Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/4984df-6db2-4e0a-91f8-bf05acc82bd1/1/7pPLJaN3OTQBK8i-P4GOQNKJPho.roa
File: 7pPLJaN3OTQBK8i-P4GOQNKJPho.roa (raw, json)
Hash identifier: HpLQLLrJKx/bS+zdiKUm5TCX+jRSuh5jVP1YSt/MOZY=
Subject key identifier: EE:93:CB:25:A3:77:39:34:01:2B:C8:BE:3F:81:8E:40:D2:89:3E:1A
Certificate issuer: /CN=0a81fe9059f6820bc18ad5802f2f1fca77d254b7
Certificate serial: 0194244518C0EBE3818406C9259529EFD37D
Authority key identifier: 0A:81:FE:90:59:F6:82:0B:C1:8A:D5:80:2F:2F:1F:CA:77:D2:54:B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CoH-kFn2ggvBitWALy8fynfSVLc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/4984df-6db2-4e0a-91f8-bf05acc82bd1/1/7pPLJaN3OTQBK8i-P4GOQNKJPho.roa
Signing time: Wed 01 Jan 2025 23:48:15 +0000
ROA not before: Wed 01 Jan 2025 23:48:15 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 203778
IP address blocks: 212.7.214.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:45:18:c0:eb:e3:81:84:06:c9:25:95:29:ef:d3:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0a81fe9059f6820bc18ad5802f2f1fca77d254b7
Validity
Not Before: Jan 1 23:48:15 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ee93cb25a3773934012bc8be3f818e40d2893e1a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:52:42:21:73:c7:79:38:b6:88:ca:12:20:8b:
8d:b3:dd:3c:13:f1:2d:29:49:58:01:a7:cf:1c:30:
00:1e:4f:41:03:37:67:3b:d7:86:81:ce:05:61:af:
76:3c:d6:8c:9c:3d:28:b0:b1:b6:a2:54:ff:60:05:
7e:f6:78:8b:f5:16:8a:6c:71:86:7b:15:4c:a8:25:
8a:ed:7a:f7:f1:e5:9b:03:5f:a0:3a:5f:0f:b7:b0:
c1:4b:21:8d:ec:91:bc:96:dc:8a:4e:60:ad:93:ce:
1f:4f:9b:67:0a:4d:dd:51:be:ce:97:48:ab:d2:24:
40:20:57:3b:8f:c5:82:84:75:0a:bb:6e:b9:48:1d:
b3:33:80:45:ce:02:83:77:57:af:14:c7:26:e9:f1:
80:b6:96:df:74:61:c4:c5:ac:ad:01:60:9d:63:a0:
7f:1e:ee:8f:2e:72:1b:4a:f9:fd:61:78:21:28:ee:
f0:79:1c:4c:b4:e8:7f:62:25:d0:5b:67:89:8f:0f:
4a:20:1a:32:e2:ba:9b:21:07:de:64:b6:a6:54:99:
a6:c4:0b:75:e5:82:b3:79:5c:fd:f9:db:42:4b:cc:
e4:d3:6b:a3:1f:3c:9d:68:44:04:9e:ef:9e:ab:9c:
d4:07:68:be:73:8e:4a:92:da:d2:a7:27:7f:57:d9:
da:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:93:CB:25:A3:77:39:34:01:2B:C8:BE:3F:81:8E:40:D2:89:3E:1A
X509v3 Authority Key Identifier:
keyid:0A:81:FE:90:59:F6:82:0B:C1:8A:D5:80:2F:2F:1F:CA:77:D2:54:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CoH-kFn2ggvBitWALy8fynfSVLc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/4984df-6db2-4e0a-91f8-bf05acc82bd1/1/7pPLJaN3OTQBK8i-P4GOQNKJPho.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/4984df-6db2-4e0a-91f8-bf05acc82bd1/1/CoH-kFn2ggvBitWALy8fynfSVLc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.7.214.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:7a:7e:60:25:59:93:5d:5a:3b:3f:18:60:21:e0:15:2f:e0:
32:cc:0b:3b:b0:d0:30:78:f4:26:40:a0:79:df:a9:d2:35:84:
87:37:04:26:79:17:b1:c1:8a:a0:33:a9:06:1d:14:9e:73:77:
2a:c2:c8:b1:68:a2:84:9b:8b:b2:31:26:5b:b6:20:de:b4:b0:
eb:e8:5b:f4:07:98:27:1b:69:dd:ef:53:41:d9:7f:c0:14:96:
3b:a3:4d:90:59:bd:eb:a2:8c:29:50:a2:f5:92:fb:55:7b:e8:
f3:75:b1:d9:a9:9f:ff:4c:7b:4c:f1:a4:e4:97:f1:a6:ae:44:
9d:32:c8:39:83:be:a4:c8:40:ce:c5:e8:c7:0f:ff:03:71:d4:
e0:c9:c1:74:36:20:fd:62:bc:46:82:39:01:70:24:b3:d9:23:
d2:f2:8b:2d:71:1d:2e:e4:00:b7:32:6e:a6:b4:36:06:f6:5b:
53:e4:c4:50:98:65:0a:a1:f6:3c:65:28:52:83:c9:bc:9f:6f:
a4:2e:f1:1e:25:db:41:a9:c1:c5:ed:76:e8:a4:66:85:32:82:
ee:a2:8e:f7:23:53:41:b0:7f:12:08:9f:24:11:b4:cf:63:35:
5d:e5:d2:28:5d:4f:66:79:72:3b:a2:e6:f1:92:24:08:5e:38:
31:7e:42:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 07:43:33 2025 by rpki-client