Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/8d55c0-9aa0-4be7-82a8-dab6b83cf7ec/1/eV7DHZCofiB8XK6t9zdEW8QBmNE.roa
File: eV7DHZCofiB8XK6t9zdEW8QBmNE.roa (raw, json)
Hash identifier: ziPPnswaXIfrS3ugoGocK/TB+/DsS0Y8eyLBNQhW8CA=
Subject key identifier: 79:5E:C3:1D:90:A8:7E:20:7C:5C:AE:AD:F7:37:44:5B:C4:01:98:D1
Certificate issuer: /CN=4c7844abef711c232c84f83c807a420af3804728
Certificate serial: 01942686DE018093B12BA8AAA222DB78BBDF
Authority key identifier: 4C:78:44:AB:EF:71:1C:23:2C:84:F8:3C:80:7A:42:0A:F3:80:47:28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/THhEq-9xHCMshPg8gHpCCvOARyg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/8d55c0-9aa0-4be7-82a8-dab6b83cf7ec/1/eV7DHZCofiB8XK6t9zdEW8QBmNE.roa
Signing time: Thu 02 Jan 2025 10:19:20 +0000
ROA not before: Thu 02 Jan 2025 10:19:20 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 203298
IP address blocks: 185.139.160.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:86:de:01:80:93:b1:2b:a8:aa:a2:22:db:78:bb:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4c7844abef711c232c84f83c807a420af3804728
Validity
Not Before: Jan 2 10:19:20 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=795ec31d90a87e207c5caeadf737445bc40198d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:90:a0:67:e6:66:6e:aa:68:31:14:84:4c:0c:
68:10:13:67:dc:31:a1:14:b7:44:9b:4e:e2:a1:9b:
40:8b:42:82:e1:8b:7a:cd:87:7e:29:21:b7:40:a5:
ae:1c:0c:60:9a:67:06:8b:50:90:13:17:11:ea:eb:
82:56:a5:a6:18:24:df:dd:ae:df:f6:17:b7:81:78:
f3:ce:ea:06:38:d4:10:f4:6f:89:b4:a8:f5:51:64:
93:5b:10:97:94:72:54:23:e9:89:13:74:f4:f3:04:
f6:9e:f2:69:da:93:59:8f:95:9b:b2:41:51:42:fd:
e3:ba:f0:02:87:d2:af:5c:7b:a3:05:5c:9f:45:e0:
6e:8a:56:f0:69:7a:db:81:f9:98:cb:7d:7c:fd:24:
63:e3:44:32:76:f7:e9:84:14:c1:ca:b9:14:58:8b:
d7:0f:55:2f:7a:b7:c7:a2:3e:73:b8:32:2f:dc:80:
9c:6e:5b:e2:c7:4d:7e:14:32:c7:4b:91:13:54:0b:
c1:96:5a:ba:85:98:2c:c2:00:4e:7a:13:c9:13:5c:
7c:4b:70:1b:72:81:92:24:32:0d:b6:67:d5:5c:d5:
b5:58:d3:74:eb:6f:c8:71:25:51:56:b0:1f:10:c6:
57:f5:28:d5:47:ea:59:92:85:71:a9:55:17:49:e9:
cb:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:5E:C3:1D:90:A8:7E:20:7C:5C:AE:AD:F7:37:44:5B:C4:01:98:D1
X509v3 Authority Key Identifier:
keyid:4C:78:44:AB:EF:71:1C:23:2C:84:F8:3C:80:7A:42:0A:F3:80:47:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/THhEq-9xHCMshPg8gHpCCvOARyg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/8d55c0-9aa0-4be7-82a8-dab6b83cf7ec/1/eV7DHZCofiB8XK6t9zdEW8QBmNE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/8d55c0-9aa0-4be7-82a8-dab6b83cf7ec/1/THhEq-9xHCMshPg8gHpCCvOARyg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.139.160.0/22
Signature Algorithm: sha256WithRSAEncryption
ca:b6:24:7c:31:7e:be:aa:52:22:7d:dc:e4:0f:13:5f:e4:54:
fa:c6:42:fd:ef:6d:13:f6:a7:89:67:17:53:8c:e4:a4:04:59:
77:31:bc:91:06:37:e1:cb:c9:ad:41:be:4c:96:8a:12:98:59:
58:d3:1d:e6:c9:79:24:86:31:25:4d:b0:e8:c3:2f:82:30:d9:
07:3d:d8:f9:0e:eb:dc:33:b7:0b:4f:7a:54:50:25:8b:95:ef:
10:d4:e9:4a:e3:ad:79:1b:bb:63:5b:d0:15:37:7c:14:34:d2:
47:fd:8d:76:26:03:96:93:b1:77:1e:c2:a5:a8:e8:6a:92:c6:
90:e3:aa:f3:b0:8a:56:2b:58:ce:50:97:88:29:7e:39:f2:16:
f6:24:84:3f:80:80:b6:ce:b5:77:61:82:59:b9:40:a9:39:9c:
c5:ec:7c:9e:0b:6e:e1:e7:ab:a4:2f:ec:9f:d3:0d:25:05:bc:
48:d2:84:6c:54:8e:b7:0c:03:c2:0d:f1:3b:2d:70:8a:33:08:
4f:51:06:db:ef:80:00:13:91:eb:5f:af:4f:ac:7d:67:70:4c:
8e:06:ad:08:6a:1b:d6:15:f9:96:7e:48:60:48:38:c1:64:09:
e1:9a:a3:36:cb:22:14:41:fb:fd:d9:35:04:8e:99:00:78:b8:
5a:a7:74:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 02:43:40 2025 by rpki-client