Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/3c0785-b273-4072-a635-d2cd26b69df1/1/N1KahuaH4ywVDh5vnQRZfE-0JBo.roa
File: N1KahuaH4ywVDh5vnQRZfE-0JBo.roa (raw, json)
Hash identifier: Wu4yHucu0ZzzchZ+LFYsPLlBMoJ/1TTM1l51egvuWFs=
Subject key identifier: 37:52:9A:86:E6:87:E3:2C:15:0E:1E:6F:9D:04:59:7C:4F:B4:24:1A
Certificate issuer: /CN=626a28b7c63ef6ab214a52cfa7c3e78db9a40823
Certificate serial: 0194258F04F65E54CB8A2EB6AC9B7C57BDC4
Authority key identifier: 62:6A:28:B7:C6:3E:F6:AB:21:4A:52:CF:A7:C3:E7:8D:B9:A4:08:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ymoot8Y-9qshSlLPp8PnjbmkCCM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/3c0785-b273-4072-a635-d2cd26b69df1/1/N1KahuaH4ywVDh5vnQRZfE-0JBo.roa
Signing time: Thu 02 Jan 2025 05:48:37 +0000
ROA not before: Thu 02 Jan 2025 05:48:37 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 39855
IP address blocks: 185.82.88.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8f:04:f6:5e:54:cb:8a:2e:b6:ac:9b:7c:57:bd:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=626a28b7c63ef6ab214a52cfa7c3e78db9a40823
Validity
Not Before: Jan 2 05:48:37 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=37529a86e687e32c150e1e6f9d04597c4fb4241a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:f3:71:8f:db:d2:7f:d8:9b:50:b7:25:36:93:
da:d0:60:71:74:46:de:a5:88:ba:53:8f:93:ad:90:
63:9e:7d:c1:9a:ff:67:d1:1d:c1:b9:67:4f:18:76:
07:f4:5f:f7:5b:1d:c9:fd:b0:77:27:62:d3:1f:c3:
75:93:25:87:b6:5a:b0:d3:cd:2a:bc:8e:9b:83:1e:
b2:f1:47:12:8f:9c:c5:2c:fc:7a:bf:e5:c5:f4:4a:
c9:50:9f:f1:82:77:42:bd:a8:5f:e2:a5:fb:d9:f4:
11:c2:4c:3c:02:02:ad:c7:03:a3:70:89:5f:23:65:
e3:17:8d:2d:38:ce:ce:61:f3:77:8f:fd:ff:04:7d:
66:a4:44:78:bb:9a:ca:a7:e3:73:de:be:e5:e2:6a:
7b:1a:a2:f9:32:82:5e:88:d1:8c:77:a7:2d:10:c7:
68:ed:01:dd:1f:9d:8d:3e:de:cf:d3:09:4d:db:da:
16:82:00:ce:9f:08:85:af:f2:81:5a:95:38:e8:ed:
c4:d3:57:e3:47:64:f5:cc:9a:90:9e:7f:78:58:b0:
4c:71:35:a9:d4:38:1d:b4:a7:2b:da:03:f6:49:6e:
f0:af:ad:ca:61:91:26:18:89:c9:9d:69:1b:b4:ec:
f5:4f:16:74:0d:24:b3:d1:7b:f0:79:9b:2f:d1:37:
ad:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:52:9A:86:E6:87:E3:2C:15:0E:1E:6F:9D:04:59:7C:4F:B4:24:1A
X509v3 Authority Key Identifier:
keyid:62:6A:28:B7:C6:3E:F6:AB:21:4A:52:CF:A7:C3:E7:8D:B9:A4:08:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ymoot8Y-9qshSlLPp8PnjbmkCCM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/3c0785-b273-4072-a635-d2cd26b69df1/1/N1KahuaH4ywVDh5vnQRZfE-0JBo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/3c0785-b273-4072-a635-d2cd26b69df1/1/Ymoot8Y-9qshSlLPp8PnjbmkCCM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.82.88.0/22
Signature Algorithm: sha256WithRSAEncryption
34:f2:0b:a2:e4:48:d8:33:72:46:26:2d:24:13:12:37:c6:16:
a3:37:03:c7:64:c2:a6:19:2b:f0:7b:74:ee:6b:50:ac:73:3c:
cf:11:50:b2:ca:53:75:c8:e6:67:2a:2e:a4:ef:c5:fa:7d:f4:
5d:4f:6f:50:d8:30:18:07:04:69:dc:77:b8:69:5c:c5:d8:90:
47:c4:80:da:23:ce:c8:ef:98:0a:91:1c:2a:58:29:22:89:7c:
5e:bc:fc:7f:e4:f1:e0:28:21:46:fa:f3:42:cb:ec:16:b6:cd:
20:7c:b3:b3:24:5e:ad:b2:03:15:97:fc:08:d9:1b:fe:7e:94:
41:e3:7f:17:54:35:4a:7c:be:54:df:e7:0c:64:02:bb:b5:21:
46:cf:6a:4a:32:c1:ba:4a:ae:02:09:71:82:ea:18:c2:0a:9c:
28:9d:64:2e:14:e5:8e:36:29:c5:d1:7c:3d:c7:4a:b1:95:5c:
9d:8f:7f:1a:73:ca:b5:aa:17:2f:bd:03:9e:8c:45:dc:08:85:
71:bf:42:b8:0f:82:cc:4a:30:22:12:5f:03:ee:57:7f:2b:5d:
2d:5c:04:73:48:85:95:e2:b7:5f:d1:33:cf:04:77:04:b4:0a:
42:0d:24:54:16:76:eb:a3:54:67:ab:fc:91:dd:61:eb:0c:cf:
a1:15:02:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 18:22:17 2025 by rpki-client