Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/dCuhB4lwIMXoepd9pZAdgDD7Lzw.roa
File: dCuhB4lwIMXoepd9pZAdgDD7Lzw.roa (raw, json)
Hash identifier: B/+LS/snyI3bupOa1SJv0U/2HRJy2E/6DaqpRUmtoqo=
Subject key identifier: 74:2B:A1:07:89:70:20:C5:E8:7A:97:7D:A5:90:1D:80:30:FB:2F:3C
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 019422200D18DD703583695A9DFC332BB26F
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/dCuhB4lwIMXoepd9pZAdgDD7Lzw.roa
Signing time: Wed 01 Jan 2025 13:48:33 +0000
ROA not before: Wed 01 Jan 2025 13:48:33 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 204579
IP address blocks: 185.13.158.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:20:0d:18:dd:70:35:83:69:5a:9d:fc:33:2b:b2:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Jan 1 13:48:33 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=742ba107897020c5e87a977da5901d8030fb2f3c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:61:65:e5:45:ae:13:ae:4d:a7:f8:e4:d0:2e:
e7:16:a6:b5:20:53:b1:57:74:70:1e:5a:10:bd:e4:
e3:b3:5c:de:47:41:1e:fb:38:0c:44:79:24:c8:82:
cb:8d:85:ca:1b:f0:b7:ef:fa:db:27:c0:87:b8:44:
73:aa:f2:99:2d:35:5b:b1:98:52:67:35:59:98:4e:
37:2c:cb:15:79:1e:dd:0c:bf:81:00:bb:31:c2:38:
a1:cd:93:49:97:18:00:cd:77:f3:1f:cd:49:14:9a:
07:5e:a9:12:f4:28:3a:8d:13:ea:ed:a5:d3:1f:a0:
83:29:42:fa:42:25:e1:a5:87:b5:94:51:ce:26:dc:
7a:d3:7a:70:ac:64:b7:ed:c8:99:8f:08:5d:4b:ba:
40:5a:90:3b:a3:70:25:ba:c4:5b:97:91:a2:9d:bc:
0a:e8:ab:75:c4:38:2f:53:91:aa:9d:56:50:62:02:
49:a8:e5:99:5e:f4:f5:07:c3:55:0d:6b:c6:2c:42:
0e:d1:29:78:bc:97:b6:a6:8d:e5:ac:ae:53:a8:a2:
85:6a:18:da:48:2e:dc:61:9b:63:23:da:04:9e:88:
b5:24:20:23:fc:29:7f:ef:9c:c1:59:9e:39:b4:0f:
6d:7e:3f:69:78:3d:bf:2c:86:a5:df:29:af:42:60:
3b:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:2B:A1:07:89:70:20:C5:E8:7A:97:7D:A5:90:1D:80:30:FB:2F:3C
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/dCuhB4lwIMXoepd9pZAdgDD7Lzw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.13.158.0/24
Signature Algorithm: sha256WithRSAEncryption
50:ef:6a:b7:45:05:12:d6:0e:67:50:e4:9f:66:6b:1b:90:85:
d2:21:05:1b:0d:df:a1:a9:9e:f1:9b:95:22:30:c9:84:75:7c:
a5:73:2a:a1:a9:0e:4c:a1:b0:61:bc:ed:7c:1e:43:ee:e4:07:
7d:ac:51:7c:50:ba:19:e2:5e:3d:18:9e:52:9b:8f:03:32:49:
7c:a5:bb:79:81:8d:a7:9a:8d:11:2e:9f:42:6a:16:dd:96:af:
a1:c0:cb:0f:0b:30:50:b9:34:82:cb:e4:c7:6f:70:77:34:b2:
06:32:67:cb:20:9d:d0:3d:7a:67:d4:63:0e:08:c3:39:3d:35:
94:b2:80:26:bd:dc:10:b0:ef:2f:31:06:4d:6c:99:a8:c0:93:
4f:5a:f3:69:80:ab:d5:9c:a7:d1:2d:88:bd:5c:e9:20:53:9d:
f7:e0:1e:e6:e0:bf:8d:cf:ed:d8:d7:c2:63:7d:98:d5:51:c3:
14:7a:43:cb:96:80:2a:ab:e5:8e:a9:ae:75:02:af:4d:46:7d:
51:ae:c1:bd:34:53:08:46:8f:1c:76:46:70:e7:c6:ae:67:1e:
65:c6:eb:07:23:0d:42:53:47:4a:39:df:d6:40:9e:47:fc:24:
55:b2:95:4b:f3:80:c7:dd:06:07:6d:fe:a1:a8:85:c4:5f:66:
dd:a0:eb:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 02:34:35 2025 by rpki-client