Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/b35be1-6673-4811-a707-ad027e95c5c7/1/F3ciK8Cs1X2iYdLyOuYTwjS5F9g.roa
File: F3ciK8Cs1X2iYdLyOuYTwjS5F9g.roa (raw, json)
Hash identifier: A16wEC2Kp22nG7pwFt2VgBVywuDsF1+tAv3rCz+vfPk=
Subject key identifier: 17:77:22:2B:C0:AC:D5:7D:A2:61:D2:F2:3A:E6:13:C2:34:B9:17:D8
Certificate issuer: /CN=f4ef5dba100a92b2444f3e512d01a592c01951c2
Certificate serial: 0194236A41DCA5FEBE87A7CD75C3A9EE589B
Authority key identifier: F4:EF:5D:BA:10:0A:92:B2:44:4F:3E:51:2D:01:A5:92:C0:19:51:C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9O9duhAKkrJETz5RLQGlksAZUcI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/b35be1-6673-4811-a707-ad027e95c5c7/1/F3ciK8Cs1X2iYdLyOuYTwjS5F9g.roa
Signing time: Wed 01 Jan 2025 19:49:13 +0000
ROA not before: Wed 01 Jan 2025 19:49:13 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 41327
IP address blocks: 185.197.10.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:6a:41:dc:a5:fe:be:87:a7:cd:75:c3:a9:ee:58:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f4ef5dba100a92b2444f3e512d01a592c01951c2
Validity
Not Before: Jan 1 19:49:13 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=1777222bc0acd57da261d2f23ae613c234b917d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:d9:bd:a9:96:67:73:c7:c6:75:93:85:2f:c4:
3d:23:f2:fd:f0:a4:03:3d:9f:52:f2:b2:57:bb:8e:
18:0b:57:3a:45:4c:e9:29:dc:03:e3:bc:35:4c:4f:
81:ad:e6:1b:a3:68:dc:33:62:a1:eb:45:db:73:94:
91:56:23:63:99:2a:5c:19:be:d6:2c:f3:d9:aa:7a:
84:96:a6:83:7d:1f:c1:32:44:b4:a8:5e:69:bd:bf:
32:fc:82:38:f0:74:29:ed:3c:3c:1e:e5:d9:b3:5c:
81:0b:ad:fc:de:a8:2a:f4:f3:06:c0:d0:56:f9:f1:
82:d3:e3:ec:c6:8c:b3:74:7a:45:da:46:25:be:08:
c8:c1:d2:d3:67:ae:4d:29:1b:cf:01:dd:2e:9c:51:
21:c7:b3:0e:e7:c4:cb:80:58:af:48:46:94:75:6c:
e8:75:7b:ba:13:3c:cd:c3:5a:14:99:23:b4:f8:fc:
8f:67:16:34:93:ab:76:c4:f4:9d:04:d6:c4:5a:3c:
f0:13:5d:43:12:93:e6:cb:0b:09:84:2e:e8:eb:ac:
1a:70:cc:d1:af:34:be:c8:b8:4a:28:bd:b6:94:e0:
a6:e3:af:22:41:67:a8:32:94:38:fd:b1:30:12:22:
96:43:b4:d2:2a:de:8f:09:92:e9:e9:71:aa:68:f5:
a3:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:77:22:2B:C0:AC:D5:7D:A2:61:D2:F2:3A:E6:13:C2:34:B9:17:D8
X509v3 Authority Key Identifier:
keyid:F4:EF:5D:BA:10:0A:92:B2:44:4F:3E:51:2D:01:A5:92:C0:19:51:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9O9duhAKkrJETz5RLQGlksAZUcI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/b35be1-6673-4811-a707-ad027e95c5c7/1/F3ciK8Cs1X2iYdLyOuYTwjS5F9g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/b35be1-6673-4811-a707-ad027e95c5c7/1/9O9duhAKkrJETz5RLQGlksAZUcI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.197.10.0/24
Signature Algorithm: sha256WithRSAEncryption
37:40:9d:59:f0:7b:42:a1:5e:92:2e:b0:9f:1e:13:99:98:ce:
0e:6b:4e:5e:98:1a:f4:cb:9e:f5:b4:95:99:bc:ca:7d:6d:4e:
ce:72:3b:7b:ec:e9:d8:23:1b:8f:3a:53:5d:c5:f3:6e:49:06:
b7:a7:33:0d:82:f7:3d:69:97:12:76:78:16:dc:de:af:30:5f:
25:31:91:68:0c:ad:76:8e:a8:77:cf:ce:b3:90:ac:91:18:89:
d8:85:03:7b:c7:68:8a:5b:5f:7d:11:a4:e5:b7:b9:46:86:80:
f7:42:47:9c:7c:c8:e5:19:a1:e3:04:85:ff:00:6d:91:5d:27:
79:fb:11:c7:1a:ea:f4:4b:c7:21:7f:da:68:0f:b5:c3:03:d8:
84:e0:f1:01:cb:42:f8:4e:e1:1b:f5:9e:22:72:b1:05:6e:23:
af:81:6f:a3:86:a6:59:c9:c0:e4:3a:d3:48:96:7e:56:a5:f2:
eb:f5:0d:34:bc:a8:a7:47:d1:b5:2c:08:8a:fc:f9:21:fb:48:
ce:53:d9:b7:ed:58:18:08:2c:03:f4:95:e0:ec:4e:d3:5d:ba:
bc:64:42:58:e0:03:70:66:b6:f1:67:cc:c1:9b:92:26:f1:28:
90:2d:54:21:ce:dd:82:85:03:e2:4d:ce:b6:a5:3e:b1:2e:79:
c1:94:76:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 17:55:33 2025 by rpki-client