Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/def555-9651-4e81-828c-7a94da7d9ee2/1/dC665gBaSCufZLjae0l6pAdLs6Q.roa
File: dC665gBaSCufZLjae0l6pAdLs6Q.roa (raw, json)
Hash identifier: kur7Pc6RtMGt0xkEhTapoaHBlvXxGfD2IjX+NyztpmY=
Subject key identifier: 74:2E:BA:E6:00:5A:48:2B:9F:64:B8:DA:7B:49:7A:A4:07:4B:B3:A4
Certificate issuer: /CN=ae6af0d5f38289d34c21ba67c4c39787a42a669e
Certificate serial: 019420684448DD07C3C6CAB5B54EA06AE09D
Authority key identifier: AE:6A:F0:D5:F3:82:89:D3:4C:21:BA:67:C4:C3:97:87:A4:2A:66:9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rmrw1fOCidNMIbpnxMOXh6QqZp4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/def555-9651-4e81-828c-7a94da7d9ee2/1/dC665gBaSCufZLjae0l6pAdLs6Q.roa
Signing time: Wed 01 Jan 2025 05:48:11 +0000
ROA not before: Wed 01 Jan 2025 05:48:11 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 14618
IP address blocks: 185.11.104.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:68:44:48:dd:07:c3:c6:ca:b5:b5:4e:a0:6a:e0:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ae6af0d5f38289d34c21ba67c4c39787a42a669e
Validity
Not Before: Jan 1 05:48:11 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=742ebae6005a482b9f64b8da7b497aa4074bb3a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:cd:53:87:02:5a:45:b0:1d:25:ea:65:52:be:
0e:ac:e5:02:da:d5:53:88:b3:66:e9:89:8a:69:10:
b7:bf:c0:e5:ab:04:6d:0f:bd:d7:1a:f8:5c:66:c5:
38:4e:3b:94:dc:32:70:e3:d0:d4:af:e6:56:a1:2b:
55:9b:ad:e8:10:78:af:52:f0:2c:a0:8e:87:53:d2:
7c:e5:62:ac:f1:5b:f5:99:52:8f:78:e9:c5:f0:0f:
bb:50:93:cb:9f:ac:a9:aa:fd:ae:a9:8c:a8:a3:45:
8c:c5:7b:25:51:a0:39:9d:21:91:cf:09:5c:a1:fd:
c1:2d:17:b7:08:6c:da:c8:0e:c1:4e:7c:2f:d6:e6:
94:7f:9b:1f:de:90:6a:1c:7a:32:97:4a:d9:a0:aa:
d8:87:61:ef:31:f2:18:59:bb:17:df:95:95:a8:e5:
34:64:b3:41:71:32:e2:7d:c6:9f:ba:5a:7e:58:e3:
58:70:a2:17:52:9f:d1:c7:7d:4e:87:0f:b4:3f:df:
86:06:8d:ca:51:7d:0f:73:5e:28:e4:8c:e8:37:67:
ec:67:52:67:da:1a:53:24:27:61:b7:77:84:7a:a7:
bf:3b:24:3d:be:59:b1:c6:d1:46:a0:54:08:a4:9d:
78:69:4c:02:ae:a1:a5:e4:ed:19:be:d6:e1:c5:ad:
e5:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:2E:BA:E6:00:5A:48:2B:9F:64:B8:DA:7B:49:7A:A4:07:4B:B3:A4
X509v3 Authority Key Identifier:
keyid:AE:6A:F0:D5:F3:82:89:D3:4C:21:BA:67:C4:C3:97:87:A4:2A:66:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rmrw1fOCidNMIbpnxMOXh6QqZp4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/def555-9651-4e81-828c-7a94da7d9ee2/1/dC665gBaSCufZLjae0l6pAdLs6Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/def555-9651-4e81-828c-7a94da7d9ee2/1/rmrw1fOCidNMIbpnxMOXh6QqZp4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.11.104.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:e0:33:8c:40:73:44:9c:e5:10:b1:ab:70:5a:0f:9f:3d:88:
