Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/9457c7-bdfe-4c8a-8f54-747d88367adc/1/7gFOYhMP7YDCFXaiumqpJP36TQc.roa
File: 7gFOYhMP7YDCFXaiumqpJP36TQc.roa (raw, json)
Hash identifier: 9FG4QQfvEIx2mVAyYv2Vz5IfsYTpcfQhLz0BqeBxQAs=
Subject key identifier: EE:01:4E:62:13:0F:ED:80:C2:15:76:A2:BA:6A:A9:24:FD:FA:4D:07
Certificate issuer: /CN=5fd351e5eb2962fc16fc14e7c6e51b84ad1de8b5
Certificate serial: 01857142F6AFA7BFF1EADF2A17595F1F0E12
Authority key identifier: 5F:D3:51:E5:EB:29:62:FC:16:FC:14:E7:C6:E5:1B:84:AD:1D:E8:B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X9NR5espYvwW_BTnxuUbhK0d6LU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/9457c7-bdfe-4c8a-8f54-747d88367adc/1/7gFOYhMP7YDCFXaiumqpJP36TQc.roa
Signing time: Mon 02 Jan 2023 06:54:52 +0000
ROA not before: Mon 02 Jan 2023 06:54:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58061
IP address blocks: 185.140.172.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:42:f6:af:a7:bf:f1:ea:df:2a:17:59:5f:1f:0e:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5fd351e5eb2962fc16fc14e7c6e51b84ad1de8b5
Validity
Not Before: Jan 2 06:54:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ee014e62130fed80c21576a2ba6aa924fdfa4d07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:78:9b:c8:c2:4e:39:20:62:06:ea:98:67:20:
db:60:91:e7:87:92:4f:cb:18:7f:c7:b2:10:7f:9e:
f9:ff:bb:37:33:58:8c:20:00:2e:96:44:c8:f9:6c:
ee:3f:ec:c2:23:2a:d3:33:a4:33:30:49:18:cc:e4:
3f:e0:bf:7b:a2:af:3e:69:17:1a:50:b4:25:c7:3c:
19:2e:bd:fb:52:76:97:4f:a4:7b:d0:46:5a:1e:b8:
a6:cf:54:3d:85:7d:1a:69:ab:f9:34:87:23:d5:08:
9b:25:14:8e:ac:a7:cc:14:4f:e0:e8:fc:4c:1d:09:
8a:4a:dd:fb:aa:f9:3e:8f:54:f3:34:b6:cd:0f:43:
0b:a0:89:c4:02:8d:b6:9e:bc:23:ec:4d:7c:f0:d7:
ae:3e:33:e2:eb:4e:81:5e:c8:f4:70:3b:d2:6d:d3:
73:91:cb:33:c4:b5:48:c0:31:69:65:98:a1:31:02:
be:cb:f3:7b:52:c2:eb:e1:09:d8:3e:19:91:4c:4e:
a2:bc:19:2e:89:9d:76:88:76:75:32:3e:0e:09:9e:
93:ed:d5:f4:36:53:ff:fb:06:89:46:17:37:20:2f:
f5:77:89:f8:05:d0:db:d5:0f:73:8f:6d:9c:50:9f:
a3:94:f5:10:c1:9c:9f:e5:58:a0:b7:58:ba:99:8a:
9f:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:01:4E:62:13:0F:ED:80:C2:15:76:A2:BA:6A:A9:24:FD:FA:4D:07
X509v3 Authority Key Identifier:
keyid:5F:D3:51:E5:EB:29:62:FC:16:FC:14:E7:C6:E5:1B:84:AD:1D:E8:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X9NR5espYvwW_BTnxuUbhK0d6LU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/9457c7-bdfe-4c8a-8f54-747d88367adc/1/7gFOYhMP7YDCFXaiumqpJP36TQc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/9457c7-bdfe-4c8a-8f54-747d88367adc/1/X9NR5espYvwW_BTnxuUbhK0d6LU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.140.172.0/24
Signature Algorithm: sha256WithRSAEncryption
36:0f:8e:d5:dc:06:35:e8:0e:75:4c:db:19:c1:f3:58:ec:5f:
cf:15:32:53:8a:a6:52:55:4d:aa:a4:83:3b:a9:f9:85:07:c7:
ad:c1:5c:78:0c:a6:77:9f:53:5e:df:0f:7f:b9:62:cc:59:2c:
98:e7:a6:59:52:6d:83:af:07:51:dd:84:7b:0a:5c:d4:ab:b8:
dd:7d:0e:78:ad:a1:55:26:40:d1:ba:97:e8:39:2d:48:fd:2a:
d0:4c:c8:db:a4:36:0e:89:df:92:54:62:f1:1c:83:72:18:74:
1a:b4:c7:f5:62:a2:94:5f:3a:a6:5d:f4:0d:78:4d:56:c2:f4:
98:53:fa:50:15:60:25:9c:01:a5:e8:cf:44:5f:84:87:1e:d8:
04:c5:b2:00:af:61:2b:34:75:00:d6:d8:41:9f:3d:95:fa:61:
00:03:b1:ee:13:c6:a9:3f:54:71:66:e7:2d:97:bb:ef:02:af:
20:8e:96:b3:1c:a0:92:7e:3c:d2:2f:a0:7b:e4:ed:3a:f3:8d:
75:30:37:24:0d:e0:50:d3:36:2d:04:b6:1d:c4:66:da:cb:11:
2e:1a:e0:c3:47:c2:23:85:9d:40:28:35:67:42:2d:32:1a:a3:
39:d4:d7:fa:1f:38:5b:da:24:ea:dd:11:69:68:c0:11:70:a8:
6b:6a:6e:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 03:47:21 2025 by rpki-client