Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/72ee02-13d9-4396-9f7e-4ca842bacda5/1/EP3bkF_F-0JN_ikpcovpxVorS-8.roa
File: EP3bkF_F-0JN_ikpcovpxVorS-8.roa (raw, json)
Hash identifier: hqxhbHTgDziJ5finpaZT0guvZfxkt53C1CG9ZliF94Y=
Subject key identifier: 10:FD:DB:90:5F:C5:FB:42:4D:FE:29:29:72:8B:E9:C5:5A:2B:4B:EF
Certificate issuer: /CN=9cc60ed881418a217e8dd3c1fa523e2565caeb9b
Certificate serial: 0194252155F02CA9C23B552F887A0507C0B2
Authority key identifier: 9C:C6:0E:D8:81:41:8A:21:7E:8D:D3:C1:FA:52:3E:25:65:CA:EB:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nMYO2IFBiiF-jdPB-lI-JWXK65s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/72ee02-13d9-4396-9f7e-4ca842bacda5/1/EP3bkF_F-0JN_ikpcovpxVorS-8.roa
Signing time: Thu 02 Jan 2025 03:48:49 +0000
ROA not before: Thu 02 Jan 2025 03:48:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 201702
IP address blocks: 185.66.200.0/23 maxlen: 24
2a05:980::/29 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:21:55:f0:2c:a9:c2:3b:55:2f:88:7a:05:07:c0:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9cc60ed881418a217e8dd3c1fa523e2565caeb9b
Validity
Not Before: Jan 2 03:48:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=10fddb905fc5fb424dfe2929728be9c55a2b4bef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:e4:e7:b0:f2:fc:e4:d4:aa:4e:12:3c:b8:e2:
96:21:a4:4b:02:e7:95:26:64:a6:41:35:c9:2d:c7:
cc:a6:f9:2f:69:2b:87:2e:07:d2:1a:1c:6b:60:c7:
f9:38:37:ca:4d:95:ce:84:4d:a8:40:d1:90:26:42:
dc:5b:ad:1c:86:e5:25:52:01:39:e9:73:02:65:3e:
cd:92:98:4a:79:3e:00:8a:ed:5a:85:96:41:e9:00:
48:0a:54:97:0a:34:24:56:f7:21:85:d5:75:35:fa:
da:36:89:11:66:90:da:70:a2:a6:3d:cd:fe:2e:11:
29:ca:c3:5d:b1:92:72:21:27:2e:0b:27:44:9c:58:
54:f1:0c:4d:3e:df:26:ac:5a:f3:83:8c:5c:bc:d7:
ef:1a:52:c7:46:68:32:b9:5d:64:1f:1d:f8:c4:d8:
5b:e2:33:88:37:29:03:f7:38:55:32:1d:da:78:c7:
0e:8d:c0:a4:47:b2:27:9d:6a:47:da:e9:ad:3f:8d:
80:4e:1c:8b:a8:b4:b7:c2:4b:8f:d3:22:58:e7:43:
98:77:3d:cd:97:e4:67:f1:c8:95:fd:aa:cd:6b:cb:
c9:82:07:71:f5:b3:59:ae:43:ac:6f:53:6c:b9:12:
40:7a:ec:fe:d1:66:18:8d:22:6c:86:f4:40:67:ee:
0e:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:FD:DB:90:5F:C5:FB:42:4D:FE:29:29:72:8B:E9:C5:5A:2B:4B:EF
X509v3 Authority Key Identifier:
keyid:9C:C6:0E:D8:81:41:8A:21:7E:8D:D3:C1:FA:52:3E:25:65:CA:EB:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nMYO2IFBiiF-jdPB-lI-JWXK65s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/72ee02-13d9-4396-9f7e-4ca842bacda5/1/EP3bkF_F-0JN_ikpcovpxVorS-8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/72ee02-13d9-4396-9f7e-4ca842bacda5/1/nMYO2IFBiiF-jdPB-lI-JWXK65s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.66.200.0/23
IPv6:
2a05:980::/29
Signature Algorithm: sha256WithRSAEncryption
86:63:be:4e:82:5f:b9:db:01:b2:cf:d3:5e:cd:46:3d:3f:e4:
a3:cc:88:cc:f4:af:15:d7:6b:ba:a0:7e:55:41:87:79:71:de:
5f:ad:31:7e:70:2d:e1:8b:46:04:70:ea:b4:3e:5e:00:21:da:
55:3a:ce:2c:99:18:69:8d:a4:b5:b6:66:60:83:99:e9:83:75:
37:5a:50:d6:5b:a2:0d:05:69:7a:21:46:29:05:ab:92:2a:a0:
8b:df:8c:a0:fd:1f:1c:36:9e:0a:75:22:eb:35:c2:7d:ca:83:
f2:22:17:53:ed:5b:c0:ba:de:b8:5a:45:35:cc:95:03:d8:0a:
72:07:84:8f:ba:c0:c9:3f:bd:85:5b:1c:c1:a2:7f:84:24:b9:
c8:0e:da:7c:b4:5f:0f:85:9a:e3:f3:98:02:e8:73:e5:b5:07:
fc:56:30:78:e7:1f:42:db:a9:85:b1:2f:e5:f0:8d:5a:59:40:
3d:5b:88:4a:15:3e:28:08:09:84:26:75:ad:ed:f4:f1:b2:0f:
94:d3:4f:17:89:6c:1a:a8:08:35:fc:19:4c:0c:99:84:8f:50:
f6:a5:ab:a6:d0:92:5d:60:e3:6c:65:ef:cc:82:40:1a:58:9a:
0c:9b:ac:a5:69:3e:b6:77:04:36:52:a7:83:c1:29:2d:46:2d:
80:67:c4:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:15:29 2025 by rpki-client