Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/NmWTLDpy2yZqa32LE2bz27-5gz8.roa
File: NmWTLDpy2yZqa32LE2bz27-5gz8.roa (raw, json)
Hash identifier: qmzFDt328zkb8dn9LXMEg8+Thy3R0TfIILvJm7WduiE=
Subject key identifier: 36:65:93:2C:3A:72:DB:26:6A:6B:7D:8B:13:66:F3:DB:BF:B9:83:3F
Certificate issuer: /CN=17d03f298180cc109f19d4b1992c7d71c56c8dcc
Certificate serial: 019424B39C93B23B563D5A86339D782E109F
Authority key identifier: 17:D0:3F:29:81:80:CC:10:9F:19:D4:B1:99:2C:7D:71:C5:6C:8D:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/NmWTLDpy2yZqa32LE2bz27-5gz8.roa
Signing time: Thu 02 Jan 2025 01:48:58 +0000
ROA not before: Thu 02 Jan 2025 01:48:58 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 60064
IP address blocks: 185.243.4.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:b3:9c:93:b2:3b:56:3d:5a:86:33:9d:78:2e:10:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17d03f298180cc109f19d4b1992c7d71c56c8dcc
Validity
Not Before: Jan 2 01:48:58 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=3665932c3a72db266a6b7d8b1366f3dbbfb9833f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:99:ef:a3:b6:b8:1e:79:ca:aa:3a:0b:f5:67:
c9:f7:30:b7:20:ce:71:da:82:5c:09:41:3b:6b:52:
23:18:f8:a9:94:67:67:c6:d8:34:fb:64:d1:16:b9:
02:da:5b:12:e2:d6:4e:2b:43:c1:7b:59:3d:b0:13:
19:fe:f0:08:02:48:86:e6:58:9e:4c:f2:d3:a0:12:
a8:6c:3d:f7:4a:bd:7f:9b:1d:13:ac:3d:ce:8e:6d:
41:eb:b9:2e:54:33:29:ad:1e:66:b6:f3:f1:d1:b6:
72:ee:95:62:fa:a9:58:83:bd:13:05:15:64:6f:e7:
af:e6:ef:95:c4:2b:ba:b7:13:02:71:2d:8e:84:04:
1c:07:26:eb:56:60:22:72:6c:8e:1f:23:e8:53:39:
e0:dd:61:ca:5c:e1:d4:6d:27:a7:74:96:69:19:c3:
ea:38:c1:50:ce:9a:c9:66:70:ad:d7:02:65:93:ec:
18:46:4d:c7:59:48:79:19:1a:b6:0b:b4:fe:71:69:
8a:01:e5:e4:9f:24:da:98:f0:05:9d:e5:43:71:66:
50:a6:45:42:b3:32:73:9d:15:1c:f6:83:a4:6f:4a:
c0:49:81:d6:2b:62:6f:95:24:e6:9c:da:b3:c4:c6:
6f:0e:5a:e7:44:59:a9:ee:84:84:96:30:ba:cc:e8:
19:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:65:93:2C:3A:72:DB:26:6A:6B:7D:8B:13:66:F3:DB:BF:B9:83:3F
X509v3 Authority Key Identifier:
keyid:17:D0:3F:29:81:80:CC:10:9F:19:D4:B1:99:2C:7D:71:C5:6C:8D:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/NmWTLDpy2yZqa32LE2bz27-5gz8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/F9A_KYGAzBCfGdSxmSx9ccVsjcw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.243.4.0/24
Signature Algorithm: sha256WithRSAEncryption
13:f0:80:8d:78:60:07:db:f5:67:55:03:32:4b:5d:45:d8:12:
3a:39:3d:04:8b:87:31:e2:96:4a:a5:ab:35:c8:52:ad:eb:2c:
30:b5:11:ba:e4:d2:3c:27:11:88:38:0f:30:57:d7:f8:2f:69:
3d:94:bc:cf:49:ce:75:f6:64:84:df:eb:d0:73:27:45:23:41:
82:57:f3:27:dc:84:b1:44:94:02:6e:8f:9c:d1:98:fe:c2:5e:
d4:ce:82:96:c3:6e:3c:96:d6:3c:0f:28:5b:8d:2f:89:0a:1f:
e8:c8:b0:96:54:75:22:10:03:cc:28:c8:1d:f2:55:a3:fc:76:
84:b0:8d:36:80:73:e8:9b:3d:0e:c5:93:c9:d0:eb:fa:c0:c3:
c6:d5:23:bc:32:92:b6:4d:30:1d:d6:f7:f9:c9:cb:54:6b:37:
d8:b0:61:35:22:56:4a:35:f5:7d:35:20:a3:ad:bc:6b:b1:2e:
cd:d1:1f:e7:18:e8:cb:bf:b8:14:13:45:99:dc:56:c2:00:6f:
a4:ef:27:cb:16:03:e0:e7:ab:42:34:b1:4f:0a:1c:5e:d7:30:
49:e3:98:3a:d6:24:f5:27:38:2e:95:76:e7:30:75:a3:49:56:
11:e8:82:bc:12:a1:3b:d1:ef:fd:22:f2:c6:b6:e6:14:28:6e:
c8:95:d6:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 12:16:36 2025 by rpki-client