Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/382ff4-4fc2-4302-af90-96adffe2e86a/1/FCRIl5Vt1LPdQ6IrZpaUR6T2zRk.roa
File: FCRIl5Vt1LPdQ6IrZpaUR6T2zRk.roa (raw, json)
Hash identifier: dI7TXuZLS0+y6udtXa2yol0ikupwyIZAlaHrmt/VDI0=
Subject key identifier: 14:24:48:97:95:6D:D4:B3:DD:43:A2:2B:66:96:94:47:A4:F6:CD:19
Certificate issuer: /CN=282c93d266852788e49982d9f7a620db6d9f588d
Certificate serial: 019425218D10002BC2B9410DA6374B6F5810
Authority key identifier: 28:2C:93:D2:66:85:27:88:E4:99:82:D9:F7:A6:20:DB:6D:9F:58:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KCyT0maFJ4jkmYLZ96Yg222fWI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/382ff4-4fc2-4302-af90-96adffe2e86a/1/FCRIl5Vt1LPdQ6IrZpaUR6T2zRk.roa
Signing time: Thu 02 Jan 2025 03:49:03 +0000
ROA not before: Thu 02 Jan 2025 03:49:03 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 14618
IP address blocks: 185.232.99.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:21:8d:10:00:2b:c2:b9:41:0d:a6:37:4b:6f:58:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=282c93d266852788e49982d9f7a620db6d9f588d
Validity
Not Before: Jan 2 03:49:03 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=14244897956dd4b3dd43a22b66969447a4f6cd19
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:cf:ac:8a:ca:27:92:9c:aa:75:c6:e2:55:2b:
ff:9c:49:b4:7e:4c:be:6b:88:2a:f9:55:82:06:f2:
20:00:56:e8:3d:7a:0b:59:9e:98:96:d5:b7:5c:d1:
26:f8:7e:2b:b2:f7:62:1c:00:3a:2d:6b:15:a0:a0:
32:58:d0:83:4b:15:ec:6b:f2:a5:ea:73:40:2c:35:
76:78:20:e6:35:5a:61:c9:7a:dc:6d:3c:57:6e:5f:
0e:ed:0d:33:36:88:7f:96:50:9a:3d:6b:dc:00:bd:
f3:13:42:54:0e:2a:48:16:d7:73:a9:b4:c3:20:6c:
90:04:22:42:6d:04:40:e1:7d:3c:2b:1e:d4:c3:6e:
eb:4e:8c:ff:0f:4f:12:92:97:e2:f9:e6:70:de:12:
07:2c:26:9a:8b:da:2d:bc:41:1e:e1:d0:4b:1e:ac:
28:a3:09:83:a7:37:a9:91:40:bc:4e:d3:ee:08:88:
37:4c:38:28:f4:e9:41:37:c5:5c:8d:87:63:c8:76:
1e:6d:1c:62:3d:6d:68:5d:15:d0:e6:30:07:d1:4e:
8a:d4:14:a8:ee:90:6f:26:b3:55:7e:dc:57:6a:b8:
89:96:de:ae:a2:a5:12:7a:f1:8b:12:0c:18:43:24:
25:f0:21:dc:ad:45:fc:94:ba:f6:07:bb:10:b4:8d:
99:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:24:48:97:95:6D:D4:B3:DD:43:A2:2B:66:96:94:47:A4:F6:CD:19
X509v3 Authority Key Identifier:
keyid:28:2C:93:D2:66:85:27:88:E4:99:82:D9:F7:A6:20:DB:6D:9F:58:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KCyT0maFJ4jkmYLZ96Yg222fWI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/382ff4-4fc2-4302-af90-96adffe2e86a/1/FCRIl5Vt1LPdQ6IrZpaUR6T2zRk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/382ff4-4fc2-4302-af90-96adffe2e86a/1/KCyT0maFJ4jkmYLZ96Yg222fWI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.232.99.0/24
Signature Algorithm: sha256WithRSAEncryption
46:01:2d:84:c6:ab:07:49:1d:7d:9b:3b:d7:0c:9d:be:d7:f3:
87:e8:4a:4c:4f:ad:92:a8:6f:5c:4f:20:fa:f1:ec:54:46:54:
08:5d:ff:47:3a:99:06:1c:23:51:e7:b1:26:fc:2b:15:7f:24:
2d:68:a5:b4:a7:f2:6b:66:f2:ab:a8:8e:cd:22:2f:a0:47:32:
94:f6:66:9f:60:4a:4a:fe:6b:5c:d9:d9:b9:5c:70:0b:93:10:
ac:d0:c5:46:0e:21:16:50:9d:fb:73:7a:0b:62:3f:89:5a:9d:
07:56:cd:38:64:c4:2e:08:ad:44:71:70:2f:1a:f9:76:7d:5f:
4f:2f:f7:09:a5:ff:4e:99:e3:15:3f:47:d9:99:96:b3:04:57:
22:e3:40:02:d9:9c:18:78:9d:dd:59:6f:13:16:52:3f:45:8f:
63:3c:6c:7d:d4:ee:fe:ac:7c:f7:8f:0d:a0:d1:31:05:71:63:
09:3a:85:a5:6e:08:0f:ab:e8:b3:c3:ae:22:cc:e3:e9:85:ee:
3c:92:22:9b:eb:63:fa:aa:c5:fc:ce:00:f5:25:a9:c4:fa:07:
a8:e9:8f:b4:d2:79:55:2e:0a:04:74:fc:fb:0f:63:e8:73:04:
a1:e8:09:2a:86:7d:35:0d:53:a5:dd:91:e5:53:51:4a:7e:89:
68:dc:53:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 23:54:23 2025 by rpki-client