Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/72a4e3-f793-4f9a-ba4e-0590394a2efa/1/exWn383Me8YqefkEkqOEr7GA0lc.roa
File: exWn383Me8YqefkEkqOEr7GA0lc.roa (raw, json)
Hash identifier: 8G5LjurjltQVZ/Cei3JUqckWZBdyjOdLypvjmgHtD9Q=
Subject key identifier: 7B:15:A7:DF:CD:CC:7B:C6:2A:79:F9:04:92:A3:84:AF:B1:80:D2:57
Certificate issuer: /CN=6fdbbe7e978029c6ceaa557b4a76da68074311b1
Certificate serial: 019422FC4B0C17B059200DB4C57C3C0F0C6E
Authority key identifier: 6F:DB:BE:7E:97:80:29:C6:CE:AA:55:7B:4A:76:DA:68:07:43:11:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b9u-fpeAKcbOqlV7SnbaaAdDEbE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/72a4e3-f793-4f9a-ba4e-0590394a2efa/1/exWn383Me8YqefkEkqOEr7GA0lc.roa
Signing time: Wed 01 Jan 2025 17:49:07 +0000
ROA not before: Wed 01 Jan 2025 17:49:07 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 51175
IP address blocks: 185.191.244.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:fc:4b:0c:17:b0:59:20:0d:b4:c5:7c:3c:0f:0c:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6fdbbe7e978029c6ceaa557b4a76da68074311b1
Validity
Not Before: Jan 1 17:49:07 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=7b15a7dfcdcc7bc62a79f90492a384afb180d257
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:37:a1:08:49:27:b1:ef:51:b8:c4:28:ac:9e:
aa:b1:fa:26:e9:e5:15:86:9e:5d:b7:b2:02:33:e2:
65:6c:81:10:b8:5c:5e:00:cf:86:af:4c:0f:1d:2e:
d2:68:2e:14:67:92:e8:ab:a8:81:7b:12:d1:01:56:
90:f5:d3:a8:4f:2b:27:a1:1e:c1:e5:93:2f:0e:ab:
26:53:a2:64:88:aa:6f:dc:a2:95:ff:45:4f:bb:76:
38:d1:6e:e2:23:81:2d:cb:7a:0b:0c:5f:93:7f:d4:
23:14:6f:c1:b9:a5:7b:62:90:0c:f0:63:17:56:31:
2f:32:d1:86:d1:f2:5d:e0:66:a5:dc:23:94:00:26:
c4:99:93:99:43:82:23:af:4f:ef:65:fd:f3:52:7d:
14:cb:23:4e:3f:4c:c8:17:19:fe:fc:6b:30:0f:d3:
00:4a:c9:ca:43:d1:89:aa:76:8d:f5:86:a3:06:d4:
5a:f9:da:9e:10:36:51:4c:11:08:bb:44:9b:12:6f:
27:10:4a:77:e5:5e:9c:ce:f6:bf:82:65:92:14:b7:
41:12:68:bb:04:b1:ef:0a:2e:78:1a:8c:a3:f3:15:
b1:15:c3:3d:d4:35:ce:8b:e7:d5:69:d3:e0:44:f5:
9a:0a:54:91:91:ee:d7:85:f2:4d:03:79:a0:59:fa:
08:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:15:A7:DF:CD:CC:7B:C6:2A:79:F9:04:92:A3:84:AF:B1:80:D2:57
X509v3 Authority Key Identifier:
keyid:6F:DB:BE:7E:97:80:29:C6:CE:AA:55:7B:4A:76:DA:68:07:43:11:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9u-fpeAKcbOqlV7SnbaaAdDEbE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/72a4e3-f793-4f9a-ba4e-0590394a2efa/1/exWn383Me8YqefkEkqOEr7GA0lc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/72a4e3-f793-4f9a-ba4e-0590394a2efa/1/b9u-fpeAKcbOqlV7SnbaaAdDEbE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.191.244.0/23
Signature Algorithm: sha256WithRSAEncryption
4e:50:ca:d3:bd:48:95:71:51:87:df:2f:1d:0b:29:71:14:d2:
7d:13:31:6b:b2:1f:c5:9d:9b:96:9b:0b:5a:06:95:fb:8a:ce:
a1:7a:f9:52:4f:8c:18:49:00:09:75:0c:e2:88:29:0c:37:a4:
36:1e:ce:68:ec:0b:12:44:f1:3f:98:08:32:9f:e0:ac:db:ee:
95:fd:db:a7:0b:61:ae:33:b4:36:28:c8:a1:65:e1:c9:32:5f:
d4:6b:61:37:e1:70:48:d5:44:49:e8:eb:38:6d:df:80:6d:70:
97:12:02:b0:3c:bf:50:19:06:12:f8:e0:12:b7:48:12:a5:cf:
0a:e1:50:2b:05:ec:52:3a:c8:54:7d:45:73:36:c4:81:82:9a:
1e:09:92:5e:09:d2:09:07:0c:1c:1d:dd:86:a4:c2:fb:3b:a6:
86:d9:3d:8d:7b:2b:e5:63:be:0f:99:01:d2:c1:a9:05:f3:1b:
42:6e:b0:3d:55:6d:b7:27:56:55:2e:98:68:a9:14:3a:b2:bb:
43:11:77:50:5e:65:a6:39:45:5e:87:ab:dc:f3:dc:2a:e0:11:
25:8a:1c:94:14:32:84:8b:71:42:f4:de:08:32:9d:6f:ae:66:
20:40:a4:23:e9:fc:20:14:c6:5d:00:81:d2:7f:c9:83:db:bd:
fe:0d:26:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 02:51:50 2025 by rpki-client