Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/d72574-272a-409d-9d3c-e49a9e06c700/1/b4DuszRvCuY1HNLPnYT0Co3AUUg.roa
File: b4DuszRvCuY1HNLPnYT0Co3AUUg.roa (raw, json)
Hash identifier: Se60NV9pecSqSW5M0t+IF1TsZ0uCtpO4LnPo+ovkM6E=
Subject key identifier: 6F:80:EE:B3:34:6F:0A:E6:35:1C:D2:CF:9D:84:F4:0A:8D:C0:51:48
Certificate issuer: /CN=d6c1c2465b4f973fb4b0cb6628a98b3b58896d48
Certificate serial: 019427B4AC2A2AC98C8F7C42ECBFA4B87B3A
Authority key identifier: D6:C1:C2:46:5B:4F:97:3F:B4:B0:CB:66:28:A9:8B:3B:58:89:6D:48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1sHCRltPlz-0sMtmKKmLO1iJbUg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/d72574-272a-409d-9d3c-e49a9e06c700/1/b4DuszRvCuY1HNLPnYT0Co3AUUg.roa
Signing time: Thu 02 Jan 2025 15:48:59 +0000
ROA not before: Thu 02 Jan 2025 15:48:59 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 213726
IP address blocks: 185.197.164.0/24 maxlen: 24
2a0a:7bc1:1::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:b4:ac:2a:2a:c9:8c:8f:7c:42:ec:bf:a4:b8:7b:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d6c1c2465b4f973fb4b0cb6628a98b3b58896d48
Validity
Not Before: Jan 2 15:48:59 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=6f80eeb3346f0ae6351cd2cf9d84f40a8dc05148
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:fa:69:39:64:c4:6b:c1:af:b8:33:e4:e0:d6:
9d:e6:31:17:7c:34:62:d9:03:85:ac:9d:52:89:1b:
6d:cf:4b:18:17:9f:04:3e:67:c7:bd:9d:a6:05:27:
79:24:95:98:ca:5c:57:45:56:aa:c2:26:ce:85:1e:
ac:6b:08:e4:a3:0e:00:a9:73:38:73:44:53:39:33:
17:d5:00:00:60:d6:b1:77:18:27:e7:23:a0:ab:a2:
3a:de:5c:a8:98:a3:b2:5e:cd:d6:17:0a:62:89:73:
e6:4a:0c:dc:d3:a2:6e:cc:bb:82:bc:a8:69:b0:f4:
49:3d:18:c6:4d:f2:ec:4b:9a:8d:ef:7c:02:5b:63:
d9:b8:db:4f:a6:a7:19:f3:47:f9:b4:69:1e:c0:90:
f4:60:92:2e:71:f4:44:d5:8c:fe:56:11:6a:03:43:
42:a2:d4:bd:25:ca:fb:fa:d3:12:fd:e2:a8:49:ad:
75:62:b6:37:be:78:1c:2f:44:e7:31:b4:a9:20:d7:
de:2a:ba:f3:4d:a0:e8:d4:c9:bb:8e:07:88:a7:30:
6a:db:1a:c3:59:8f:72:14:b3:d2:ab:55:84:87:d9:
41:9a:97:66:77:5e:4b:71:e4:81:00:85:0d:4b:51:
fe:34:09:14:45:6d:d1:ee:63:28:72:f3:b4:6f:b2:
c2:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:80:EE:B3:34:6F:0A:E6:35:1C:D2:CF:9D:84:F4:0A:8D:C0:51:48
X509v3 Authority Key Identifier:
keyid:D6:C1:C2:46:5B:4F:97:3F:B4:B0:CB:66:28:A9:8B:3B:58:89:6D:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1sHCRltPlz-0sMtmKKmLO1iJbUg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/d72574-272a-409d-9d3c-e49a9e06c700/1/b4DuszRvCuY1HNLPnYT0Co3AUUg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/d72574-272a-409d-9d3c-e49a9e06c700/1/1sHCRltPlz-0sMtmKKmLO1iJbUg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.197.164.0/24
IPv6:
2a0a:7bc1:1::/48
Signature Algorithm: sha256WithRSAEncryption
65:d4:27:e9:cd:a6:cf:95:62:1e:6a:a2:9e:3b:4c:a2:78:10:
96:80:26:e0:29:22:1f:2b:40:9f:65:07:94:0c:09:aa:58:11:
b0:31:58:4d:c7:a7:70:e5:13:b2:e3:0f:a0:8c:67:e8:04:07:
ce:53:06:26:ca:19:49:b2:11:8c:f7:47:7c:b9:5a:5c:da:a1:
89:70:ee:ac:8e:9d:f3:1e:3c:b4:52:d8:cd:69:ab:18:ac:6d:
47:9d:24:ea:8b:a7:6e:30:8e:a0:e9:bc:eb:e5:f3:5f:7b:e8:
02:db:bd:d2:65:93:cd:20:ad:a7:54:07:6a:ba:af:10:b1:e9:
7a:f4:7f:1c:c7:20:b8:7d:aa:a5:d4:86:0b:83:18:3b:2d:0f:
81:de:a1:87:ee:d3:55:e8:51:95:b8:67:7d:af:9b:40:b4:fe:
87:c4:cc:d3:cd:f6:db:08:4f:f2:7f:73:e0:89:e7:65:08:3c:
a3:56:0b:98:51:85:f8:72:6c:69:c0:58:1d:e8:68:15:f1:08:
f3:ae:62:39:2a:ee:71:98:da:d2:68:c9:db:15:be:9f:9f:37:
1e:f1:3d:48:c1:c2:5e:c2:c2:8e:cc:34:31:58:c6:0f:de:a4:
3a:4d:46:b0:7c:13:df:64:a9:66:e3:f8:b3:9e:51:48:13:46:
6a:cd:69:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 05:50:57 2025 by rpki-client