Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/a71248-a465-40d4-a2cf-a41b50aa272d/1/r6yE4xsEP2nk8bhnU6JLqIojHRE.roa
File: r6yE4xsEP2nk8bhnU6JLqIojHRE.roa (raw, json)
Hash identifier: wfYcyjtmeOZql+vdku9sv4NfFmu1SJxHS5aDVoKI+Kk=
Subject key identifier: AF:AC:84:E3:1B:04:3F:69:E4:F1:B8:67:53:A2:4B:A8:8A:23:1D:11
Certificate issuer: /CN=4b25df8620374243e3c5eab25550af24e0eff48c
Certificate serial: 019422FB771D9F892260CE640873CBDC9C4D
Authority key identifier: 4B:25:DF:86:20:37:42:43:E3:C5:EA:B2:55:50:AF:24:E0:EF:F4:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SyXfhiA3QkPjxeqyVVCvJODv9Iw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/a71248-a465-40d4-a2cf-a41b50aa272d/1/r6yE4xsEP2nk8bhnU6JLqIojHRE.roa
Signing time: Wed 01 Jan 2025 17:48:12 +0000
ROA not before: Wed 01 Jan 2025 17:48:12 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 43279
IP address blocks: 185.208.232.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:fb:77:1d:9f:89:22:60:ce:64:08:73:cb:dc:9c:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b25df8620374243e3c5eab25550af24e0eff48c
Validity
Not Before: Jan 1 17:48:12 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=afac84e31b043f69e4f1b86753a24ba88a231d11
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:6a:10:94:83:b5:5a:c4:da:6e:61:06:fe:7d:
ba:82:43:f9:8a:8a:25:6c:b1:49:4f:2d:c6:28:9e:
93:0a:68:7e:6b:5f:23:6a:79:5e:c4:0b:bb:b9:29:
28:66:b8:bc:26:94:3f:5f:4f:0b:21:c1:fd:df:99:
ab:4b:9b:f6:83:a4:52:a9:6c:a4:5e:3f:00:12:a0:
6b:38:ab:7a:cd:54:31:50:04:9b:27:d2:4c:c7:13:
9a:8d:bc:5a:3b:e2:2d:1c:05:ff:96:52:d3:5f:f2:
8a:25:aa:18:a9:a6:e6:8d:8a:74:b4:13:d1:87:9f:
b6:25:5e:84:97:85:35:51:c1:7e:56:db:0c:65:d0:
42:be:2f:a6:c6:d6:29:de:52:73:50:23:20:e8:8b:
38:16:2f:e0:b4:e2:4f:62:bc:35:f3:4d:76:b3:4b:
36:6f:31:dc:81:0c:34:e3:56:2b:75:6c:8e:f6:bb:
e2:5f:0c:6d:a0:21:a2:19:25:ca:9e:51:0d:6e:41:
45:ab:d6:6c:3f:22:af:2d:c2:18:99:a0:28:ed:fa:
0c:93:af:4e:fc:83:f1:3e:8d:95:78:21:f9:02:b3:
55:07:c9:be:71:7e:fd:6d:07:e4:bf:2c:60:f6:4e:
96:ab:a4:2b:5d:ce:61:ea:00:44:d8:4f:14:cf:6a:
ef:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:AC:84:E3:1B:04:3F:69:E4:F1:B8:67:53:A2:4B:A8:8A:23:1D:11
X509v3 Authority Key Identifier:
keyid:4B:25:DF:86:20:37:42:43:E3:C5:EA:B2:55:50:AF:24:E0:EF:F4:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SyXfhiA3QkPjxeqyVVCvJODv9Iw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/a71248-a465-40d4-a2cf-a41b50aa272d/1/r6yE4xsEP2nk8bhnU6JLqIojHRE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/a71248-a465-40d4-a2cf-a41b50aa272d/1/SyXfhiA3QkPjxeqyVVCvJODv9Iw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.208.232.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:d7:4c:f2:4a:ab:74:0d:f5:70:af:43:79:5d:6d:34:48:db:
76:21:63:b8:e6:72:75:0c:af:12:9a:72:7b:c2:36:f3:a1:af:
de:59:9e:bf:c5:db:41:f1:b0:17:2f:09:8a:71:19:36:6c:ea:
12:11:6f:1e:ea:83:13:4f:aa:93:a2:bf:b0:c7:10:27:dd:82:
e9:ef:ac:8e:ef:38:d5:ba:57:1c:ba:97:76:41:7f:79:56:0a:
f6:e5:86:aa:82:bc:2e:96:8a:6c:fb:6b:1b:cd:83:3d:d6:ed:
74:c5:b0:68:92:f5:9b:50:5f:76:b6:de:4b:3c:8b:cb:54:42:
54:6b:ed:1b:9c:9b:3e:46:d9:0f:7d:42:5c:8c:30:c9:d5:55:
6e:7c:26:28:d4:20:ed:79:b0:f6:39:54:f6:55:b2:f3:6c:90:
de:ec:18:72:5c:b4:24:0b:a2:72:09:98:4c:b7:01:de:31:a3:
3a:26:b2:7a:d2:bd:ae:7e:dd:41:02:56:56:55:77:b6:bf:39:
73:e4:17:f1:11:37:ef:89:60:74:1a:85:1c:98:5d:62:47:43:
e4:f7:a4:ef:27:44:9d:62:40:1a:26:e5:ef:52:a7:fb:0f:0f:
f5:35:da:be:b0:eb:71:31:64:1a:21:65:63:63:7d:f8:48:f8:
4c:6a:29:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 03:17:14 2025 by rpki-client