Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/229650-8a01-4370-991e-b504c9ae9bbc/1/dWFWxAJC3wGlL2EpvGP_MKq469s.roa
File: dWFWxAJC3wGlL2EpvGP_MKq469s.roa (raw, json)
Hash identifier: MSVcXPatvWpeCXQNpTDNs6InxOOtn9VjdMvIEuKDIVc=
Subject key identifier: 75:61:56:C4:02:42:DF:01:A5:2F:61:29:BC:63:FF:30:AA:B8:EB:DB
Certificate issuer: /CN=123c3de61011de07101e14dc0727395171cb03ab
Certificate serial: 019428277FBB54A7D7680C5D1B3F4B0DC904
Authority key identifier: 12:3C:3D:E6:10:11:DE:07:10:1E:14:DC:07:27:39:51:71:CB:03:AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ejw95hAR3gcQHhTcByc5UXHLA6s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/229650-8a01-4370-991e-b504c9ae9bbc/1/dWFWxAJC3wGlL2EpvGP_MKq469s.roa
Signing time: Thu 02 Jan 2025 17:54:24 +0000
ROA not before: Thu 02 Jan 2025 17:54:24 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 203811
IP address blocks: 185.122.252.0/24 maxlen: 24
185.122.255.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:28:27:7f:bb:54:a7:d7:68:0c:5d:1b:3f:4b:0d:c9:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=123c3de61011de07101e14dc0727395171cb03ab
Validity
Not Before: Jan 2 17:54:24 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=756156c40242df01a52f6129bc63ff30aab8ebdb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:e7:ff:fc:4d:84:89:bf:40:1d:b9:2d:53:97:
10:cf:8d:23:69:c2:81:14:5e:46:4c:1c:c2:88:54:
81:f0:2e:bf:77:99:85:17:ea:f7:88:a7:b2:c3:6c:
16:ae:8c:59:c8:40:f1:4d:49:5b:dc:75:a1:86:b1:
24:9e:b6:ea:a3:af:4c:05:5a:ce:db:08:b8:86:ba:
82:c3:3b:b7:dc:33:fa:cc:10:49:29:0d:32:2f:86:
b0:64:cc:8c:43:60:cf:f6:ca:4d:bd:54:3e:cd:80:
05:a6:4d:5b:4a:bd:18:19:6a:14:46:56:df:5e:1f:
16:fd:ed:a1:24:e6:df:32:13:6e:c9:f7:1e:a7:55:
54:25:43:6c:28:1b:7e:77:1c:c9:da:cf:e0:28:01:
a8:ca:b8:3f:d8:c8:d2:fd:ca:3b:7c:0e:dc:a9:c9:
68:9a:4a:b0:a4:ea:b1:ed:00:1a:7c:0d:fa:a2:3b:
cb:d0:9c:b9:0c:ea:27:97:98:78:95:6d:b4:b2:7f:
77:f9:4d:5f:a1:87:1e:05:f0:ed:50:61:20:9a:2d:
e0:32:9b:8e:6f:71:54:cc:9f:5e:a7:fc:7b:9a:2c:
11:97:59:96:ed:4e:52:5b:4b:5b:7e:3b:2b:ba:d4:
8c:e4:5f:6e:24:d9:81:0f:dc:a0:ac:71:2d:a7:9a:
4b:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:61:56:C4:02:42:DF:01:A5:2F:61:29:BC:63:FF:30:AA:B8:EB:DB
X509v3 Authority Key Identifier:
keyid:12:3C:3D:E6:10:11:DE:07:10:1E:14:DC:07:27:39:51:71:CB:03:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ejw95hAR3gcQHhTcByc5UXHLA6s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/229650-8a01-4370-991e-b504c9ae9bbc/1/dWFWxAJC3wGlL2EpvGP_MKq469s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/229650-8a01-4370-991e-b504c9ae9bbc/1/Ejw95hAR3gcQHhTcByc5UXHLA6s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.122.252.0/24
