Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/87a00a-b6f6-4721-a828-d9337db39d1f/1/d_QjM08NyWxu6Tcwa6Z9vaHDI6E.roa
File: d_QjM08NyWxu6Tcwa6Z9vaHDI6E.roa (raw, json)
Hash identifier: 2UiuRNdprh1vh3n/JUuIuP4pSF4iJgcL2G0BqHfLcb8=
Subject key identifier: 77:F4:23:33:4F:0D:C9:6C:6E:E9:37:30:6B:A6:7D:BD:A1:C3:23:A1
Certificate issuer: /CN=7554ac4c7f451c5bb9382fbcd46d70c4c0f9de56
Certificate serial: 019424B3FF69F99340E49856B364B296D1E8
Authority key identifier: 75:54:AC:4C:7F:45:1C:5B:B9:38:2F:BC:D4:6D:70:C4:C0:F9:DE:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dVSsTH9FHFu5OC-81G1wxMD53lY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/87a00a-b6f6-4721-a828-d9337db39d1f/1/d_QjM08NyWxu6Tcwa6Z9vaHDI6E.roa
Signing time: Thu 02 Jan 2025 01:49:23 +0000
ROA not before: Thu 02 Jan 2025 01:49:23 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 63023
IP address blocks: 185.177.229.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:b3:ff:69:f9:93:40:e4:98:56:b3:64:b2:96:d1:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7554ac4c7f451c5bb9382fbcd46d70c4c0f9de56
Validity
Not Before: Jan 2 01:49:23 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=77f423334f0dc96c6ee937306ba67dbda1c323a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:45:5f:7e:1a:e6:68:41:c4:9d:ac:94:6a:4e:
81:2d:4d:3c:09:04:01:58:0e:13:cc:3d:ca:98:0a:
8a:9f:2b:57:b7:f4:6e:ea:8b:42:10:e7:7b:82:70:
5a:e2:89:d5:86:84:02:69:4f:b6:43:a4:fb:df:5c:
a7:53:92:b3:45:8c:bb:0c:9e:67:a4:ab:97:a5:3d:
76:b9:d7:df:2c:97:6c:d5:ef:17:aa:40:64:fa:46:
0d:4b:96:ce:b0:cc:eb:db:ab:66:f4:63:af:47:e6:
3b:bd:ae:a3:f7:b2:6b:ab:12:e0:97:02:8f:a9:55:
64:58:f8:ac:1a:dd:65:d0:30:a8:fd:40:bc:65:7b:
fd:d2:01:98:0c:af:9a:1e:42:05:c9:bd:1d:3d:64:
ae:48:27:68:e3:3a:33:54:34:84:05:33:89:3f:1c:
28:ee:37:cc:4f:7e:20:4c:10:b7:0e:87:7d:52:09:
72:04:7d:ef:7d:6a:ad:6d:a0:15:c3:6f:1f:61:6d:
95:1b:ec:1e:46:3c:90:d0:98:32:3c:13:c2:e2:77:
ce:92:c8:08:d4:32:a5:c2:38:3b:d0:22:c1:78:09:
75:da:6e:37:9b:94:0c:40:86:74:75:a9:d6:d5:0f:
9f:fc:6b:cf:5d:25:9f:0a:61:0c:a3:4d:d7:fd:35:
f0:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:F4:23:33:4F:0D:C9:6C:6E:E9:37:30:6B:A6:7D:BD:A1:C3:23:A1
X509v3 Authority Key Identifier:
keyid:75:54:AC:4C:7F:45:1C:5B:B9:38:2F:BC:D4:6D:70:C4:C0:F9:DE:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dVSsTH9FHFu5OC-81G1wxMD53lY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/87a00a-b6f6-4721-a828-d9337db39d1f/1/d_QjM08NyWxu6Tcwa6Z9vaHDI6E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/87a00a-b6f6-4721-a828-d9337db39d1f/1/dVSsTH9FHFu5OC-81G1wxMD53lY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.177.229.0/24
Signature Algorithm: sha256WithRSAEncryption
78:20:38:19:65:36:b9:14:da:57:b7:cc:48:03:ac:1c:a9:9a:
a5:67:ab:13:19:99:9f:f2:3d:81:5c:f6:e3:b5:dd:e0:a8:89:
23:7b:60:ca:66:05:98:f9:b2:01:b2:d7:a6:c1:1f:1b:08:53:
fb:76:54:70:a9:21:a9:27:5e:1a:81:cc:54:37:e5:87:d5:0f:
cd:be:6f:fb:7e:3f:cb:d0:a3:f6:af:84:28:24:3e:13:6c:f6:
75:13:8e:92:74:47:df:a2:0d:26:a7:74:f8:59:9f:b7:f0:a5:
5f:0f:98:f2:b0:1d:73:20:8d:92:88:34:78:3c:3b:84:29:29:
bd:56:33:89:6b:5c:e3:24:29:d3:5e:f1:20:cc:e6:cf:cb:58:
a1:80:64:ca:93:03:ab:94:eb:a1:88:68:c1:41:dd:a7:28:b1:
a7:78:a6:dc:c0:10:5c:9d:f2:99:70:0a:3f:49:d3:a4:fb:0f:
06:50:60:64:e9:dd:2b:d2:98:b9:08:d2:96:87:5f:c8:fa:3a:
72:18:24:5c:84:91:3f:09:7b:a9:39:b6:88:44:aa:b6:b2:95:
94:9a:13:08:c2:82:c9:b7:36:76:6a:4e:09:1e:6b:7f:fa:6b:
a1:d4:78:1d:e1:f8:95:f6:fc:e4:aa:ab:65:d3:56:0b:2d:50:
87:93:0a:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 16:05:50 2025 by rpki-client