a:a9:8f:7b:b0:27:91:b8:84:
ac:38:c0:2e:8e:59:04:af:ee:64:41:bd:33:61:38:4d:12:e6:
4c:f3:67:28:50:19:38:22:d9:0f:55:72:ce:60:4a:94:07:32:
26:98:27:60:77:4f:33:bc:98:ce:67:f3:fe:ee:12:0b:56:40:
00:d1:3c:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 11:25:34 2025 by rpki-client