Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/acee8e-7761-419f-b483-b30162e3ccc0/1/4v0g_DeTqNJGOHL4ln9WhvFfDRU.roa
File: 4v0g_DeTqNJGOHL4ln9WhvFfDRU.roa (raw, json)
Hash identifier: sBcYkkYKQotMu1+q9bGq7Q8bcGlDCzRATiIZUTpTc8U=
Subject key identifier: E2:FD:20:FC:37:93:A8:D2:46:38:72:F8:96:7F:56:86:F1:5F:0D:15
Certificate issuer: /CN=d3540b518d75fbefd616bfd94cf05fd25ba488b6
Certificate serial: 019423D7079309347CF135670EDE1791A60C
Authority key identifier: D3:54:0B:51:8D:75:FB:EF:D6:16:BF:D9:4C:F0:5F:D2:5B:A4:88:B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/01QLUY11--_WFr_ZTPBf0lukiLY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/acee8e-7761-419f-b483-b30162e3ccc0/1/4v0g_DeTqNJGOHL4ln9WhvFfDRU.roa
Signing time: Wed 01 Jan 2025 21:48:02 +0000
ROA not before: Wed 01 Jan 2025 21:48:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 205260
IP address blocks: 185.223.196.0/22 maxlen: 22
185.223.199.0/24 maxlen: 24
2a0c:4c00::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:d7:07:93:09:34:7c:f1:35:67:0e:de:17:91:a6:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3540b518d75fbefd616bfd94cf05fd25ba488b6
Validity
Not Before: Jan 1 21:48:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=e2fd20fc3793a8d2463872f8967f5686f15f0d15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:c8:d0:b3:f9:f9:a3:58:55:65:b9:53:eb:4c:
5d:63:ab:14:12:df:de:e6:eb:f5:65:cb:3c:12:92:
88:28:4a:24:71:10:57:3b:e2:e4:c7:7d:6c:b2:31:
77:26:fb:8b:eb:6d:f4:49:bf:d2:cf:8c:70:16:fb:
54:7d:66:65:2b:9a:d6:7a:7f:dd:e6:5b:bf:86:51:
d5:f3:aa:96:27:00:2a:33:cb:0c:ad:0e:16:b7:c5:
c4:9c:82:42:f0:f5:f2:e9:da:90:55:28:83:b1:c4:
78:a1:ea:9e:0d:76:0c:1d:4a:6a:f3:fb:28:29:5b:
07:b1:15:3e:4b:2e:b9:5b:3e:ce:16:c7:79:11:e0:
b0:33:0c:29:7c:96:05:a4:82:9e:67:f5:c3:51:cc:
6c:22:94:6a:b9:68:e4:f0:71:0e:84:30:12:4b:88:
ec:b3:c4:3c:6c:0c:d9:9e:03:85:ce:b9:cd:66:03:
c1:66:f2:66:2e:50:d8:f4:af:bf:a6:6c:49:c3:4b:
bf:82:b2:24:f9:fc:6d:7c:11:24:b8:5e:bd:09:5c:
33:57:e1:1d:e8:04:0c:df:28:43:43:42:b1:77:05:
4d:4b:97:20:be:4b:15:93:ec:3b:72:80:12:16:ed:
9b:f4:94:dd:4a:9b:01:d5:6e:27:dc:f1:e5:d2:95:
6a:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:FD:20:FC:37:93:A8:D2:46:38:72:F8:96:7F:56:86:F1:5F:0D:15
X509v3 Authority Key Identifier:
keyid:D3:54:0B:51:8D:75:FB:EF:D6:16:BF:D9:4C:F0:5F:D2:5B:A4:88:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/01QLUY11--_WFr_ZTPBf0lukiLY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/acee8e-7761-419f-b483-b30162e3ccc0/1/4v0g_DeTqNJGOHL4ln9WhvFfDRU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/acee8e-7761-419f-b483-b30162e3ccc0/1/01QLUY11--_WFr_ZTPBf0lukiLY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.223.196.0/22
IPv6:
2a0c:4c00::/29
Signature Algorithm: sha256WithRSAEncryption
bd:cc:c5:ee:e2:6e:e5:2e:70:95:b3:ed:35:a4:10:24:d8:1c:
3c:ed:55:8d:f6:55:8a:16:1c:39:67:7f:36:55:39:3f:b3:55:
71:a8:ce:f6:c9:61:f7:6c:5b:27:6a:37:bc:12:5c:92:69:f7:
42:33:53:64:eb:27:6a:f9:06:8d:bb:3a:f5:40:34:31:75:5b:
01:23:e1:fc:4a:d1:40:54:58:05:8c:bf:29:f3:3a:0f:61:e8:
50:fb:1d:62:37:80:d4:5d:ee:af:79:98:be:c5:23:63:1e:0b:
05:db:4c:cb:77:4a:31:a6:ed:27:48:7e:25:81:91:a5:3e:d9:
1a:cd:aa:ae:d4:32:dd:d8:7a:09:1e:6e:45:8d:d5:ab:e4:f0:
55:5a:ad:20:8f:53:0a:f8:36:d8:96:e7:12:c2:20:60:1b:53:
58:f7:3d:3d:7a:dd:a2:7b:44:32:94:ba:ba:fc:5a:7c:f8:61:
43:f8:0d:32:85:73:ef:57:3d:15:b7:a5:75:c2:88:ba:5d:5b:
d6:38:d0:95:00:a4:21:6c:4c:23:e4:f1:6a:45:1f:44:29:81:
bb:74:19:63:a3:5a:16:a0:b3:12:6d:15:5e:ba:7f:0f:ba:d9:
c3:04:35:e4:99:15:40:c5:6a:69:19:6c:15:7d:d1:6b:35:a8:
cc:d8:a9:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 03:14:02 2025 by rpki-client