185.122.255.0/24
Signature Algorithm: sha256WithRSAEncryption
ba:4b:2d:cb:ad:c0:3f:32:fb:50:ee:e2:a1:d0:ac:30:58:e0:
2e:65:66:56:a3:2d:aa:72:71:6c:4a:c5:56:66:14:f9:be:2d:
7d:ab:fc:67:cd:12:cc:b4:71:a7:38:e1:c7:99:44:71:10:f9:
fa:a9:94:49:60:41:84:ad:99:9f:d9:0e:8e:99:b5:47:af:79:
5d:6b:d0:d6:19:da:3b:58:89:50:b2:23:e8:4f:3d:ac:32:a5:
98:3d:9e:16:13:db:1e:3b:eb:a3:4d:af:d2:5d:c4:37:dc:3d:
5a:b3:2e:5c:ff:44:1a:48:c6:c8:d0:6e:7a:7a:85:ed:97:a1:
a1:c3:ba:d4:6e:c8:f9:c3:72:42:80:d1:1c:b9:27:73:1d:69:
e1:fb:14:c5:e3:88:d7:fa:bf:29:1f:d4:3f:5f:95:9e:a0:c6:
c4:6a:05:84:76:79:c7:24:98:f4:e4:0a:85:9e:7e:de:30:8d:
46:29:47:85:d4:9a:1b:e0:cb:5a:72:d5:67:86:17:55:ae:e8:
99:77:46:69:64:5c:68:cd:29:93:e7:e4:9c:eb:38:58:65:e5:
20:b2:73:8b:d2:e6:84:28:bd:43:1a:94:53:83:11:23:57:7d:
ef:dd:9f:f4:ec:b3:e0:9c:76:73:95:80:d8:f1:b4:54:5a:56:
3b:35:f9:58
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAZQoJ3+7VKfXaAxdGz9LDckEMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDEyM2MzZGU2MTAxMWRlMDcxMDFlMTRkYzA3MjczOTUxNzFj
YjAzYWIwHhcNMjUwMTAyMTc1NDI0WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3NTYxNTZjNDAyNDJkZjAxYTUyZjYxMjliYzYzZmYzMGFhYjhlYmRiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvOf//E2Eib9AHbktU5cQz40jacKB
FF5GTBzCiFSB8C6/d5mFF+r3iKeyw2wWroxZyEDxTUlb3HWhhrEknrbqo69MBVrO
2wi4hrqCwzu33DP6zBBJKQ0yL4awZMyMQ2DP9spNvVQ+zYAFpk1bSr0YGWoURlbf
Xh8W/e2hJObfMhNuyfcep1VUJUNsKBt+dxzJ2s/gKAGoyrg/2MjS/co7fA7cqclo
mkqwpOqx7QAafA36ojvL0Jy5DOonl5h4lW20sn93+U1foYceBfDtUGEgmi3gMpuO
b3FUzJ9ep/x7miwRl1mW7U5SW0tbfjsrutSM5F9uJNmBD9ygrHEtp5pLswIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFHVhVsQCQt8BpS9hKbxj/zCquOvbMB8GA1UdIwQY
MBaAFBI8PeYQEd4HEB4U3AcnOVFxywOrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRWp3OTVoQVIzZ2NRSGhUY0J5YzVVWEhMQTZzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYi8yMjk2NTAtOGEwMS00MzcwLTk5MWUt
YjUwNGM5YWU5YmJjLzEvZFdGV3hBSkMzd0dsTDJFcHZHUF9NS3E0NjlzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYi8yMjk2NTAtOGEwMS00MzcwLTk5MWUtYjUwNGM5YWU5YmJj
LzEvRWp3OTVoQVIzZ2NRSGhUY0J5YzVVWEhMQTZzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAuXr8AwQA
uXr/MA0GCSqGSIb3DQEBCwUAA4IBAQC6Sy3LrcA/MvtQ7uKh0KwwWOAuZWZWoy2q
cnFsSsVWZhT5vi19q/xnzRLMtHGnOOHHmURxEPn6qZRJYEGErZmf2Q6OmbVHr3ld
a9DWGdo7WIlQsiPoTz2sMqWYPZ4WE9seO+ujTa/SXcQ33D1asy5c/0QaSMbI0G56
eoXtl6Ghw7rUbsj5w3JCgNEcuSdzHWnh+xTF44jX+r8pH9Q/X5WeoMbEagWEdnnH
JJj05AqFnn7eMI1GKUeF1Job4MtactVnhhdVruiZd0ZpZFxozSmT5+Sc6zhYZeUg
snOL0uaEKL1DGpRTgxEjV33v3Z/07LPgnHZzlYDY8bRUWlY7NflY
-----END CERTIFICATE-----
Generated at Thu Feb 20 02:39:00 2025 by rpki-client