Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/iMCgaFsaEybCFcPpvgcapVaHnpU.roa
File: iMCgaFsaEybCFcPpvgcapVaHnpU.roa (raw, json)
Hash identifier: tiBhuy8XhxxY2EUWJgJowABATw65J44kRI6qX89+FzU=
Subject key identifier: 88:C0:A0:68:5B:1A:13:26:C2:15:C3:E9:BE:07:1A:A5:56:87:9E:95
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 0195B3BB48432BFA9DBE0E563AB5B1723ADD
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/iMCgaFsaEybCFcPpvgcapVaHnpU.roa
Signing time: Thu 20 Mar 2025 13:25:50 +0000
ROA not before: Thu 20 Mar 2025 13:25:50 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 60223
IP address blocks: 185.218.84.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:b3:bb:48:43:2b:fa:9d:be:0e:56:3a:b5:b1:72:3a:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Mar 20 13:25:50 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=88c0a0685b1a1326c215c3e9be071aa556879e95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:1f:8c:67:7a:8c:b6:b0:26:7b:9c:52:b9:65:
37:28:0b:7f:e5:db:06:cd:8c:fe:80:f5:69:3a:e6:
0e:00:16:3b:b6:c6:f3:81:d1:fc:70:09:1f:5d:ca:
3f:ad:76:29:d9:57:ed:0f:cc:cd:9a:3c:10:42:11:
f7:d5:99:c8:e5:17:56:eb:16:cd:d7:a0:9e:a4:da:
e8:22:3c:13:b3:a1:eb:c9:20:6a:ad:50:05:f2:d7:
35:54:69:ef:f6:61:c2:6f:58:43:12:c3:df:4d:c7:
17:41:69:d0:e7:63:73:1b:67:a0:09:54:bb:37:df:
9c:92:9a:ee:be:d8:ae:0e:4e:4e:7a:1d:5e:60:e8:
e6:52:54:79:43:18:a1:f0:e8:3b:94:12:84:51:b0:
51:de:96:68:79:17:b8:36:9d:ac:18:2d:90:7f:69:
59:71:af:a5:bd:2d:b0:7e:f9:5b:ea:25:2b:56:19:
18:38:35:50:87:a3:a0:b3:19:d2:a6:ee:ae:5b:f1:
45:13:5d:7e:75:78:c0:a1:62:a6:32:37:69:5e:47:
2f:08:40:49:7f:41:ae:02:3b:86:95:0d:61:bd:0b:
ee:5a:c5:40:1a:29:0e:91:da:af:4f:2c:fc:3d:11:
57:f3:da:c5:da:55:f7:3b:58:72:2e:bb:9d:20:b8:
2c:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:C0:A0:68:5B:1A:13:26:C2:15:C3:E9:BE:07:1A:A5:56:87:9E:95
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/iMCgaFsaEybCFcPpvgcapVaHnpU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.218.84.0/22
Signature Algorithm: sha256WithRSAEncryption
4d:1d:ba:0a:9b:b1:c2:1d:fb:37:14:59:53:2e:1b:07:c0:47:
51:32:e8:fe:51:14:f7:c5:63:4b:3d:e6:b0:28:a1:02:58:89:
d4:ba:03:c5:d4:f6:89:28:35:4f:73:01:16:9b:fd:0a:47:62:
ca:64:ef:35:9b:11:42:d8:1b:73:5f:0c:80:07:af:29:53:87:
ac:45:9d:6c:e6:16:6c:8d:6a:93:1b:3f:39:04:8d:c5:e8:75:
5e:4e:dd:d5:4b:b6:b0:ea:42:46:2a:44:7b:07:4b:ed:6b:5b:
fc:0d:76:f1:ca:2d:89:4f:c5:76:7e:a8:45:0f:57:8e:14:74:
e4:eb:5e:58:dd:14:90:a8:23:06:30:f5:b8:af:c6:01:2b:3c:
7d:5a:e0:71:cf:64:3c:b5:95:9a:c1:3e:1e:95:c3:27:59:bf:
ab:b1:2a:2e:8e:a1:a9:07:e4:f5:0e:5d:87:40:34:17:e9:3b:
5b:ea:78:a3:6e:be:21:32:b7:37:00:bb:97:16:55:36:ca:23:
b1:cb:5e:f9:5a:dd:08:ca:94:99:e1:36:22:e1:29:6a:82:5d:
10:7e:e7:15:5d:81:86:d6:be:54:88:a9:db:fd:78:40:10:d5:
35:c1:59:74:a8:45:9c:94:2d:af:e3:46:6f:c2:42:37:41:0b:
11:b1:de:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 3 07:13:26 2025 by rpki-client