Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/bce141-e9c2-4a5d-8e16-84b5176a2a4c/1/8nt8dsbMeiqtSt6KoDNGgs5pyTM.roa
File: 8nt8dsbMeiqtSt6KoDNGgs5pyTM.roa (raw, json)
Hash identifier: RvFtibhd8tSawl3iSjZ76rX4z9HhG8SM7MwleTD5nY0=
Subject key identifier: F2:7B:7C:76:C6:CC:7A:2A:AD:4A:DE:8A:A0:33:46:82:CE:69:C9:33
Certificate issuer: /CN=76fe3055e87290000e3287f7ab5883802a5aa6da
Certificate serial: 01941F8C0397949354BF170510D51353FE3C
Authority key identifier: 76:FE:30:55:E8:72:90:00:0E:32:87:F7:AB:58:83:80:2A:5A:A6:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dv4wVehykAAOMof3q1iDgCpapto.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/bce141-e9c2-4a5d-8e16-84b5176a2a4c/1/8nt8dsbMeiqtSt6KoDNGgs5pyTM.roa
Signing time: Wed 01 Jan 2025 01:47:37 +0000
ROA not before: Wed 01 Jan 2025 01:47:37 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 206651
IP address blocks: 185.179.132.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:8c:03:97:94:93:54:bf:17:05:10:d5:13:53:fe:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=76fe3055e87290000e3287f7ab5883802a5aa6da
Validity
Not Before: Jan 1 01:47:37 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=f27b7c76c6cc7a2aad4ade8aa0334682ce69c933
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:4b:50:67:7c:40:4c:80:40:17:1b:7b:a0:2f:
82:23:a9:64:55:64:de:3c:fc:c5:93:a4:0c:e8:e9:
c2:ff:b6:e8:be:20:81:e0:0b:8e:b1:c5:74:6c:90:
1a:f5:c2:12:83:62:d8:54:9d:f5:63:85:95:6c:e0:
3b:51:49:de:82:ac:c0:c6:c3:ed:4e:35:90:1b:36:
36:87:4f:99:99:7e:37:69:04:6b:79:85:cd:27:db:
3a:b4:4c:55:52:a0:d1:70:a2:90:d7:02:e7:0e:12:
7c:38:f6:86:6d:e5:ef:eb:e6:62:39:73:6c:48:5c:
86:ef:55:c4:f5:5b:78:f2:6f:97:be:9d:89:7f:49:
eb:13:1e:e1:0e:c9:6e:c2:65:81:75:ee:ab:ef:79:
ff:3a:f2:da:3c:75:29:fb:4f:a7:b1:fc:e8:9c:cc:
22:af:7a:f7:7e:1e:25:3b:82:45:d3:66:62:9d:e3:
d2:37:4d:6e:8e:29:2b:59:16:64:81:bf:c0:ff:da:
5c:87:19:02:bd:3e:64:59:f9:38:ba:80:1d:e5:d4:
a2:84:0d:6e:d5:93:58:13:85:d3:38:29:bb:55:17:
53:4e:8d:e5:5b:2d:ef:d5:b1:9d:70:49:b5:20:af:
a0:dd:01:7a:10:40:ce:68:5e:26:98:c3:96:4e:36:
a4:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:7B:7C:76:C6:CC:7A:2A:AD:4A:DE:8A:A0:33:46:82:CE:69:C9:33
X509v3 Authority Key Identifier:
keyid:76:FE:30:55:E8:72:90:00:0E:32:87:F7:AB:58:83:80:2A:5A:A6:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dv4wVehykAAOMof3q1iDgCpapto.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/bce141-e9c2-4a5d-8e16-84b5176a2a4c/1/8nt8dsbMeiqtSt6KoDNGgs5pyTM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/bce141-e9c2-4a5d-8e16-84b5176a2a4c/1/dv4wVehykAAOMof3q1iDgCpapto.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.179.132.0/22
Signature Algorithm: sha256WithRSAEncryption
23:7e:2f:a3:47:56:8d:2b:06:42:5e:f8:95:50:62:fb:ed:83:
fd:cc:b2:92:dc:55:80:dd:dd:98:07:ad:8e:08:41:11:34:d9:
02:f7:08:df:8d:e2:b7:47:e3:35:00:87:de:46:60:65:02:c1:
2b:fb:8c:3d:13:66:a1:67:2e:af:f0:6c:15:ee:62:6a:41:2c:
59:42:b8:58:fc:ed:52:bb:27:34:74:e8:86:57:89:9c:24:d2:
bf:64:e1:10:3f:4b:5a:8a:e9:bf:a4:ef:ec:fd:60:83:b5:eb:
e1:2c:70:8b:f3:04:10:06:24:ee:d3:05:17:2b:27:82:27:49:
fd:0d:6a:b1:ec:1f:2a:2d:ad:58:92:6f:90:cc:99:2e:1a:d9:
d2:86:f2:87:8a:b7:66:b7:be:e7:5c:98:ef:ef:45:43:2a:57:
1f:22:ac:cb:6f:a1:bb:61:ba:d6:4d:79:61:7b:99:26:31:f2:
70:ec:df:cf:35:d4:97:c4:cd:f3:30:e4:77:5c:52:0e:00:77:
c7:cf:8a:16:bb:f0:7e:fd:aa:c1:36:e5:1d:f5:03:d2:b0:14:
b4:0d:31:d7:35:ad:ca:01:9d:e2:2a:c8:5e:d3:8d:a7:5f:c4:
49:85:88:82:54:77:9b:b3:6c:77:3a:d3:1a:b0:9c:bd:45:67:
f1:4e:97:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 05:04:32 2025 by rpki-client