Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/40fdd1-1092-4f69-b648-691ff5b44b01/1/VHuw9bCvd_xbchW3ciS0PDWXw_w.roa
File: VHuw9bCvd_xbchW3ciS0PDWXw_w.roa (raw, json)
Hash identifier: gsE8OKW+/bE0pDGpsJc+2dHPUTMKwzSWKQdDcL2OGGQ=
Subject key identifier: 54:7B:B0:F5:B0:AF:77:FC:5B:72:15:B7:72:24:B4:3C:35:97:C3:FC
Certificate issuer: /CN=1e9fdc7fb39ebbbed4ee54f703d3ac6153ddee69
Certificate serial: 019421B1ADF74A3FE8DBD3BE1244F831E4E3
Authority key identifier: 1E:9F:DC:7F:B3:9E:BB:BE:D4:EE:54:F7:03:D3:AC:61:53:DD:EE:69
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hp_cf7Oeu77U7lT3A9OsYVPd7mk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/40fdd1-1092-4f69-b648-691ff5b44b01/1/VHuw9bCvd_xbchW3ciS0PDWXw_w.roa
Signing time: Wed 01 Jan 2025 11:47:59 +0000
ROA not before: Wed 01 Jan 2025 11:47:59 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 62300
IP address blocks: 185.232.17.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:b1:ad:f7:4a:3f:e8:db:d3:be:12:44:f8:31:e4:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e9fdc7fb39ebbbed4ee54f703d3ac6153ddee69
Validity
Not Before: Jan 1 11:47:59 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=547bb0f5b0af77fc5b7215b77224b43c3597c3fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:0a:81:b6:56:17:01:7f:17:ac:20:77:21:ac:
00:23:df:71:8e:34:a6:41:09:52:a8:6b:d8:d4:45:
ee:bb:e3:c6:0a:e9:c4:a6:82:4b:38:c0:f5:7f:5e:
1c:8e:12:ec:f8:11:5c:4e:3c:ef:41:f5:ec:9a:9c:
60:78:b5:c4:3b:a1:27:ac:a7:57:33:af:34:6d:a1:
24:2e:59:83:31:8a:4a:59:d8:53:c2:2a:5b:91:fe:
56:b2:44:85:84:a5:79:88:e7:4e:3e:ec:50:a7:72:
20:ec:01:b3:15:7b:e2:fc:eb:92:04:69:90:ef:fa:
4c:3e:1e:12:f9:55:7b:3c:a2:98:b8:fe:cb:a3:3d:
d5:a3:d1:4e:8d:98:63:0e:0a:48:45:e7:62:ef:48:
ca:1c:74:f4:7a:5b:ca:d3:5d:e0:54:bd:b0:9e:a2:
f6:64:14:c1:13:f6:76:e0:c4:a3:bf:7d:41:51:66:
c1:0f:cc:e9:2e:d5:33:a8:96:98:23:fb:3c:b9:2a:
d5:e2:0b:ba:e7:03:4a:5d:ef:47:fc:59:7a:c0:fc:
a2:74:92:c2:ec:c0:33:94:73:3a:fb:29:d9:bd:65:
8f:25:c5:ce:d9:f5:21:80:cb:17:d5:2d:12:43:73:
be:f0:22:52:d8:d2:70:0f:92:6e:19:8c:14:a4:ba:
c6:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:7B:B0:F5:B0:AF:77:FC:5B:72:15:B7:72:24:B4:3C:35:97:C3:FC
X509v3 Authority Key Identifier:
keyid:1E:9F:DC:7F:B3:9E:BB:BE:D4:EE:54:F7:03:D3:AC:61:53:DD:EE:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hp_cf7Oeu77U7lT3A9OsYVPd7mk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/40fdd1-1092-4f69-b648-691ff5b44b01/1/VHuw9bCvd_xbchW3ciS0PDWXw_w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/40fdd1-1092-4f69-b648-691ff5b44b01/1/Hp_cf7Oeu77U7lT3A9OsYVPd7mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.232.17.0/24
Signature Algorithm: sha256WithRSAEncryption
92:31:66:8e:29:fb:25:0a:50:75:c4:50:8c:36:f6:a3:54:0a:
d1:72:0e:7b:1a:06:a5:88:a4:77:67:4f:c6:6b:0b:1c:34:07:
bd:1f:86:5a:b4:93:75:c2:5a:99:a7:ec:9d:93:f8:76:34:fa:
39:a6:c4:09:37:a3:ef:85:57:68:f6:22:ce:0a:47:22:a6:d1:
7e:17:00:e3:23:9b:64:91:23:59:4c:bb:a7:18:d4:cd:bf:d9:
ed:82:89:4f:de:5c:71:37:01:b2:2b:62:e6:c8:8f:cd:87:2b:
c6:6d:cc:29:1f:49:85:33:aa:3f:3d:78:21:f5:63:0f:ce:c5:
a8:ac:0d:18:30:59:78:27:96:bd:7f:37:2f:75:d1:af:6c:29:
38:ce:a3:2b:2c:99:cc:83:e7:dc:18:bf:23:96:36:8a:8b:8f:
36:85:98:bb:4b:19:9f:30:c3:4a:8f:5e:13:b5:9a:75:e7:6a:
dc:ec:06:94:98:04:10:87:3e:d7:c4:de:dc:6d:43:29:a8:ab:
49:5e:b4:c7:9d:6e:25:5c:13:fa:c8:7b:e3:f0:03:e7:71:a7:
8b:d5:97:13:63:6f:1d:6a:73:d5:75:5e:47:b2:91:3e:d6:5f:
50:38:01:5b:91:d3:be:62:e4:f8:21:17:d0:0a:55:22:1e:18:
9d:91:6e:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:36:12 2025 by rpki-client