Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/34e076-5989-402d-96de-e88695fdd6e5/1/8IVwcCAer2YFK0PD_eW_7QPltRk.roa
File: 8IVwcCAer2YFK0PD_eW_7QPltRk.roa (raw, json)
Hash identifier: DtzwrJfpj+KzExIWMGXO37ECdwLmhMCQMNWrFN/oGf4=
Subject key identifier: F0:85:70:70:20:1E:AF:66:05:2B:43:C3:FD:E5:BF:ED:03:E5:B5:19
Certificate issuer: /CN=7c55752b7d6fce7286b1a1a2e43bc86d4584e83f
Certificate serial: 019424B2AFAAFF1AA865D26097565260D6E7
Authority key identifier: 7C:55:75:2B:7D:6F:CE:72:86:B1:A1:A2:E4:3B:C8:6D:45:84:E8:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fFV1K31vznKGsaGi5DvIbUWE6D8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/34e076-5989-402d-96de-e88695fdd6e5/1/8IVwcCAer2YFK0PD_eW_7QPltRk.roa
Signing time: Thu 02 Jan 2025 01:47:57 +0000
ROA not before: Thu 02 Jan 2025 01:47:57 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 209061
IP address blocks: 185.223.215.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:b2:af:aa:ff:1a:a8:65:d2:60:97:56:52:60:d6:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7c55752b7d6fce7286b1a1a2e43bc86d4584e83f
Validity
Not Before: Jan 2 01:47:57 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=f0857070201eaf66052b43c3fde5bfed03e5b519
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:d5:98:fb:d0:36:bd:5a:2f:9e:8e:a4:d2:ff:
12:fc:7a:3c:e0:a7:7d:6a:28:99:20:25:54:c7:77:
3b:74:6c:60:70:72:a6:2d:15:4a:db:41:d6:9a:13:
49:dd:8c:43:61:37:1b:9b:d5:f4:4e:8f:9c:df:8a:
19:fb:d2:c5:5a:85:0a:dd:e5:e6:5b:41:fa:31:e6:
46:9e:4b:99:33:01:06:c3:b1:60:be:44:2b:37:b2:
42:25:fd:a4:8d:8e:0f:40:ca:e2:87:13:64:d6:a2:
13:13:b8:41:7a:e1:e3:b3:69:09:a0:b1:eb:6d:ad:
b0:9c:39:a6:ff:ce:21:86:5b:f5:f0:b7:a3:d0:c9:
0e:ed:61:66:a7:f7:f9:ca:94:a4:52:13:f6:fb:c1:
ea:7d:4b:25:5e:40:0f:50:ce:97:af:f6:24:1d:07:
0d:60:0c:f2:ba:ef:21:6c:fa:a2:f7:75:79:75:e3:
8e:eb:f1:e8:56:1b:ad:bd:f8:42:29:54:99:6a:70:
f6:65:dc:a8:e5:57:85:0f:72:87:30:2e:8b:37:af:
9a:97:ee:9f:2d:34:0d:88:8f:66:9c:36:4e:ef:f0:
ee:b1:18:e9:f2:3c:51:1a:06:8a:46:69:19:53:6b:
d7:01:04:b4:40:d0:7e:06:1b:a5:9d:4b:a4:bc:1d:
a8:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:85:70:70:20:1E:AF:66:05:2B:43:C3:FD:E5:BF:ED:03:E5:B5:19
X509v3 Authority Key Identifier:
keyid:7C:55:75:2B:7D:6F:CE:72:86:B1:A1:A2:E4:3B:C8:6D:45:84:E8:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fFV1K31vznKGsaGi5DvIbUWE6D8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/34e076-5989-402d-96de-e88695fdd6e5/1/8IVwcCAer2YFK0PD_eW_7QPltRk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/34e076-5989-402d-96de-e88695fdd6e5/1/fFV1K31vznKGsaGi5DvIbUWE6D8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.223.215.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:d4:7a:12:aa:74:42:17:60:d3:42:0a:ec:d5:2b:94:f0:fc:
39:b0:fd:fe:19:4c:37:52:48:38:10:a2:ae:75:36:bd:10:91:
ee:56:b5:65:4f:16:fc:4c:22:6f:6a:e5:58:8f:a7:88:61:a0:
aa:f4:48:66:ab:3c:11:11:ea:05:a6:35:35:a5:45:6d:bf:e9:
31:7e:f9:da:78:e2:90:af:c9:28:da:42:f6:93:23:d4:7a:79:
0c:e6:75:6e:37:1d:9b:fe:c1:b8:2c:1d:d4:94:9a:88:3c:a9:
1d:13:13:50:54:4f:4d:de:fb:a6:04:0f:e1:6e:5d:a3:48:f3:
5c:fb:51:8c:55:7b:24:4a:c4:fb:2f:21:e3:24:44:8e:b2:2d:
74:66:9f:fb:ef:15:66:e4:ae:86:bf:0d:fe:df:cd:f6:52:09:
61:00:08:80:07:aa:e4:fe:25:b3:32:ac:f5:59:66:a9:8e:11:
d8:28:86:02:3b:7b:b6:95:9e:d0:53:09:70:42:49:e1:1d:34:
6a:e5:23:a0:be:e0:fe:19:c3:e7:2d:aa:8b:1e:72:41:6a:23:
a6:c7:7a:30:ac:4d:5a:e6:c0:5c:18:6e:64:09:fb:ed:0d:b5:
29:b7:8b:f4:5d:ce:3a:32:14:78:2b:63:e2:59:bf:bc:56:2b:
84:b4:0b:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 14:05:34 2025 by rpki-client