Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/c800c9-51b5-4589-9260-063fcdd3a057/1/zOfd8A9PUCbbATR0K0bqGvzGHZY.roa
File: zOfd8A9PUCbbATR0K0bqGvzGHZY.roa (raw, json)
Hash identifier: dymL8UZ8zx8H0uIEEZgjGL+LvLsMPlXYP6Z20xsv/LI=
Subject key identifier: CC:E7:DD:F0:0F:4F:50:26:DB:01:34:74:2B:46:EA:1A:FC:C6:1D:96
Certificate issuer: /CN=7c3c39d1899e699bf5177418ee381489edff4380
Certificate serial: 0194228DBAC422BBBDCD37590029D86D910F
Authority key identifier: 7C:3C:39:D1:89:9E:69:9B:F5:17:74:18:EE:38:14:89:ED:FF:43:80
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fDw50YmeaZv1F3QY7jgUie3_Q4A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/c800c9-51b5-4589-9260-063fcdd3a057/1/zOfd8A9PUCbbATR0K0bqGvzGHZY.roa
Signing time: Wed 01 Jan 2025 15:48:21 +0000
ROA not before: Wed 01 Jan 2025 15:48:21 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 62240
IP address blocks: 185.27.178.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:8d:ba:c4:22:bb:bd:cd:37:59:00:29:d8:6d:91:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7c3c39d1899e699bf5177418ee381489edff4380
Validity
Not Before: Jan 1 15:48:21 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=cce7ddf00f4f5026db0134742b46ea1afcc61d96
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:f1:91:a3:ef:dd:34:86:86:44:97:d4:a3:c5:
0a:d8:77:4e:b4:6c:73:39:95:85:9c:53:51:d3:8e:
ef:f4:2d:4d:c2:5d:16:ce:31:c5:86:2b:a1:77:7f:
4b:06:22:a4:e0:db:96:51:e1:bc:6d:32:77:7f:d7:
65:99:8b:e1:2d:ca:4a:20:c9:22:8c:f4:d6:b3:e1:
b2:1e:26:34:56:d7:b3:69:f4:a0:d0:43:1c:b4:f2:
1f:64:9c:8f:e2:aa:5a:54:4e:a5:85:1e:f5:48:b8:
52:54:58:a9:e9:7d:66:e1:49:32:94:7b:20:af:43:
b6:73:ed:5f:57:a0:01:4c:f7:d0:37:a2:65:a3:28:
9d:5c:d1:94:9b:f9:25:3e:6b:64:d7:f1:ce:5c:b6:
f7:64:b6:34:cb:d3:a9:8d:fa:c6:c9:45:98:3d:54:
4f:af:bc:34:15:d4:d6:28:00:74:64:7d:61:1c:08:
af:cf:fb:e9:0d:6f:56:94:f6:7a:98:7f:fc:1c:ba:
bf:5c:c2:05:73:c5:b6:1d:e7:e6:0f:41:9b:46:4a:
4b:20:98:b9:45:72:be:91:27:af:c8:d0:68:1c:a2:
38:52:95:71:e0:5f:b0:29:5d:eb:15:ec:78:a2:91:
bd:ab:7b:74:f8:60:3d:1f:7d:b8:9b:88:99:91:81:
47:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:E7:DD:F0:0F:4F:50:26:DB:01:34:74:2B:46:EA:1A:FC:C6:1D:96
X509v3 Authority Key Identifier:
keyid:7C:3C:39:D1:89:9E:69:9B:F5:17:74:18:EE:38:14:89:ED:FF:43:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fDw50YmeaZv1F3QY7jgUie3_Q4A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/c800c9-51b5-4589-9260-063fcdd3a057/1/zOfd8A9PUCbbATR0K0bqGvzGHZY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/c800c9-51b5-4589-9260-063fcdd3a057/1/fDw50YmeaZv1F3QY7jgUie3_Q4A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.27.178.0/23
Signature Algorithm: sha256WithRSAEncryption
3b:05:60:df:0f:50:cb:21:78:91:2e:4d:7d:22:43:4f:92:13:
53:cc:36:5b:86:2b:52:b4:02:37:d5:ed:bd:cc:4d:ef:e6:2e:
d5:6e:ea:04:8e:18:c4:00:95:b3:67:0e:83:f8:60:e9:6a:60:
2f:a0:75:ad:da:4b:b0:2e:28:5a:b8:e5:e7:da:99:da:d7:13:
d3:f0:88:f7:c7:f1:06:bd:c6:da:bb:c0:68:c7:a9:a1:b0:31:
68:b0:0f:59:88:15:c8:01:f6:c2:c2:09:08:97:a6:ff:df:6f:
e3:19:33:1b:65:b8:c4:16:39:01:15:62:0b:7c:22:68:b1:95:
b2:f0:ba:52:c6:0a:e5:bd:af:66:fa:2c:14:55:8d:d0:10:c1:
80:ff:92:77:9a:15:85:c7:a4:b7:f2:a7:ca:2f:39:96:73:dc:
5d:eb:2b:a3:92:76:49:b6:31:c3:62:c3:67:d9:31:bb:67:e9:
12:d3:20:96:cb:80:5d:f6:1d:5a:3c:3c:be:31:3e:df:20:9f:
57:8d:be:b8:df:54:a2:48:26:3c:bc:8b:f5:91:a6:2e:3a:c9:
f2:9c:8d:c7:64:84:6e:c5:92:8d:e7:12:87:7d:96:c3:a5:1f:
02:72:88:fa:21:ef:9b:81:6a:76:d1:ee:e0:3f:e2:46:43:fe:
4c:37:73:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 19:52:36 2025 by rpki-client