Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/46ca25-7595-4e7f-a4b1-23386749fbdf/1/oIfN04kxUDJJbGn9DEu1QoV-1JY.roa
File: oIfN04kxUDJJbGn9DEu1QoV-1JY.roa (raw, json)
Hash identifier: fl8PfnWskew3WboUGvY7jz5gGuceGj8CRICiAgskjUY=
Subject key identifier: A0:87:CD:D3:89:31:50:32:49:6C:69:FD:0C:4B:B5:42:85:7E:D4:96
Certificate issuer: /CN=0acf0a954639c83582974bd29c1992272b3683a3
Certificate serial: 018A0721131D65B7918978B0484165032DBC
Authority key identifier: 0A:CF:0A:95:46:39:C8:35:82:97:4B:D2:9C:19:92:27:2B:36:83:A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Cs8KlUY5yDWCl0vSnBmSJys2g6M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/46ca25-7595-4e7f-a4b1-23386749fbdf/1/oIfN04kxUDJJbGn9DEu1QoV-1JY.roa
Signing time: Fri 18 Aug 2023 05:32:02 +0000
ROA not before: Fri 18 Aug 2023 05:32:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 185.202.110.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:07:21:13:1d:65:b7:91:89:78:b0:48:41:65:03:2d:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0acf0a954639c83582974bd29c1992272b3683a3
Validity
Not Before: Aug 18 05:32:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a087cdd389315032496c69fd0c4bb542857ed496
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fd:4c:d8:9f:4b:33:5b:7f:6c:16:b0:f1:91:5b:
2f:02:ca:6c:90:5a:03:ad:64:a6:7b:03:bb:89:df:
a5:84:ad:f5:d0:4b:f0:df:03:dd:fb:0c:3d:b2:ff:
b6:73:bf:6a:1f:0c:bb:f9:d8:34:41:61:61:51:f9:
fa:9f:fa:2f:f4:8a:48:2d:ea:65:45:7f:f1:bb:16:
8a:fd:20:30:fb:4a:6d:63:76:1f:24:64:2d:5b:b0:
a2:01:41:6b:37:12:66:68:f1:0d:7a:7f:65:87:9c:
20:51:43:6d:57:5f:36:f0:51:9f:86:0d:87:14:ea:
8a:81:a6:d1:7e:05:ed:c2:c5:3d:3c:8b:c4:4e:cb:
62:12:81:6f:5e:3d:07:ec:c6:59:75:d1:64:94:3d:
23:e0:01:c0:ff:50:e6:74:bf:9e:20:ac:3f:d0:49:
90:17:61:45:af:a0:74:cb:2a:5c:0d:0b:37:39:25:
32:21:1a:5a:67:9b:1e:d8:6d:d1:35:7c:fc:dd:62:
d5:1a:46:37:b9:f9:80:71:73:ac:e3:67:10:8f:7d:
b4:67:5c:47:9d:cd:c9:86:91:7b:bf:f8:cb:b9:7d:
04:ad:25:7f:37:0e:ec:1b:6e:fa:44:72:f4:8f:86:
1d:b5:a9:87:84:de:5e:ef:75:87:73:a3:1d:c2:60:
95:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:87:CD:D3:89:31:50:32:49:6C:69:FD:0C:4B:B5:42:85:7E:D4:96
X509v3 Authority Key Identifier:
keyid:0A:CF:0A:95:46:39:C8:35:82:97:4B:D2:9C:19:92:27:2B:36:83:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Cs8KlUY5yDWCl0vSnBmSJys2g6M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/46ca25-7595-4e7f-a4b1-23386749fbdf/1/oIfN04kxUDJJbGn9DEu1QoV-1JY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/46ca25-7595-4e7f-a4b1-23386749fbdf/1/Cs8KlUY5yDWCl0vSnBmSJys2g6M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.202.110.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:ea:f3:fd:4a:58:97:4f:a1:c6:44:17:16:4b:4c:07:e9:cf:
4a:36:c7:5a:98:83:59:6a:ab:2b:ce:cd:86:22:8d:f1:09:0b:
92:a2:39:4e:53:e0:56:01:b1:e9:32:74:b8:07:9b:cb:22:17:
bb:7f:77:9a:9c:f9:83:c6:d6:1e:74:fe:7f:3f:1b:82:be:96:
0b:83:eb:2d:aa:73:bf:af:3b:ca:5f:bc:13:a4:51:51:f7:45:
85:dc:8d:d5:5d:2b:db:e4:e7:17:7e:0a:29:dd:11:5d:9a:fd:
86:48:67:3b:b2:a7:29:0b:c1:3c:a2:b9:f2:0c:15:e1:df:bb:
e2:8b:e5:d9:01:0c:e9:6f:0d:58:0e:d8:2e:7f:28:95:3a:55:
21:04:a6:87:54:a2:3a:8a:2c:37:66:2b:17:0c:90:c6:bb:ca:
cd:0e:a8:9b:c0:23:35:08:ad:59:eb:4d:46:48:5d:bb:ca:9f:
93:2a:5e:c9:21:68:4d:d4:07:e5:38:d5:cc:b4:56:f2:b2:46:
49:1f:f1:54:1c:dd:49:b6:03:31:6f:fe:48:7b:b0:bc:34:17:
7a:ed:6f:90:3d:43:98:08:b3:3c:3d:b0:63:64:64:cd:2f:d8:
d6:34:bb:c4:25:b6:3a:30:47:b9:22:f2:be:e5:f1:9f:54:d2:
12:75:e1:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 12 12:56:10 2025 by rpki-client