b9:67:44:78:88:d4:64:eb:8a:12:50:ef:d6:48:f2:39:e9:29:
08:a0:82:e6:07:cf:76:1e:a6:df:39:10:7b:01:3f:96:7e:46:
56:87:a8:b1:8f:bd:9b:96:60:d8:ab:63:6b:10:5c:18:42:48:
e7:58:91:d7:43:33:8d:20:fc:74:82:ba:38:f0:26:73:7d:4b:
70:ca:87:5b:78:98:8c:e9:84:87:8f:90:63:83:77:fa:ff:ba:
e2:ad:2f:b4:8e:0e:39:7b:15:13:2c:5e:87:cf:b6:bc:fe:75:
3c:0c:e8:dd:b1:ba:00:5e:75:26:81:55:2d:13:1d:92:de:08:
1c:72:61:07:ae:db:72:e7:7a:3c:9f:97:14:0b:c2:16:0e:a6:
73:ad:6a:eb:68:fd:37:10:9c:a0:50:c4:3d:20:d2:7f:0c:42:
4f:32:17:ed:be:b9:02:75:32:9f:88:14:c6:c1:ca:28:3f:7b:
e4:32:d7:31:81:5c:ef:5e:59:f8:c8:09:15:ee:e0:35:78:76:
59:ea:d8:ac:d9:7f:1b:d5:60:f0:fd:6c:a2:65:65:3e:7e:41:
3f:ad:6a:1b:b3:a9:58:a3:f0:4f:b7:60:c4:f2:5e:b0:87:4f:
c6:bc:ba:4c
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQgaERI3QfDxsq1tU6gauCdMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFlNmFmMGQ1ZjM4Mjg5ZDM0YzIxYmE2N2M0YzM5Nzg3YTQy
YTY2OWUwHhcNMjUwMTAxMDU0ODExWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3NDJlYmFlNjAwNWE0ODJiOWY2NGI4ZGE3YjQ5N2FhNDA3NGJiM2E0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArc1ThwJaRbAdJeplUr4OrOUC2tVT
iLNm6YmKaRC3v8DlqwRtD73XGvhcZsU4TjuU3DJw49DUr+ZWoStVm63oEHivUvAs
oI6HU9J85WKs8Vv1mVKPeOnF8A+7UJPLn6ypqv2uqYyoo0WMxXslUaA5nSGRzwlc
of3BLRe3CGzayA7BTnwv1uaUf5sf3pBqHHoyl0rZoKrYh2HvMfIYWbsX35WVqOU0
ZLNBcTLifcafulp+WONYcKIXUp/Rx31Ohw+0P9+GBo3KUX0Pc14o5IzoN2fsZ1Jn
2hpTJCdht3eEeqe/OyQ9vlmxxtFGoFQIpJ14aUwCrqGl5O0Zvtbhxa3l/QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFHQuuuYAWkgrn2S42ntJeqQHS7OkMB8GA1UdIwQY
MBaAFK5q8NXzgonTTCG6Z8TDl4ekKmaeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcm1ydzFmT0NpZE5NSWJwbnhNT1hoNlFxWnA0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZS9kZWY1NTUtOTY1MS00ZTgxLTgyOGMt
N2E5NGRhN2Q5ZWUyLzEvZEM2NjVnQmFTQ3VmWkxqYWUwbDZwQWRMczZRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80ZS9kZWY1NTUtOTY1MS00ZTgxLTgyOGMtN2E5NGRhN2Q5ZWUy
LzEvcm1ydzFmT0NpZE5NSWJwbnhNT1hoNlFxWnA0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuQtoMA0G
CSqGSIb3DQEBCwUAA4IBAQAs4DOMQHNEnOUQsatwWg+fPYi5Z0R4iNRk64oSUO/W
SPI56SkIoILmB892HqbfORB7AT+WfkZWh6ixj72blmDYq2NrEFwYQkjnWJHXQzON
IPx0gro48CZzfUtwyodbeJiM6YSHj5Bjg3f6/7rirS+0jg45exUTLF6Hz7a8/nU8
DOjdsboAXnUmgVUtEx2S3ggccmEHrtty53o8n5cUC8IWDqZzrWrraP03EJygUMQ9
INJ/DEJPMhftvrkCdTKfiBTGwcooP3vkMtcxgVzvXln4yAkV7uA1eHZZ6tis2X8b
1WDw/WyiZWU+fkE/rWobs6lYo/BPt2DE8l6wh0/GvLpM
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:16:43 2025 by rpki-client