Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/2d346b-8825-4681-94e3-98441607b228/1/8sUA95GjYhv6KuzZVFilwCguWC0.roa
File: 8sUA95GjYhv6KuzZVFilwCguWC0.roa (raw, json)
Hash identifier: XZADDosj5zXS8Dzie6vOXsU0vLjewsqKyvZNlIpinLc=
Subject key identifier: F2:C5:00:F7:91:A3:62:1B:FA:2A:EC:D9:54:58:A5:C0:28:2E:58:2D
Certificate issuer: /CN=8c05b364fcf319ccf53c5f2e8c634290ac0eb129
Certificate serial: 0195C811E15AB5695AC05E503852C7DFDDD8
Authority key identifier: 8C:05:B3:64:FC:F3:19:CC:F5:3C:5F:2E:8C:63:42:90:AC:0E:B1:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jAWzZPzzGcz1PF8ujGNCkKwOsSk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/2d346b-8825-4681-94e3-98441607b228/1/8sUA95GjYhv6KuzZVFilwCguWC0.roa
Signing time: Mon 24 Mar 2025 12:12:49 +0000
ROA not before: Mon 24 Mar 2025 12:12:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 8220
IP address blocks: 185.60.79.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:c8:11:e1:5a:b5:69:5a:c0:5e:50:38:52:c7:df:dd:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8c05b364fcf319ccf53c5f2e8c634290ac0eb129
Validity
Not Before: Mar 24 12:12:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=f2c500f791a3621bfa2aecd95458a5c0282e582d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:67:d6:0e:58:ff:3c:8b:7d:9a:b6:66:d8:9b:
e8:3e:9c:39:31:22:25:55:3c:2b:5b:17:21:09:56:
46:bf:6d:88:64:7e:93:cd:fe:2e:46:10:91:72:f2:
36:aa:5c:0f:a1:06:0c:4f:b5:5c:4a:d2:12:23:06:
c9:7a:4a:e7:1f:8e:78:b5:b6:d6:a1:1e:15:92:f6:
1d:a6:40:b9:48:54:d5:7f:0a:15:95:29:58:cd:3e:
ae:3a:24:ca:6b:07:a2:50:24:ae:42:8d:04:1d:93:
a9:5e:05:87:20:a4:4a:5b:95:f0:f6:40:70:30:cd:
98:01:05:4b:84:de:56:f6:6e:b6:32:87:94:fb:a9:
8a:99:a9:6e:54:a1:6a:7d:83:3c:bb:e1:3f:10:c2:
db:e1:ac:2f:66:67:60:dc:53:41:96:72:b9:ac:d6:
2f:ce:2d:32:1f:34:66:9e:b4:17:53:da:fc:bf:5e:
74:35:bf:43:1e:3a:c3:0e:ff:cc:50:a0:95:a9:68:
1e:0a:75:a0:4f:bd:ee:4c:e3:e4:42:96:13:29:c3:
6b:46:56:27:c3:59:0d:59:cd:3d:aa:c3:19:7b:50:
63:cb:ce:e7:15:bd:d5:82:d2:7a:fa:e3:a7:89:65:
e0:6e:0a:6f:b1:f8:e6:fa:c3:af:ee:cd:cb:bc:d6:
c9:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:C5:00:F7:91:A3:62:1B:FA:2A:EC:D9:54:58:A5:C0:28:2E:58:2D
X509v3 Authority Key Identifier:
keyid:8C:05:B3:64:FC:F3:19:CC:F5:3C:5F:2E:8C:63:42:90:AC:0E:B1:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jAWzZPzzGcz1PF8ujGNCkKwOsSk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/2d346b-8825-4681-94e3-98441607b228/1/8sUA95GjYhv6KuzZVFilwCguWC0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/2d346b-8825-4681-94e3-98441607b228/1/jAWzZPzzGcz1PF8ujGNCkKwOsSk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.60.79.0/24
Signature Algorithm: sha256WithRSAEncryption
d5:0f:8f:85:4a:48:57:a2:9e:00:67:5c:20:06:94:bc:75:22:
fc:15:2e:74:b5:7b:c5:90:6f:2e:00:ef:40:12:12:ec:9e:ec:
fd:9c:98:7e:4f:3d:bb:a9:03:fb:96:ed:f0:a3:59:b0:d4:ea:
f0:84:74:1b:61:7c:83:dd:60:c0:62:94:f3:fa:34:f2:39:54:
53:f5:39:37:74:d4:32:44:4b:5e:50:c1:be:a2:6f:60:9b:5f:
3f:64:e3:0e:7c:9a:4c:22:b1:85:38:c7:af:87:db:cd:42:30:
a9:fb:a8:3a:89:15:50:fa:90:fe:30:ae:73:ec:89:70:40:c6:
3d:41:da:8b:97:79:c1:61:d0:8f:3a:53:36:97:3f:98:03:fe:
ab:ed:16:39:ee:1e:71:e7:7a:e4:b7:61:22:12:7a:f5:cf:24:
e8:ba:30:15:a8:5c:bb:97:8c:c6:b9:de:0a:78:8c:e4:3f:93:
df:99:f9:8c:f0:3d:b5:26:ae:57:eb:12:64:33:25:6e:ca:92:
58:20:a4:7b:15:54:78:56:ed:59:ed:9c:8e:ff:57:f5:0b:cd:
e2:2b:4f:1f:14:81:2d:c2:2c:70:83:29:63:a0:ee:03:74:10:
fd:89:87:ba:e8:d0:78:d1:61:4c:06:29:d2:74:89:c5:43:91:
45:6a:8c:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 12:40:41 2025 by rpki-client