Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/583543-e331-4592-8d89-9f302c20ae70/1/b702NehMYC8xAofH0dCsHzpZnRI.roa
File: b702NehMYC8xAofH0dCsHzpZnRI.roa (raw, json)
Hash identifier: mbOlVDf+iKEPHozo0GdinxUp2TnoHOin/qp+Dc9s2Oo=
Subject key identifier: 6F:BD:36:35:E8:4C:60:2F:31:02:87:C7:D1:D0:AC:1F:3A:59:9D:12
Certificate issuer: /CN=53da99f93518e29a945b07f60a18ef86e9b39e65
Certificate serial: 0194236957BEE1CB4D92CFFC00CBCA9B8CC1
Authority key identifier: 53:DA:99:F9:35:18:E2:9A:94:5B:07:F6:0A:18:EF:86:E9:B3:9E:65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U9qZ-TUY4pqUWwf2ChjvhumznmU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/583543-e331-4592-8d89-9f302c20ae70/1/b702NehMYC8xAofH0dCsHzpZnRI.roa
Signing time: Wed 01 Jan 2025 19:48:13 +0000
ROA not before: Wed 01 Jan 2025 19:48:13 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 44322
IP address blocks: 185.165.112.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:69:57:be:e1:cb:4d:92:cf:fc:00:cb:ca:9b:8c:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53da99f93518e29a945b07f60a18ef86e9b39e65
Validity
Not Before: Jan 1 19:48:13 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=6fbd3635e84c602f310287c7d1d0ac1f3a599d12
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:87:de:03:31:ab:36:8e:ac:3b:56:10:8b:cb:
19:69:58:a0:01:96:c8:ca:df:f4:71:b1:b6:73:21:
74:77:c9:63:45:44:a3:54:c0:a3:cf:da:c4:b1:2d:
13:c4:12:27:76:4b:64:e8:e2:7c:ef:c8:aa:fa:1e:
70:70:7b:77:30:93:9b:99:b4:1e:c0:ba:6a:9f:84:
79:88:e3:85:34:a5:c6:56:44:c7:ed:1a:bb:da:55:
c3:f5:0d:3c:e2:d8:9f:c4:ea:85:85:6d:1c:a9:e4:
6d:51:29:f1:28:2b:c5:88:e5:c2:54:ec:92:8f:8e:
03:d0:13:94:12:76:5b:62:d0:66:72:3e:61:b2:2e:
02:ac:4c:0c:9c:9c:7e:27:12:a3:7a:17:ed:6b:cf:
dc:91:14:0d:0c:89:b9:7d:11:7d:3a:f8:6e:56:72:
6b:0e:38:68:d0:e7:aa:b9:44:0a:4a:8a:18:78:2b:
b4:49:bd:af:47:fb:ca:af:89:2d:61:96:8e:72:da:
3b:00:16:de:80:9a:3c:d8:77:bb:1b:55:b7:d6:ef:
02:96:a5:b5:67:39:3a:8b:a0:af:d2:7f:7d:ba:34:
14:a4:50:c3:0b:43:47:0e:dd:98:8e:04:f6:62:25:
77:e2:cb:6d:47:e8:ad:7e:f7:f6:b9:c5:e5:06:9b:
30:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:BD:36:35:E8:4C:60:2F:31:02:87:C7:D1:D0:AC:1F:3A:59:9D:12
X509v3 Authority Key Identifier:
keyid:53:DA:99:F9:35:18:E2:9A:94:5B:07:F6:0A:18:EF:86:E9:B3:9E:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U9qZ-TUY4pqUWwf2ChjvhumznmU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/583543-e331-4592-8d89-9f302c20ae70/1/b702NehMYC8xAofH0dCsHzpZnRI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/583543-e331-4592-8d89-9f302c20ae70/1/U9qZ-TUY4pqUWwf2ChjvhumznmU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.165.112.0/22
Signature Algorithm: sha256WithRSAEncryption
6c:0e:61:c5:d5:02:9f:2c:d9:a2:78:ec:1a:46:e9:9e:1a:3f:
c6:9a:92:8a:e9:36:61:86:ce:7f:02:4c:09:7a:a5:a2:b5:e8:
60:40:1b:a8:df:80:65:3a:3d:5e:4e:82:0c:78:1a:3b:79:77:
a6:ad:b9:63:ec:d4:6d:8d:3a:a3:58:95:3c:d0:30:a2:18:b0:
3a:ca:c8:f6:23:fb:a6:30:ec:23:d7:8d:f8:35:9c:e5:f7:7f:
60:e7:5c:1f:5d:9a:4a:05:9c:8b:27:f3:89:ef:53:f2:98:e0:
c9:85:e4:9f:14:41:4d:84:e2:46:71:25:56:48:ef:39:86:0e:
3f:20:c2:ba:d8:3e:41:bf:18:04:4f:6d:2f:da:82:d8:19:22:
4e:99:6a:a5:6a:6c:b3:8b:6a:74:77:6a:88:c1:cc:ff:3d:b2:
8d:1e:81:4b:07:8d:23:5a:10:98:d4:73:af:ab:63:db:c4:62:
d5:35:c5:3a:87:89:9d:9d:03:19:b2:4a:5c:31:b1:a7:82:fc:
68:13:59:90:56:09:4d:99:2a:5f:32:78:50:ed:dc:1d:e3:62:
52:58:20:7a:6c:49:a7:c0:66:8b:53:85:31:87:ac:b9:65:d6:
0e:79:f3:a4:03:5d:d4:0e:ac:2c:9a:de:8e:22:e5:49:5e:0a:
48:af:f8:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 02:08:59 2025 by rpki-client