Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/793709-ee58-4f76-b308-862b86b6e642/1/dBbI1Z81Mloa7W2OzhoKXchOrRQ.roa
File: dBbI1Z81Mloa7W2OzhoKXchOrRQ.roa (raw, json)
Hash identifier: cFMz5yq3xJCpOCH1TXFzmCMMTxw6N/8cLdoB9ZDvza0=
Subject key identifier: 74:16:C8:D5:9F:35:32:5A:1A:ED:6D:8E:CE:1A:0A:5D:C8:4E:AD:14
Certificate issuer: /CN=81e4e6075978ea9476b641ce008c787ab28e5d13
Certificate serial: 0194221FE15EB9285ED63FB5B1E3A4C302E0
Authority key identifier: 81:E4:E6:07:59:78:EA:94:76:B6:41:CE:00:8C:78:7A:B2:8E:5D:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/geTmB1l46pR2tkHOAIx4erKOXRM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/793709-ee58-4f76-b308-862b86b6e642/1/dBbI1Z81Mloa7W2OzhoKXchOrRQ.roa
Signing time: Wed 01 Jan 2025 13:48:22 +0000
ROA not before: Wed 01 Jan 2025 13:48:22 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 8473
IP address blocks: 185.65.188.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:1f:e1:5e:b9:28:5e:d6:3f:b5:b1:e3:a4:c3:02:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81e4e6075978ea9476b641ce008c787ab28e5d13
Validity
Not Before: Jan 1 13:48:22 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=7416c8d59f35325a1aed6d8ece1a0a5dc84ead14
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:db:cd:74:ad:23:54:fc:d6:e0:dd:2e:ba:10:
ae:31:d8:86:33:2b:90:ac:ef:d1:97:78:05:79:97:
42:bd:45:f3:8f:ad:dc:72:8a:22:25:34:58:d6:20:
a4:67:0f:89:fe:2f:60:81:77:cb:29:f8:23:b1:49:
5a:ff:e8:de:aa:1c:49:26:6c:f9:72:53:72:1c:fd:
1d:87:4a:f1:cd:c8:76:ee:1b:b6:da:9d:4b:99:d8:
a2:c8:46:3c:81:a9:db:76:5b:a3:9e:d0:dd:1d:ee:
db:68:d6:52:44:2f:5e:f0:32:54:e3:df:fa:5c:dd:
dd:3a:a7:aa:76:93:1f:40:64:db:c3:bf:a3:9c:76:
54:cc:17:b0:34:89:f2:7a:65:59:cc:0d:2e:f4:07:
fe:36:40:57:d6:4b:71:5d:bf:8f:b7:f8:a4:de:de:
ce:ef:63:f8:60:93:27:6b:c1:40:c1:05:3e:34:c3:
47:f6:ad:32:f1:df:60:f5:2d:e9:5a:b1:53:80:99:
86:2f:99:9b:e5:84:eb:dd:82:73:23:1d:f5:cd:46:
23:5f:4c:85:b1:cd:20:12:13:2d:00:65:08:b5:5a:
aa:ac:ad:aa:06:ea:b9:45:89:60:5f:23:d2:d9:34:
ba:d0:3d:32:44:84:da:4b:6a:10:6d:a1:aa:87:d7:
87:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:16:C8:D5:9F:35:32:5A:1A:ED:6D:8E:CE:1A:0A:5D:C8:4E:AD:14
X509v3 Authority Key Identifier:
keyid:81:E4:E6:07:59:78:EA:94:76:B6:41:CE:00:8C:78:7A:B2:8E:5D:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/geTmB1l46pR2tkHOAIx4erKOXRM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/793709-ee58-4f76-b308-862b86b6e642/1/dBbI1Z81Mloa7W2OzhoKXchOrRQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/793709-ee58-4f76-b308-862b86b6e642/1/geTmB1l46pR2tkHOAIx4erKOXRM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.65.188.0/23
Signature Algorithm: sha256WithRSAEncryption
2e:a3:5f:0b:c4:ed:34:9a:6a:da:ef:5d:c1:79:43:fa:06:09:
43:de:5b:f7:a9:bc:a5:ff:10:8f:19:57:3e:32:75:9c:9b:b4:
3c:f7:f2:71:29:e1:a0:c6:b3:8d:37:2f:0e:43:07:16:e7:76:
f3:31:49:d2:c1:c8:2a:ae:c9:e0:44:fc:15:9b:79:92:58:d3:
ac:ec:27:5b:11:fd:8b:b5:98:26:46:75:97:fd:d6:6d:da:64:
cd:94:f6:4a:84:38:02:ff:f8:9b:d3:53:b1:7b:2f:f7:27:ab:
7a:b1:af:a4:d9:ca:e5:16:f4:a3:cc:f1:25:a5:3a:18:1c:26:
c4:ee:d8:2c:3f:aa:e6:d6:2a:4d:fc:ea:3b:05:6c:bc:a8:5e:
2f:26:2a:bd:61:16:89:10:9e:10:90:a1:45:c2:f0:4d:60:af:
93:36:9c:e5:0f:99:20:4e:45:aa:4e:f3:fd:fd:f6:48:1f:d6:
44:25:51:5a:20:dd:02:69:23:81:76:f5:ff:69:e8:ec:d1:d5:
32:3c:f4:09:b7:a8:59:3f:70:ac:50:2c:2b:27:75:9b:22:fe:
fe:df:aa:28:39:ef:2d:26:b9:c9:65:5f:4d:8c:16:a7:d6:df:
70:76:d8:cb:1d:c7:0c:d6:45:0a:3a:4b:1a:fb:2e:b7:26:61:
69:f3:36:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 20:12:22 2025 by rpki-client