Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/6b0344-8229-4d25-b498-8ce7c4fc5e0b/1/dqEoxI3WEV2rOPAYE8C4EEj1ebI.roa
File: dqEoxI3WEV2rOPAYE8C4EEj1ebI.roa (raw, json)
Hash identifier: nVo4yJxw9EhxkUipVljpw16vPXrVAlAiSw+4KWPaovY=
Subject key identifier: 76:A1:28:C4:8D:D6:11:5D:AB:38:F0:18:13:C0:B8:10:48:F5:79:B2
Certificate issuer: /CN=37e751a11c1a7888fa58dbfc32c8959bc946303e
Certificate serial: 019427B65B2680E8C7CAD122C4E029DC2DA9
Authority key identifier: 37:E7:51:A1:1C:1A:78:88:FA:58:DB:FC:32:C8:95:9B:C9:46:30:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N-dRoRwaeIj6WNv8MsiVm8lGMD4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/6b0344-8229-4d25-b498-8ce7c4fc5e0b/1/dqEoxI3WEV2rOPAYE8C4EEj1ebI.roa
Signing time: Thu 02 Jan 2025 15:50:49 +0000
ROA not before: Thu 02 Jan 2025 15:50:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 62371
IP address blocks: 185.205.70.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:b6:5b:26:80:e8:c7:ca:d1:22:c4:e0:29:dc:2d:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=37e751a11c1a7888fa58dbfc32c8959bc946303e
Validity
Not Before: Jan 2 15:50:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=76a128c48dd6115dab38f01813c0b81048f579b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:b3:92:0b:bc:df:f9:22:a1:78:c3:55:b8:8c:
84:ad:a2:a1:72:41:40:61:de:78:96:0d:db:82:0a:
fc:ad:e5:b1:4f:0d:ec:3c:3d:59:f3:28:cf:9b:b0:
6d:e1:6b:8b:7b:d8:f5:a1:12:a0:5d:f2:66:0c:a4:
f5:77:d5:4c:41:96:e2:bd:4c:52:f0:8c:52:41:0f:
5a:5a:07:40:c9:fd:26:45:81:68:b0:f2:cb:57:00:
7a:2c:4b:8e:1a:e5:52:fb:b0:8c:cd:8c:e7:19:61:
42:86:65:11:4f:70:a1:35:dc:81:2f:84:56:42:ff:
2d:0e:5a:f2:c2:a3:f9:11:00:a9:81:3b:c1:49:d4:
64:b6:b5:3b:b8:21:ca:92:76:f6:74:fb:10:98:51:
96:96:93:df:a4:71:04:2d:4a:53:03:3a:5e:d3:d0:
28:70:ce:f4:b7:5b:09:1d:f9:09:73:4c:c7:a6:8e:
84:aa:8c:a9:a5:84:15:bf:cc:6d:fd:91:d0:2a:99:
1d:f1:02:85:0f:b4:ca:0b:31:9e:0b:5b:7a:79:ed:
d7:53:dd:20:00:41:07:de:b5:8a:f9:33:a8:93:36:
f1:01:3b:6d:d2:28:56:5f:4b:08:9d:1d:e2:df:aa:
f0:11:7b:54:77:62:9e:41:3d:e8:9d:09:70:8d:9f:
3e:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:A1:28:C4:8D:D6:11:5D:AB:38:F0:18:13:C0:B8:10:48:F5:79:B2
X509v3 Authority Key Identifier:
keyid:37:E7:51:A1:1C:1A:78:88:FA:58:DB:FC:32:C8:95:9B:C9:46:30:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N-dRoRwaeIj6WNv8MsiVm8lGMD4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/6b0344-8229-4d25-b498-8ce7c4fc5e0b/1/dqEoxI3WEV2rOPAYE8C4EEj1ebI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/6b0344-8229-4d25-b498-8ce7c4fc5e0b/1/N-dRoRwaeIj6WNv8MsiVm8lGMD4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.205.70.0/24
Signature Algorithm: sha256WithRSAEncryption
43:95:b6:6d:cd:57:60:42:3b:5b:c8:6a:a3:f1:26:61:62:88:
54:bf:e9:32:a3:ff:cb:ad:d6:62:f7:a8:4f:24:f5:66:d2:5e:
68:15:a3:80:88:87:01:03:ae:a5:76:8b:07:63:32:80:0f:83:
8c:39:2b:3f:a5:87:62:2c:0a:81:3c:6c:e7:00:61:18:da:6f:
a8:f1:5e:67:a6:86:7a:e9:77:71:62:3c:56:1e:ca:9d:75:23:
83:44:11:7e:ab:54:8e:8e:77:77:b4:f6:90:41:b1:40:c2:6e:
ce:34:11:36:7d:ef:97:9e:7f:e7:0c:25:ac:55:e2:c0:74:d1:
db:8e:38:af:e0:7b:41:d1:8b:c7:8d:d4:ce:9b:08:b9:88:ab:
eb:9c:12:57:81:d1:c3:e8:1f:bc:c3:c8:1c:6e:27:d8:a0:b8:
8e:5d:92:4a:c4:7b:58:34:f1:45:8c:0b:70:00:7d:05:c7:66:
37:90:cf:69:ce:81:98:c2:0f:31:29:7d:84:61:5b:a6:6f:2e:
3f:7e:8c:0f:68:58:86:94:ac:ec:60:e2:8b:de:04:e6:fa:aa:
5d:45:34:82:54:b0:13:85:19:87:3e:d8:4c:cd:ae:d5:54:2a:
09:af:f7:6c:48:ae:03:97:d4:4b:8d:d0:ab:78:d7:69:d0:11:
a4:65:4c:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:16:05 2025 by rpki-client