Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/8c5808-3165-41dc-90a0-3ef5eb7c8598/1/Agq3iPpr5eCmHyt0ew6UMWtCZc0.roa
File: Agq3iPpr5eCmHyt0ew6UMWtCZc0.roa (raw, json)
Hash identifier: iwvBYw5FJQEgULJq8pXWZ7nV4mNoOW5uUpwg0V28eL0=
Subject key identifier: 02:0A:B7:88:FA:6B:E5:E0:A6:1F:2B:74:7B:0E:94:31:6B:42:65:CD
Certificate issuer: /CN=f3b90781dbbebdb8ec42baf66488059ea5866aac
Certificate serial: 01942521FA148CDAC52BCE33FDC34FB4C288
Authority key identifier: F3:B9:07:81:DB:BE:BD:B8:EC:42:BA:F6:64:88:05:9E:A5:86:6A:AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/87kHgdu-vbjsQrr2ZIgFnqWGaqw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/8c5808-3165-41dc-90a0-3ef5eb7c8598/1/Agq3iPpr5eCmHyt0ew6UMWtCZc0.roa
Signing time: Thu 02 Jan 2025 03:49:31 +0000
ROA not before: Thu 02 Jan 2025 03:49:31 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 61266
IP address blocks: 185.10.244.0/22 maxlen: 22
2a03:6940::/32 maxlen: 32
2a03:6947:300::/40 maxlen: 40
2a03:6947:400::/40 maxlen: 40
2a03:6947:500::/40 maxlen: 40
2a03:6947:900::/40 maxlen: 40
2a03:6947:a00::/40 maxlen: 40
2a03:6947:c00::/40 maxlen: 40
2a03:6947:f00::/40 maxlen: 40
2a03:6947:1100::/40 maxlen: 40
2a03:6947:1200::/40 maxlen: 40
2a03:6947:1300::/40 maxlen: 40
2a03:6947:1700::/40 maxlen: 40
2a03:6947:1900::/40 maxlen: 40
2a03:6947:1b00::/40 maxlen: 40
2a03:6947:1d00::/40 maxlen: 40
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:21:fa:14:8c:da:c5:2b:ce:33:fd:c3:4f:b4:c2:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f3b90781dbbebdb8ec42baf66488059ea5866aac
Validity
Not Before: Jan 2 03:49:31 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=020ab788fa6be5e0a61f2b747b0e94316b4265cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:0e:6b:a9:72:86:d3:be:4e:c6:4b:3f:0f:fa:
45:c3:56:a7:96:5d:f7:81:93:e3:3e:1a:43:0f:e1:
a5:97:77:22:41:01:f0:ed:df:1e:74:28:67:2e:b0:
96:19:83:9b:f8:ee:15:07:28:30:e6:83:b9:e4:38:
57:a7:87:47:c8:33:87:67:98:c7:b2:d6:47:45:0d:
4a:1a:0a:ad:0c:d6:9a:46:3f:6e:a8:a6:a6:b4:10:
d9:1b:ce:f4:f9:f3:8c:eb:54:4b:58:f3:83:01:9f:
dc:3e:a2:6d:2d:36:58:f3:25:c0:0c:f4:77:d4:a8:
a2:66:8e:9a:ed:db:7d:b0:02:66:f2:40:08:8d:0a:
8a:ff:44:d9:13:c3:df:b4:66:88:f2:4f:de:47:64:
4b:50:57:9c:f1:51:2b:2d:cf:c2:62:fd:02:f3:de:
a8:28:33:97:91:03:f4:34:39:7b:92:96:99:21:75:
10:5a:44:69:5f:ee:3b:d8:3d:2e:59:5b:2a:9d:0f:
5e:0e:86:81:7b:84:66:86:d1:e8:db:2a:34:46:38:
5e:3a:31:ce:12:24:be:50:4b:6e:dc:ed:15:54:bc:
6a:7d:64:58:ca:92:59:76:19:9a:3c:cf:c0:14:20:
8d:17:b7:29:ae:83:a8:02:d2:f2:ed:22:b0:af:86:
a0:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:0A:B7:88:FA:6B:E5:E0:A6:1F:2B:74:7B:0E:94:31:6B:42:65:CD
X509v3 Authority Key Identifier:
keyid:F3:B9:07:81:DB:BE:BD:B8:EC:42:BA:F6:64:88:05:9E:A5:86:6A:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/87kHgdu-vbjsQrr2ZIgFnqWGaqw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/8c5808-3165-41dc-90a0-3ef5eb7c8598/1/Agq3iPpr5eCmHyt0ew6UMWtCZc0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/8c5808-3165-41dc-90a0-3ef5eb7c8598/1/87kHgdu-vbjsQrr2ZIgFnqWGaqw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.10.244.0/22
IPv6:
2a03:6940::/32
2a03:6947:300::-2a03:6947:5ff:ffff:ffff:ffff:ffff:ffff
2a03:6947:900::-2a03:6947:aff:ffff:ffff:ffff:ffff:ffff
2a03:6947:c00::/40
2a03:6947:f00::/40
2a03:6947:1100::-2a03:6947:13ff:ffff:ffff:ffff:ffff:ffff
2a03:6947:1700::/40
2a03:6947:1900::/40
2a03:6947:1b00::/40
2a03:6947:1d00::/40
Signature Algorithm: sha256WithRSAEncryption
39:86:27:3c:e8:95:1a:7e:cb:df:76:26:95:d9:c3:14:e1:07:
dd:80:72:b4:34:eb:96:a5:12:8d:e8:9e:26:7f:3a:02:4c:2a:
2a:c5:45:56:02:16:fb:fa:ee:44:b4:57:41:eb:61:d4:9f:91:
46:62:7a:37:ee:ee:94:05:88:c6:07:3c:b5:15:f3:4c:f6:b7:
e8:fa:7b:40:3c:66:24:03:ea:4f:76:13:8c:17:c4:b6:e5:f6:
e6:f5:27:cf:f3:85:cb:bd:42:ce:fd:1d:dd:0f:84:5c:05:3d:
54:d8:29:de:d9:7b:7b:17:59:17:c3:7a:dd:0f:da:28:7f:c6:
f8:f6:2a:a3:05:b3:7f:34:6d:60:7e:1a:e0:64:76:70:09:ef:
2a:fa:61:01:9c:b5:9c:8c:3d:8b:9f:53:70:92:9c:39:2c:62:
66:ef:54:b6:5b:02:4b:59:7a:61:c3:52:84:1d:3d:14:a2:7e:
a7:f2:06:64:a2:f3:a6:a7:a6:c5:e9:20:07:a0:a0:36:53:e2:
33:c1:e0:4a:d9:7f:ea:43:50:15:14:9a:75:8c:7a:f2:87:f5:
72:e1:07:d1:a5:5f:5a:35:83:13:0f:06:b5:63:98:70:ab:cd:
e1:84:33:1b:88:c7:80:7b:15:03:8f:7a:84:05:94:fd:3a:e1:
f6:f3:80:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 07:14:36 2025 by rpki-client