Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/3394e3-736e-4879-b8db-89aaea36285e/1/afDsIIX19F9xT08jQI0QDKDgXCU.roa
File: afDsIIX19F9xT08jQI0QDKDgXCU.roa (raw, json)
Hash identifier: ijpvD8zX8CA3y3NBKeNvedNFOxkjhWG2zYUalX/+kpI=
Subject key identifier: 69:F0:EC:20:85:F5:F4:5F:71:4F:4F:23:40:8D:10:0C:A0:E0:5C:25
Certificate issuer: /CN=e85b83c87c4a3d8315025379f72987520bb5d046
Certificate serial: 01902ADA8EDA17CC5CCF43C866886A48D87C
Authority key identifier: E8:5B:83:C8:7C:4A:3D:83:15:02:53:79:F7:29:87:52:0B:B5:D0:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6FuDyHxKPYMVAlN59ymHUgu10EY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/3394e3-736e-4879-b8db-89aaea36285e/1/afDsIIX19F9xT08jQI0QDKDgXCU.roa
Signing time: Tue 18 Jun 2024 10:18:04 +0000
ROA not before: Tue 18 Jun 2024 10:18:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 39365
IP address blocks: 185.144.184.0/22 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:2a:da:8e:da:17:cc:5c:cf:43:c8:66:88:6a:48:d8:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e85b83c87c4a3d8315025379f72987520bb5d046
Validity
Not Before: Jun 18 10:18:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=69f0ec2085f5f45f714f4f23408d100ca0e05c25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:5f:33:6f:d3:98:3a:0d:a5:26:43:ef:1f:a0:
5a:40:f6:8a:99:6b:00:4d:ab:09:48:b3:5d:e7:98:
f8:a4:3b:0d:97:3c:b0:3a:60:55:91:bc:93:d5:cb:
96:20:8b:dc:a7:60:0d:67:54:37:fd:c5:a1:41:85:
2e:d2:1d:c8:ca:c7:13:21:04:bb:e5:06:55:a3:55:
04:a2:da:e0:05:a8:d9:18:ed:e1:6b:6b:31:a5:06:
0d:df:3f:14:a3:36:60:65:7e:86:8a:76:67:97:05:
58:a8:7c:a4:8e:37:ab:a1:7c:91:a2:fc:3e:d6:ae:
b3:b3:2c:95:0a:85:08:c0:c5:a8:61:d4:d2:1d:48:
8f:8c:d9:a3:31:db:28:78:b0:79:1e:27:23:e4:78:
0d:04:51:29:5e:47:a5:76:09:ca:cc:b9:3f:2e:27:
4f:8e:09:38:e2:f6:5b:c8:fd:6f:af:03:47:30:b9:
27:dd:a3:76:38:d1:fb:99:ec:63:4f:2f:20:ae:65:
01:bd:6f:5c:93:f5:6e:cb:bb:d6:c8:71:6b:54:37:
6b:7f:d3:6e:8d:e1:22:ef:2b:e9:b4:87:95:26:5e:
ad:a3:af:ad:4b:38:b0:8d:47:49:de:f4:35:f3:5c:
27:95:61:b0:64:e2:1a:42:14:c2:b6:e8:f4:13:d9:
47:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:F0:EC:20:85:F5:F4:5F:71:4F:4F:23:40:8D:10:0C:A0:E0:5C:25
X509v3 Authority Key Identifier:
keyid:E8:5B:83:C8:7C:4A:3D:83:15:02:53:79:F7:29:87:52:0B:B5:D0:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6FuDyHxKPYMVAlN59ymHUgu10EY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/3394e3-736e-4879-b8db-89aaea36285e/1/afDsIIX19F9xT08jQI0QDKDgXCU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/3394e3-736e-4879-b8db-89aaea36285e/1/6FuDyHxKPYMVAlN59ymHUgu10EY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.144.184.0/22
Signature Algorithm: sha256WithRSAEncryption
91:64:e8:e6:94:9f:ed:30:c7:46:b4:81:55:8d:ca:6b:2f:48:
7f:85:94:3f:8b:8f:48:f1:47:34:9c:7c:ce:e0:48:c4:a5:e7:
6e:ac:c2:d2:79:91:ca:2f:e3:7b:6b:52:ed:16:4c:94:b8:ea:
5f:94:c8:fe:29:24:7e:85:fa:7a:c4:6d:ae:82:c0:80:31:65:
41:70:fc:8c:c1:76:3e:88:51:1c:10:36:76:e9:c3:88:6b:34:
ef:49:2a:18:0b:cf:34:dc:21:ec:c5:61:9d:8d:f0:05:84:af:
10:c6:a4:3c:57:be:ca:68:bd:3a:32:29:26:17:9a:23:55:79:
d5:08:fa:5b:31:43:3c:9e:b0:81:98:e8:b6:22:37:81:68:97:
61:81:70:08:b3:3e:87:d8:22:0e:ec:e7:f5:05:a9:f1:a1:63:
2e:c6:61:a2:52:0b:69:8e:52:18:7c:bd:d2:c1:8a:84:b4:8e:
61:6d:ea:eb:84:3c:c9:0b:7a:89:e2:2f:45:46:d3:23:0f:14:
5c:c7:56:c1:a0:b7:12:db:bb:41:fe:5c:45:9a:22:af:95:ab:
a7:7e:08:a1:1a:58:7f:f7:c2:9f:57:15:12:4a:54:3b:14:1e:
35:bc:62:d1:01:cc:53:d2:06:fb:3f:91:89:f2:fd:24:be:fc:
d6:7f:24:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 23:28:19 2025 by rpki-client