Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/3cc135-f166-42eb-8203-f49120bed51c/1/fCTecUt77UHhtXHXll1piF7Zd6c.roa
File: fCTecUt77UHhtXHXll1piF7Zd6c.roa (raw, json)
Hash identifier: q3pUeUA6qW+DpXb5gimft6PsFNA4pETS9zhmS0g+5v0=
Subject key identifier: 7C:24:DE:71:4B:7B:ED:41:E1:B5:71:D7:96:5D:69:88:5E:D9:77:A7
Certificate issuer: /CN=345ae646ea34ad2688aca2fdd1a6f3340356495e
Certificate serial: 019423D80823701FCC027211D46C7A145901
Authority key identifier: 34:5A:E6:46:EA:34:AD:26:88:AC:A2:FD:D1:A6:F3:34:03:56:49:5E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NFrmRuo0rSaIrKL90abzNANWSV4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/3cc135-f166-42eb-8203-f49120bed51c/1/fCTecUt77UHhtXHXll1piF7Zd6c.roa
Signing time: Wed 01 Jan 2025 21:49:07 +0000
ROA not before: Wed 01 Jan 2025 21:49:07 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 50300
IP address blocks: 185.120.172.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:d8:08:23:70:1f:cc:02:72:11:d4:6c:7a:14:59:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=345ae646ea34ad2688aca2fdd1a6f3340356495e
Validity
Not Before: Jan 1 21:49:07 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=7c24de714b7bed41e1b571d7965d69885ed977a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:91:29:bf:c1:8e:d1:f9:67:22:73:e4:3c:28:
42:d9:0e:7e:80:e2:88:0e:da:cb:50:9b:93:a3:5b:
90:86:d7:f2:2b:e1:97:da:1a:33:c0:bc:d7:0f:82:
df:fe:ce:98:6d:6b:6e:9d:cf:77:25:9c:93:86:c6:
2c:a0:55:84:6c:3a:96:6a:63:90:f0:b7:d5:0e:67:
ea:55:41:38:81:c9:aa:d0:c5:9c:f4:19:ca:4e:c3:
d6:02:b2:34:30:3e:10:4f:4a:53:bd:b0:d4:c6:d6:
fa:66:2b:6e:24:4d:b4:13:57:c4:0e:87:42:a9:6e:
c0:7f:87:38:89:4e:0a:44:33:17:50:ce:3d:e0:30:
2c:d4:c1:ca:17:75:05:73:91:a0:31:1c:cd:43:47:
2a:3a:2d:f6:bb:3a:dd:7d:51:7a:c2:2d:40:2e:da:
24:58:5f:00:a8:63:b3:41:6e:20:b6:60:fd:b6:fb:
da:fe:b3:04:f9:e5:ef:24:a4:38:a2:2d:d8:80:5f:
1c:da:ef:d7:95:90:6e:cd:1e:73:d5:9d:b5:ef:38:
cc:1c:39:f9:ad:5f:40:4c:8e:cc:9b:5d:a8:5a:f3:
a2:80:db:17:37:05:e7:61:64:2f:c6:79:c6:aa:4f:
fc:d7:7f:dc:0c:03:ae:86:aa:e9:78:d6:61:db:46:
47:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:24:DE:71:4B:7B:ED:41:E1:B5:71:D7:96:5D:69:88:5E:D9:77:A7
X509v3 Authority Key Identifier:
keyid:34:5A:E6:46:EA:34:AD:26:88:AC:A2:FD:D1:A6:F3:34:03:56:49:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NFrmRuo0rSaIrKL90abzNANWSV4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/3cc135-f166-42eb-8203-f49120bed51c/1/fCTecUt77UHhtXHXll1piF7Zd6c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/3cc135-f166-42eb-8203-f49120bed51c/1/NFrmRuo0rSaIrKL90abzNANWSV4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.120.172.0/22
Signature Algorithm: sha256WithRSAEncryption
30:cc:e0:08:6c:09:cb:87:2b:78:83:24:c3:6f:34:08:08:b1:
8b:3f:a7:21:5e:e5:5f:c1:dc:30:7e:8c:6a:8a:5b:b5:38:19:
e7:45:ab:8c:db:40:c0:17:a1:6c:eb:45:41:f0:b7:63:21:c8:
75:d0:fc:ab:50:63:16:b5:7f:f7:92:7b:be:af:aa:36:f1:0d:
9c:8e:0c:64:ea:12:63:c0:59:0e:36:d8:0a:dc:48:5d:65:79:
63:bc:3e:b7:e2:f0:bb:07:e3:64:c5:db:76:0f:39:96:2e:9b:
e8:d8:85:97:4d:7a:56:b9:90:4c:fd:0d:55:6b:46:b3:e3:10:
7d:33:60:46:a7:32:4c:53:e8:98:d5:78:57:33:b8:f9:e1:94:
b5:e3:aa:e3:c1:1e:62:f0:c2:fe:7d:61:09:d8:13:a5:31:4d:
d7:39:48:3c:a9:48:a9:fa:8c:2d:9f:aa:16:e8:32:a5:f8:07:
fb:0c:db:f7:32:6c:d9:36:3f:10:ff:9a:b1:1f:1d:a6:cc:93:
d0:d1:41:71:b8:ee:87:f6:47:b7:d3:f6:bc:1f:63:f0:9d:d1:
a2:dc:40:e4:f0:6b:87:e0:34:ea:75:a0:47:c8:a4:53:36:4d:
8c:07:09:6e:2c:20:b3:69:38:a1:ed:83:c6:d9:3b:fd:34:7a:
32:d7:f6:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 22:31:28 2025 by rpki-client