Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/badedf-d0e9-45a9-af75-10edb541e6ff/1/0cSUdPzh_fyOTfC0ruB0gTg1QhM.roa
File: 0cSUdPzh_fyOTfC0ruB0gTg1QhM.roa (raw, json)
Hash identifier: wUgynLVwcF9qr8K69Rsxkk1YVCBtq1S8/W1PvBOd+ok=
Subject key identifier: D1:C4:94:74:FC:E1:FD:FC:8E:4D:F0:B4:AE:E0:74:81:38:35:42:13
Certificate issuer: /CN=306c0866dc25208e6c07d4a21d7d8050b508d6a2
Certificate serial: 0194282308FBA0E5C8275FB236302C98BE69
Authority key identifier: 30:6C:08:66:DC:25:20:8E:6C:07:D4:A2:1D:7D:80:50:B5:08:D6:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MGwIZtwlII5sB9SiHX2AULUI1qI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/badedf-d0e9-45a9-af75-10edb541e6ff/1/0cSUdPzh_fyOTfC0ruB0gTg1QhM.roa
Signing time: Thu 02 Jan 2025 17:49:32 +0000
ROA not before: Thu 02 Jan 2025 17:49:32 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 47674
IP address blocks: 185.231.32.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:28:23:08:fb:a0:e5:c8:27:5f:b2:36:30:2c:98:be:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=306c0866dc25208e6c07d4a21d7d8050b508d6a2
Validity
Not Before: Jan 2 17:49:32 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=d1c49474fce1fdfc8e4df0b4aee0748138354213
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:98:57:cd:5a:60:ec:38:36:ec:ca:79:bb:9f:
15:9f:46:8d:8b:c7:61:8d:dc:81:8c:a1:37:21:db:
e1:97:35:36:06:50:f7:74:38:52:35:60:ef:d6:2c:
bf:2b:16:04:3b:e1:a2:da:6d:9f:c6:b8:07:64:72:
12:4c:c4:4c:09:0e:d2:66:ad:dc:dd:be:9b:a5:6f:
63:1c:1a:0c:ea:7f:a6:b5:2a:fe:a9:60:f4:54:1b:
a6:14:38:fc:43:15:55:58:32:41:f4:c4:30:f7:98:
23:08:d7:3f:d0:14:b2:42:5b:5f:57:de:76:47:f4:
98:06:66:87:0a:d6:2f:2f:a9:aa:f7:2e:59:e3:73:
57:d8:ee:a6:92:6c:0e:ea:0b:da:40:62:d0:83:49:
8d:05:24:7f:0e:ca:47:d9:89:33:ad:f2:12:52:62:
50:35:13:e6:8b:a4:b6:07:af:ba:73:a3:a8:ba:60:
50:de:20:af:41:ae:5e:12:2f:40:61:39:ca:be:57:
8f:11:76:b1:0f:58:82:f7:56:f3:6e:48:27:91:f1:
b8:cf:62:67:f1:db:1d:d1:13:c0:9a:ef:e9:2d:6a:
94:ff:ce:36:c8:14:94:18:1a:ed:b3:da:d8:2e:fe:
07:a0:16:a9:44:a9:be:98:8d:7f:ca:7f:90:ae:31:
5a:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:C4:94:74:FC:E1:FD:FC:8E:4D:F0:B4:AE:E0:74:81:38:35:42:13
X509v3 Authority Key Identifier:
keyid:30:6C:08:66:DC:25:20:8E:6C:07:D4:A2:1D:7D:80:50:B5:08:D6:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MGwIZtwlII5sB9SiHX2AULUI1qI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/badedf-d0e9-45a9-af75-10edb541e6ff/1/0cSUdPzh_fyOTfC0ruB0gTg1QhM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/badedf-d0e9-45a9-af75-10edb541e6ff/1/MGwIZtwlII5sB9SiHX2AULUI1qI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.231.32.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:3f:41:2b:f9:eb:e1:a6:86:c1:a0:98:c8:c0:77:03:20:16:
cb:ec:2e:9b:54:3e:4d:76:04:60:98:2b:29:9b:09:cf:ca:99:
67:28:49:2e:74:80:c6:27:85:f0:dd:fd:96:de:15:ef:cd:05:
33:e6:d0:eb:42:16:3b:51:db:1f:3f:52:62:d1:2f:56:dd:6a:
7d:8a:04:3a:24:34:2d:e2:c1:d2:4f:77:8e:17:1f:8c:10:34:
a7:19:c1:b5:dc:fd:7e:06:5b:aa:4d:d6:a6:b5:13:55:eb:00:
70:32:24:7f:ee:20:2c:da:d3:e4:a9:40:0d:dd:e2:a6:c7:ba:
00:31:8e:a5:b9:5c:88:48:61:f9:4b:66:9e:c2:2e:3e:f1:6b:
e0:ec:0d:c5:9c:73:45:bc:5b:df:8d:e3:75:f0:28:95:2f:59:
31:bd:62:c8:d6:23:0f:34:23:2f:7c:4b:9f:a1:f9:2a:98:82:
4e:aa:2a:0f:6c:cb:5d:c5:75:26:2f:54:94:b2:ef:dc:d7:7e:
f5:67:90:ef:91:c9:b4:5e:57:57:b1:ad:3b:08:25:da:f5:59:
c4:98:db:b3:ea:5f:b2:ba:b9:a4:f0:e5:2a:bc:9e:c3:ec:48:
fa:63:3a:72:85:30:40:b9:5a:32:cd:9f:b3:23:ff:1b:0e:e7:
af:52:0e:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 06:16:12 2025 by rpki-client