Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/82233d-ec07-42fb-8799-ed30b9bb12d5/1/UC0r6j4leNm-ZTVZo5frgSIU_wc.roa
File: UC0r6j4leNm-ZTVZo5frgSIU_wc.roa (raw, json)
Hash identifier: R6RlBJw+sKdJQvHxPD1EZrqXbohyou0hWxxWQCYm18A=
Subject key identifier: 50:2D:2B:EA:3E:25:78:D9:BE:65:35:59:A3:97:EB:81:22:14:FF:07
Certificate issuer: /CN=60fcd55b9130858d8ea583c0987dad00f614db39
Certificate serial: 019403B45AFF0B15F6232BCBAB1C3B4C9AF8
Authority key identifier: 60:FC:D5:5B:91:30:85:8D:8E:A5:83:C0:98:7D:AD:00:F6:14:DB:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YPzVW5EwhY2OpYPAmH2tAPYU2zk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/82233d-ec07-42fb-8799-ed30b9bb12d5/1/UC0r6j4leNm-ZTVZo5frgSIU_wc.roa
Signing time: Thu 26 Dec 2024 16:02:18 +0000
ROA not before: Thu 26 Dec 2024 16:02:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 22427
IP address blocks: 185.128.226.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:03:b4:5a:ff:0b:15:f6:23:2b:cb:ab:1c:3b:4c:9a:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60fcd55b9130858d8ea583c0987dad00f614db39
Validity
Not Before: Dec 26 16:02:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=502d2bea3e2578d9be653559a397eb812214ff07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:78:7a:cb:89:35:e9:81:8e:33:63:c7:26:f8:
dc:2d:b0:b3:f6:e1:17:cc:55:d6:61:14:d5:dd:f8:
ef:2f:ab:1d:3b:e8:4e:40:f3:ab:d1:d8:0d:8f:1e:
79:3e:5a:ba:cb:52:93:56:21:8c:19:84:2e:25:d9:
14:34:02:a6:4a:d8:48:af:4d:c7:00:98:13:12:e9:
29:7c:d9:b4:dc:f6:11:39:ef:01:b7:a6:4d:ea:b8:
2a:97:81:45:91:7e:f2:53:86:f9:78:c9:a5:e3:6b:
2a:b7:4a:ec:35:94:24:cc:82:e4:fe:1a:6c:4d:cf:
ec:76:57:f7:2d:df:02:70:c1:bd:79:56:ce:2f:ff:
2e:a2:94:b0:78:16:2b:44:32:29:d6:3c:25:59:82:
82:c9:91:91:6f:89:4a:ca:f3:16:15:8f:59:b2:aa:
e8:91:df:d7:ab:50:8b:bf:8a:9b:ba:a0:5d:eb:b2:
09:15:f1:43:61:13:70:e8:ab:05:29:3f:2d:3e:72:
68:fa:3c:3e:3d:b7:89:4d:ab:68:b2:36:bc:c6:1e:
e7:e1:22:62:2a:68:60:8b:3f:26:17:67:d5:73:d2:
c1:2b:f7:79:06:1a:d2:a4:74:81:c2:52:38:85:a2:
f7:42:f2:62:8c:d6:9d:e5:be:c4:b1:ee:cc:90:5c:
48:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:2D:2B:EA:3E:25:78:D9:BE:65:35:59:A3:97:EB:81:22:14:FF:07
X509v3 Authority Key Identifier:
keyid:60:FC:D5:5B:91:30:85:8D:8E:A5:83:C0:98:7D:AD:00:F6:14:DB:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YPzVW5EwhY2OpYPAmH2tAPYU2zk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/82233d-ec07-42fb-8799-ed30b9bb12d5/1/UC0r6j4leNm-ZTVZo5frgSIU_wc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/82233d-ec07-42fb-8799-ed30b9bb12d5/1/YPzVW5EwhY2OpYPAmH2tAPYU2zk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.128.226.0/24
Signature Algorithm: sha256WithRSAEncryption
bc:5d:c4:f2:1e:fd:6c:63:e8:ee:6d:eb:b7:18:41:66:09:03:
b6:c7:e5:ee:41:94:03:b4:81:cf:8f:25:c1:3b:38:27:cc:d8:
34:87:72:af:bb:45:e0:88:8b:0c:b7:ef:2d:2b:f3:12:f7:d1:
d3:59:84:72:4b:99:82:54:15:39:b6:0a:b3:a4:26:af:f9:83:
10:7a:a9:a6:84:e1:be:3e:4b:83:ce:72:7a:2e:fb:47:03:c8:
fe:66:2f:a6:10:b3:a7:26:b2:dc:be:8f:0f:c8:ea:28:1b:f6:
24:4d:a3:92:18:d2:18:55:d5:5b:f8:90:60:bc:82:5f:c5:bf:
41:cd:6f:02:e5:42:6d:6a:72:47:57:e8:a3:39:de:d9:01:33:
96:66:e7:b8:2f:0a:4d:dc:2f:13:f2:c4:fd:2f:2f:39:5c:c7:
93:a4:cf:56:ed:02:e5:40:4b:af:ae:72:79:fd:a0:23:ba:6a:
bb:cc:4b:20:3d:1f:f3:cc:fa:b1:1d:2f:ca:19:88:58:a7:0c:
8e:65:41:9d:90:29:96:e7:7f:6d:cd:06:60:8b:70:f5:c3:b9:
33:b6:a4:bf:30:cb:da:f7:14:8c:bd:97:4c:01:fc:e3:87:5b:
7b:dd:f6:96:1b:8a:47:be:d8:d6:96:9d:9d:ba:2c:da:0c:66:
bb:38:91:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 21:00:06 2025 by rpki-client