Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/5ecfc2-da70-4333-8f96-5b87825c07ee/1/3vuXYmLO804YeH7WzpNylqDzYzk.roa
File: 3vuXYmLO804YeH7WzpNylqDzYzk.roa (raw, json)
Hash identifier: pZmQFxF+w/pjKco0VNoAljDoLP/ZSq7cNuWVMp1z4Eo=
Subject key identifier: DE:FB:97:62:62:CE:F3:4E:18:78:7E:D6:CE:93:72:96:A0:F3:63:39
Certificate issuer: /CN=4456c14cd8724f9a909627b94e006cf69d12307b
Certificate serial: 0194228DC81E65EADADC99A6935A583AB171
Authority key identifier: 44:56:C1:4C:D8:72:4F:9A:90:96:27:B9:4E:00:6C:F6:9D:12:30:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RFbBTNhyT5qQlie5TgBs9p0SMHs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/5ecfc2-da70-4333-8f96-5b87825c07ee/1/3vuXYmLO804YeH7WzpNylqDzYzk.roa
Signing time: Wed 01 Jan 2025 15:48:24 +0000
ROA not before: Wed 01 Jan 2025 15:48:24 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 58061
IP address blocks: 185.36.126.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:8d:c8:1e:65:ea:da:dc:99:a6:93:5a:58:3a:b1:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4456c14cd8724f9a909627b94e006cf69d12307b
Validity
Not Before: Jan 1 15:48:24 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=defb976262cef34e18787ed6ce937296a0f36339
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:cf:50:52:96:20:08:aa:18:28:d4:d6:71:48:
5d:0c:e3:aa:91:d5:c7:cc:ab:0a:99:9a:24:e3:fc:
3f:3f:fa:f8:90:98:18:7a:d6:d7:5d:2e:6a:be:3a:
a3:be:b6:c1:35:8c:6b:2d:97:f8:24:c1:1f:c4:8b:
54:84:b2:a0:e1:0f:e6:73:c8:85:03:83:19:b9:f1:
2c:b1:8a:45:fe:e4:4b:4b:66:20:c1:df:c2:61:e0:
14:c4:bd:c3:67:4b:32:b0:3a:88:8d:af:ab:05:3f:
f7:c7:48:7c:97:d7:3a:c8:84:de:18:aa:cc:72:65:
58:71:41:ab:38:c0:d8:08:d0:f8:87:37:4f:89:5f:
5a:31:b5:aa:b9:67:0b:f8:f4:81:76:53:aa:f2:ec:
be:74:4c:39:98:ae:da:63:cc:8d:66:01:aa:14:e8:
9b:af:37:30:07:62:d7:6d:bc:60:4f:c2:cc:95:c8:
13:04:58:4d:02:b3:22:bf:fa:24:8a:5a:42:5c:fa:
7a:35:46:4c:02:20:2f:fc:a2:06:db:d8:94:ee:59:
cd:1e:0d:6c:08:97:33:6d:48:92:ed:5e:7f:94:f5:
94:71:8b:ac:14:12:99:7f:85:f8:2d:78:57:ab:d1:
84:ea:5a:41:f2:29:02:44:a9:c6:6d:ce:9e:bf:08:
c3:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:FB:97:62:62:CE:F3:4E:18:78:7E:D6:CE:93:72:96:A0:F3:63:39
X509v3 Authority Key Identifier:
keyid:44:56:C1:4C:D8:72:4F:9A:90:96:27:B9:4E:00:6C:F6:9D:12:30:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RFbBTNhyT5qQlie5TgBs9p0SMHs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/5ecfc2-da70-4333-8f96-5b87825c07ee/1/3vuXYmLO804YeH7WzpNylqDzYzk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/5ecfc2-da70-4333-8f96-5b87825c07ee/1/RFbBTNhyT5qQlie5TgBs9p0SMHs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.36.126.0/24
Signature Algorithm: sha256WithRSAEncryption
84:dc:8f:6e:5e:6d:61:e3:9c:b1:3f:72:6d:43:85:c1:a7:a5:
1a:74:c0:e6:87:30:a3:d1:d2:ea:14:43:c6:eb:55:91:e3:1b:
e1:a3:ef:ec:8d:77:73:9b:04:f7:5f:5c:f6:6b:d4:11:47:07:
17:cc:63:e4:35:41:ec:4f:d7:a7:ae:4d:b8:0f:54:40:03:1d:
e5:6a:6d:9c:6e:93:0d:9d:8b:43:a5:20:da:ed:a5:19:61:19:
77:df:3c:f2:72:7e:58:6b:2c:55:3c:2f:65:9c:0f:66:ed:76:
71:c2:e4:ee:57:52:ab:c4:bd:81:ab:1d:30:19:1b:66:07:3a:
77:9d:8b:f0:17:58:a9:85:f2:a9:91:bb:99:1b:b4:48:0e:07:
77:45:64:ab:68:07:13:f5:43:f2:e1:6f:db:18:07:7a:aa:27:
b2:7f:7d:1d:7d:fd:3c:7a:f7:be:ea:e3:5a:52:79:91:94:38:
aa:b5:4b:0c:e7:12:5c:bc:03:32:c2:9b:42:8d:42:9b:92:18:
f7:35:67:e6:f6:0b:f9:8d:23:55:f5:c2:08:9d:a5:2d:56:85:
b9:9c:6a:6c:25:ff:3a:fe:b1:0d:90:37:fe:15:5c:b0:00:fa:
73:38:58:e2:d0:6f:37:fd:fe:c5:ff:69:f8:5c:94:27:94:04:
21:35:f5:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 13:09:45 2025 by rpki-client