Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/a3fb67-d514-4aee-adb9-72bad9d73c80/1/fchmYh0XMmIa-Ncr7a7fqAnAY00.roa
File: fchmYh0XMmIa-Ncr7a7fqAnAY00.roa (raw, json)
Hash identifier: ZlxUCwJ7bUmXJFbrCkwij8tMOrG795eaKW3Q7cSegWE=
Subject key identifier: 7D:C8:66:62:1D:17:32:62:1A:F8:D7:2B:ED:AE:DF:A8:09:C0:63:4D
Certificate issuer: /CN=d0b849b9bc9042a1557331937e4ad71518af61cf
Certificate serial: 01942520AEB55160FA1F371E3D9F6A93A6C9
Authority key identifier: D0:B8:49:B9:BC:90:42:A1:55:73:31:93:7E:4A:D7:15:18:AF:61:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0LhJubyQQqFVczGTfkrXFRivYc8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/a3fb67-d514-4aee-adb9-72bad9d73c80/1/fchmYh0XMmIa-Ncr7a7fqAnAY00.roa
Signing time: Thu 02 Jan 2025 03:48:06 +0000
ROA not before: Thu 02 Jan 2025 03:48:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 8708
IP address blocks: 185.234.131.0/24 maxlen: 24
194.36.142.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:20:ae:b5:51:60:fa:1f:37:1e:3d:9f:6a:93:a6:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0b849b9bc9042a1557331937e4ad71518af61cf
Validity
Not Before: Jan 2 03:48:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=7dc866621d1732621af8d72bedaedfa809c0634d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:c9:c8:6f:98:46:54:a7:6b:66:8c:52:3a:77:
3a:73:70:63:e2:1c:02:40:41:22:95:86:98:f0:49:
0e:5c:40:30:e1:8b:cf:20:21:76:c5:69:8a:42:33:
58:83:f8:5c:ef:18:08:ed:11:60:ee:4e:96:b5:a2:
c3:1b:9b:90:20:5e:69:92:e5:b2:d4:c9:5c:24:ce:
1e:36:f3:88:a2:ae:9f:a9:dc:1b:48:83:47:4c:8f:
12:6f:5a:09:d5:57:de:29:33:c4:a5:72:2f:fd:28:
31:ac:02:44:49:0a:96:b9:71:c0:f1:19:ce:66:e7:
ed:37:d9:9c:8e:70:0b:05:25:4f:e1:99:48:08:fd:
4b:22:47:78:1f:55:c2:07:fc:a8:dd:c2:db:fe:bb:
f1:85:45:74:d0:0b:51:83:58:be:34:85:0a:24:ac:
ba:da:ba:fd:e8:2e:70:72:c6:5b:8d:4d:1b:a2:b4:
e2:59:20:f4:f2:00:57:c8:91:64:a3:0c:ba:8a:a6:
ef:3c:9a:ec:ac:a8:51:1e:09:05:ab:04:1e:c4:26:
a0:08:cc:75:1f:67:f3:53:e0:cc:00:1d:13:e5:3c:
0d:d4:6c:26:d5:91:98:0e:fc:63:f1:23:a0:c9:a8:
18:e2:ac:64:e3:7c:22:fb:24:f0:34:b3:bb:d7:96:
f5:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:C8:66:62:1D:17:32:62:1A:F8:D7:2B:ED:AE:DF:A8:09:C0:63:4D
X509v3 Authority Key Identifier:
keyid:D0:B8:49:B9:BC:90:42:A1:55:73:31:93:7E:4A:D7:15:18:AF:61:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0LhJubyQQqFVczGTfkrXFRivYc8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/a3fb67-d514-4aee-adb9-72bad9d73c80/1/fchmYh0XMmIa-Ncr7a7fqAnAY00.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/a3fb67-d514-4aee-adb9-72bad9d73c80/1/0LhJubyQQqFVczGTfkrXFRivYc8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.234.131.0/24
194.36.142.0/24
Signature Algorithm: sha256WithRSAEncryption
63:17:6f:9a:2f:45:20:1f:49:44:26:80:00:c9:1a:fd:1e:b9:
7b:a1:7d:cc:03:a6:e8:ad:76:5a:63:b0:df:5d:6a:c8:a1:09:
f6:dd:f9:be:0b:bc:2f:de:c3:91:4e:70:26:24:32:da:91:bf:
3c:1f:5c:ea:75:57:44:32:6c:20:d2:1d:4b:97:21:f4:97:11:
e1:a3:25:21:2e:e5:d9:5f:fc:7a:14:63:86:29:5a:a6:3a:29:
3a:78:17:59:08:5e:2a:25:90:cc:3e:d0:40:3f:39:8a:eb:61:
90:b6:a9:7c:72:9a:bb:12:f9:c0:75:5a:35:e5:db:3e:0e:5e:
76:89:b6:fd:5b:be:42:68:e6:68:b1:5c:f0:c9:93:17:24:c7:
95:2e:95:26:0c:da:8a:90:80:36:63:74:c4:0b:5e:e3:fa:62:
d9:8b:b2:04:6c:13:b8:35:0d:5b:ec:4a:bf:c5:83:d9:bf:23:
3a:7a:74:0f:b6:f5:ec:42:00:5d:a9:5a:57:19:0f:82:4d:33:
42:98:2c:20:48:3f:92:43:d5:69:3c:a5:50:40:4a:fb:73:fe:
35:dd:57:a9:00:58:66:ca:95:4a:ea:52:94:49:6a:6c:71:b6:
3e:2b:32:4c:9d:db:e6:6c:db:16:00:8a:b2:12:eb:b9:2f:25:
f6:8a:db:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 22:31:37 2025 by rpki-client