Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/03cce3-e620-4483-b08b-6d8fd330e9aa/1/XBvyNtAX_qyPJCtO1fGS20UqGjs.roa
File: XBvyNtAX_qyPJCtO1fGS20UqGjs.roa (raw, json)
Hash identifier: KHN56+uDjic5K6QfFI010t46UK2xFZQ5/zoeeWjaQBc=
Subject key identifier: 5C:1B:F2:36:D0:17:FE:AC:8F:24:2B:4E:D5:F1:92:DB:45:2A:1A:3B
Certificate issuer: /CN=f8f73c5c0f3a106a8ba7dff3e35c816d1078dc71
Certificate serial: 019425212E747F0813EF30AE0DFAAF63AFCE
Authority key identifier: F8:F7:3C:5C:0F:3A:10:6A:8B:A7:DF:F3:E3:5C:81:6D:10:78:DC:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-Pc8XA86EGqLp9_z41yBbRB43HE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/03cce3-e620-4483-b08b-6d8fd330e9aa/1/XBvyNtAX_qyPJCtO1fGS20UqGjs.roa
Signing time: Thu 02 Jan 2025 03:48:38 +0000
ROA not before: Thu 02 Jan 2025 03:48:38 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 396982
IP address blocks: 185.51.228.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:21:2e:74:7f:08:13:ef:30:ae:0d:fa:af:63:af:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8f73c5c0f3a106a8ba7dff3e35c816d1078dc71
Validity
Not Before: Jan 2 03:48:38 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=5c1bf236d017feac8f242b4ed5f192db452a1a3b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:93:4d:be:7d:e3:8d:f2:54:0a:ba:16:55:6e:
69:1d:6e:82:b2:13:c2:a6:be:2b:1f:e7:ff:ee:fc:
c9:28:e0:26:98:86:5b:62:ae:41:8b:71:60:59:11:
45:2f:8f:d4:66:ac:3d:cd:47:cc:e6:61:0a:fa:78:
bb:90:ad:b9:e8:e5:49:54:c7:dc:2f:92:a8:e0:bd:
53:d5:ec:6a:8b:23:08:e1:53:92:14:3e:22:de:3e:
82:d1:79:89:ed:fa:53:16:14:39:aa:f3:8e:bc:af:
25:0b:a2:c8:d4:48:9c:4f:8c:bc:f3:38:cd:22:88:
78:f9:36:12:bc:55:00:4c:3c:6a:c3:a0:5e:ad:6a:
fc:5e:f9:08:4d:08:2e:8a:c9:8b:56:ec:66:9e:44:
e3:ab:b8:57:19:34:6b:21:18:f1:3f:9e:a9:78:a1:
c4:4e:4c:e8:33:64:c2:32:bf:bb:0c:c6:f8:4b:35:
89:0d:f1:b1:94:fd:b2:00:50:e0:d2:bc:04:b5:86:
04:55:08:11:72:e4:37:ac:c4:73:41:b9:a4:7e:13:
0d:75:04:e9:bd:20:e3:d2:40:90:1c:e4:cb:cd:f8:
84:76:0d:f2:ae:31:8b:8a:37:dd:30:34:92:3d:d0:
a0:79:06:43:46:f5:ff:76:e6:4d:e5:b5:4b:72:7c:
df:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:1B:F2:36:D0:17:FE:AC:8F:24:2B:4E:D5:F1:92:DB:45:2A:1A:3B
X509v3 Authority Key Identifier:
keyid:F8:F7:3C:5C:0F:3A:10:6A:8B:A7:DF:F3:E3:5C:81:6D:10:78:DC:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-Pc8XA86EGqLp9_z41yBbRB43HE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/03cce3-e620-4483-b08b-6d8fd330e9aa/1/XBvyNtAX_qyPJCtO1fGS20UqGjs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/03cce3-e620-4483-b08b-6d8fd330e9aa/1/1-Pc8XA86EGqLp9_z41yBbRB43HE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.51.228.0/24
Signature Algorithm: sha256WithRSAEncryption
85:6e:31:a8:36:a8:82:08:e5:f7:44:b6:59:11:80:49:d8:ce:
6c:c4:f9:4c:f9:d2:71:4e:46:9e:e8:6a:9d:e8:b9:38:5b:35:
00:3d:7f:03:a9:31:03:51:9a:46:2c:b5:c6:a3:36:4e:fb:e8:
43:84:50:b6:e9:1d:a9:89:8f:41:53:14:69:47:41:24:50:e9:
5f:55:99:e9:f1:44:ba:8a:da:04:1e:a8:bc:68:a5:90:bd:59:
65:74:63:ee:5a:7f:b9:52:df:cc:b3:f0:28:32:fc:c0:3e:01:
ff:7c:fa:ff:e8:34:3f:04:ad:74:87:46:93:5e:44:f2:68:ad:
b3:7e:2e:36:af:88:f3:32:81:16:a5:c9:61:00:b0:e8:26:03:
14:33:3e:47:5c:40:71:c1:77:59:2f:6e:e3:60:40:57:f4:82:
96:33:c9:d8:a7:29:6a:13:a4:5a:a4:0b:28:68:c7:d0:fe:5c:
cf:c0:ef:5f:2a:02:67:4d:1a:6f:c7:0d:09:bc:10:aa:c8:b3:
fa:20:54:38:79:0d:88:9e:70:c6:1f:a2:71:a5:56:73:95:ae:
ad:78:30:89:6f:56:b4:f3:a9:a3:73:81:4f:ab:ce:81:a2:9e:
31:8e:c0:f8:fe:7f:8d:f7:4d:0f:4d:fd:bf:82:9b:c6:ae:e1:
32:40:bf:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 20:48:37 2025 by rpki-client