Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/32c5ce-28b2-47d7-abd5-2e9d6ca08701/1/gELctfQxYyTJRGZTUtyhIKsMFlw.roa
File: gELctfQxYyTJRGZTUtyhIKsMFlw.roa (raw, json)
Hash identifier: lcB8z3ua7j82pkvoTX2tFK1a44K/uzZ0iQv59N4SoQU=
Subject key identifier: 80:42:DC:B5:F4:31:63:24:C9:44:66:53:52:DC:A1:20:AB:0C:16:5C
Certificate issuer: /CN=65865968a1d8f4f377865c913af3b9af890d7cce
Certificate serial: 01856E2FB9944AC0C92FC5E8CEEE6304B6CA
Authority key identifier: 65:86:59:68:A1:D8:F4:F3:77:86:5C:91:3A:F3:B9:AF:89:0D:7C:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZYZZaKHY9PN3hlyROvO5r4kNfM4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/32c5ce-28b2-47d7-abd5-2e9d6ca08701/1/gELctfQxYyTJRGZTUtyhIKsMFlw.roa
Signing time: Sun 01 Jan 2023 16:34:59 +0000
ROA not before: Sun 01 Jan 2023 16:34:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50673
IP address blocks: 185.161.174.0/24 maxlen: 24
2a07:c380::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:2f:b9:94:4a:c0:c9:2f:c5:e8:ce:ee:63:04:b6:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65865968a1d8f4f377865c913af3b9af890d7cce
Validity
Not Before: Jan 1 16:34:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8042dcb5f4316324c944665352dca120ab0c165c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:ce:a3:df:18:a5:c6:8e:bb:31:b6:b8:00:2d:
5e:7e:11:86:71:30:34:2e:5a:6c:37:64:29:79:be:
e2:1d:17:f7:9b:25:37:47:c5:1b:2a:82:39:d6:0d:
47:e9:8f:af:f7:f3:34:da:44:61:91:8b:e4:16:3e:
39:1c:87:c9:65:49:cc:15:27:f0:71:35:5b:50:5d:
d8:29:07:98:27:27:85:a4:df:84:26:67:d6:3f:73:
b0:72:27:e0:40:c9:e8:81:23:40:32:dd:95:65:2e:
cf:17:fa:db:50:c5:99:fe:97:3c:8f:43:ff:10:48:
4b:60:76:f2:72:d5:48:ff:99:df:b7:80:00:38:94:
65:8d:40:f4:61:eb:4f:f5:1f:c9:75:10:6e:65:93:
84:63:d8:46:bc:66:68:eb:25:03:53:0a:40:4d:a7:
8c:38:d5:d4:34:67:b5:77:e3:f5:b6:35:80:a0:81:
e8:6b:bf:e3:58:c7:f2:83:24:98:aa:41:3f:33:bd:
db:67:2a:4d:53:5b:7a:61:c0:ae:a4:2e:0a:f8:ab:
fb:76:2c:2c:54:46:11:90:32:c2:f0:05:51:1b:08:
5d:b5:75:3b:1e:60:be:03:a7:47:c7:dd:ea:4e:80:
b1:aa:84:c7:9c:8b:17:a9:68:d8:dc:f5:34:a2:d1:
1d:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:42:DC:B5:F4:31:63:24:C9:44:66:53:52:DC:A1:20:AB:0C:16:5C
X509v3 Authority Key Identifier:
keyid:65:86:59:68:A1:D8:F4:F3:77:86:5C:91:3A:F3:B9:AF:89:0D:7C:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZYZZaKHY9PN3hlyROvO5r4kNfM4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/32c5ce-28b2-47d7-abd5-2e9d6ca08701/1/gELctfQxYyTJRGZTUtyhIKsMFlw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/32c5ce-28b2-47d7-abd5-2e9d6ca08701/1/ZYZZaKHY9PN3hlyROvO5r4kNfM4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.161.174.0/24
IPv6:
2a07:c380::/32
Signature Algorithm: sha256WithRSAEncryption
29:04:39:83:60:e1:47:0e:29:00:01:61:be:4e:61:df:45:84:
e8:31:4c:b4:4f:59:31:39:73:a5:dd:c8:61:db:67:6d:b0:56:
bb:dd:b1:b4:13:ea:85:e3:50:7a:7f:68:e4:14:14:4d:44:3a:
e9:cf:10:81:cb:a3:fe:e9:73:15:ca:2a:91:62:6d:c4:30:b5:
34:a3:da:fd:bb:2f:a9:11:00:38:c8:27:15:fd:02:94:e1:50:
1f:02:61:82:8f:31:f8:c3:c0:40:c1:f6:04:4c:ea:5e:4c:9b:
fb:08:39:44:61:90:85:5d:12:5c:a0:da:34:55:5a:bb:09:b9:
90:f9:45:9d:26:56:dd:90:6b:0f:9b:c7:bf:80:99:38:5d:9a:
ca:35:57:2e:c7:84:a2:b5:28:b4:76:3d:25:a1:c3:67:d4:d7:
f7:47:cc:a8:1b:95:36:d0:de:e1:ee:37:f2:5a:9a:10:f0:4c:
17:18:47:46:61:3a:fa:28:78:08:cf:bd:6f:2e:21:9e:a7:95:
94:97:61:31:30:24:c8:69:f6:a2:f9:03:3e:a4:8e:16:6f:9c:
08:23:a3:55:fe:27:51:bd:7d:53:f4:b3:5c:10:eb:a0:20:39:
09:16:d7:09:19:90:fa:9f:65:ac:37:15:02:e5:91:a1:34:28:
23:e1:18:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:35:12 2025 by rpki-client