Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/a8ebe4-d0b3-4e7d-af25-0468042486dc/1/sJ8MWzOJrRSDCEy5539zFEW54Fg.roa
File: sJ8MWzOJrRSDCEy5539zFEW54Fg.roa (raw, json)
Hash identifier: SrkAclwJ6pGZe3QnLXmTkQWct0fK9CqayvHKB5l708k=
Subject key identifier: B0:9F:0C:5B:33:89:AD:14:83:08:4C:B9:E7:7F:73:14:45:B9:E0:58
Certificate issuer: /CN=f0dd81a833d9b043c7ffd635a5987f536971180d
Certificate serial: 019427B42CB1FBC91A3FD01F080EB231552F
Authority key identifier: F0:DD:81:A8:33:D9:B0:43:C7:FF:D6:35:A5:98:7F:53:69:71:18:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8N2BqDPZsEPH_9Y1pZh_U2lxGA0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/a8ebe4-d0b3-4e7d-af25-0468042486dc/1/sJ8MWzOJrRSDCEy5539zFEW54Fg.roa
Signing time: Thu 02 Jan 2025 15:48:26 +0000
ROA not before: Thu 02 Jan 2025 15:48:26 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 211832
IP address blocks: 185.189.155.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:b4:2c:b1:fb:c9:1a:3f:d0:1f:08:0e:b2:31:55:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f0dd81a833d9b043c7ffd635a5987f536971180d
Validity
Not Before: Jan 2 15:48:26 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b09f0c5b3389ad1483084cb9e77f731445b9e058
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:cc:40:fe:67:57:83:a6:80:77:94:bb:8c:70:
61:25:4d:5f:6a:18:2b:b6:97:ef:0b:12:bd:80:8e:
64:f9:32:0d:c4:4b:d0:45:fb:4d:de:f9:41:e5:c2:
35:46:a4:bf:05:26:ea:96:68:e2:59:bc:0e:09:21:
8e:43:48:93:f5:5c:7a:c3:42:e1:13:b9:13:ef:5a:
af:8a:d8:c4:60:37:85:5c:5b:08:b3:a2:8f:af:ad:
fb:10:73:b9:c1:a6:7e:d0:4b:5a:d2:6a:ed:9f:73:
1b:49:e2:46:f0:e9:a1:f8:02:6c:bc:05:c5:94:cd:
12:4e:89:cf:6a:25:a1:94:ac:fb:74:b0:27:62:01:
18:b9:ee:bc:b7:a8:01:6f:3c:d1:f5:f7:c9:cb:04:
68:31:ca:29:5b:a0:0d:c6:64:8e:72:e3:2f:5a:6d:
59:dd:27:a2:b6:90:69:42:12:35:f7:3f:48:10:f3:
37:a4:d3:3b:de:ec:bd:63:f3:65:1e:e6:a4:c1:82:
53:98:78:4b:97:4f:4e:be:aa:2d:0c:11:a5:68:c4:
62:50:d8:46:33:00:f1:c2:d8:fa:8a:34:51:c7:4b:
9d:17:3b:05:16:ef:7f:0c:18:54:c7:d7:64:be:c1:
54:40:e9:27:9a:e5:d1:e4:4d:7e:49:8f:f4:da:13:
d4:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:9F:0C:5B:33:89:AD:14:83:08:4C:B9:E7:7F:73:14:45:B9:E0:58
X509v3 Authority Key Identifier:
keyid:F0:DD:81:A8:33:D9:B0:43:C7:FF:D6:35:A5:98:7F:53:69:71:18:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8N2BqDPZsEPH_9Y1pZh_U2lxGA0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/a8ebe4-d0b3-4e7d-af25-0468042486dc/1/sJ8MWzOJrRSDCEy5539zFEW54Fg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/a8ebe4-d0b3-4e7d-af25-0468042486dc/1/8N2BqDPZsEPH_9Y1pZh_U2lxGA0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.189.155.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:1b:61:c6:53:73:ac:9f:1b:84:58:46:d6:c6:64:d4:f0:b9:
18:e1:b3:1d:dd:20:94:44:dd:2d:fd:6e:0c:ee:52:a7:9b:2d:
e3:c5:35:fd:7e:8b:22:2d:36:aa:84:d7:cc:bb:55:98:6f:e7:
c6:f0:ea:b4:06:6a:32:d5:fa:52:49:69:d8:7c:46:21:97:d0:
93:95:78:b8:f7:9a:f6:b4:5d:44:b4:e3:06:e9:53:cd:d6:0f:
24:38:4b:8b:d4:7f:a4:2b:aa:83:f4:b3:60:5c:e8:ea:e5:4e:
63:b0:32:32:63:94:3d:01:61:31:cb:63:49:da:cb:a7:c1:8d:
15:04:7d:28:ed:b4:5c:54:5f:a7:6a:8e:46:b6:5c:33:7b:56:
c8:43:f1:a9:8d:ae:e2:2d:00:c7:0b:27:32:f0:17:01:a7:8e:
b8:07:26:31:40:25:b1:3f:a0:7e:06:11:3f:1d:18:a4:bb:05:
05:11:38:d6:bd:e0:67:4b:e3:20:02:54:8b:a2:6c:9c:08:49:
31:56:a3:20:24:b8:eb:4b:c3:71:6a:04:1e:c6:84:50:5a:20:
49:f8:83:bd:46:1e:36:ee:bf:a9:ef:fd:7a:e0:5e:9a:70:96:
a1:72:a3:f0:95:d8:93:59:d0:17:c6:f9:8e:8c:25:2c:a9:3e:
99:65:2d:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:01:57 2025 by rpki-client