Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/7d0f19-503e-4e77-b5c8-adf618581325/1/pmR24XENWx24qWr3I245JKDqlHM.roa
File: pmR24XENWx24qWr3I245JKDqlHM.roa (raw, json)
Hash identifier: Vd2NWPcWRtlnvDO21AwgNk15d2I2YWEgL8LkP/uWnQY=
Subject key identifier: A6:64:76:E1:71:0D:5B:1D:B8:A9:6A:F7:23:6E:39:24:A0:EA:94:73
Certificate issuer: /CN=18aa756a37d4cfcbc1722ba0440319b47a637255
Certificate serial: 018675381D94F5BAF7CA703450D0F7AFF63E
Authority key identifier: 18:AA:75:6A:37:D4:CF:CB:C1:72:2B:A0:44:03:19:B4:7A:63:72:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GKp1ajfUz8vBciugRAMZtHpjclU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/7d0f19-503e-4e77-b5c8-adf618581325/1/pmR24XENWx24qWr3I245JKDqlHM.roa
Signing time: Tue 21 Feb 2023 18:24:17 +0000
ROA not before: Tue 21 Feb 2023 18:24:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201138
IP address blocks: 185.145.54.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:75:38:1d:94:f5:ba:f7:ca:70:34:50:d0:f7:af:f6:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18aa756a37d4cfcbc1722ba0440319b47a637255
Validity
Not Before: Feb 21 18:24:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a66476e1710d5b1db8a96af7236e3924a0ea9473
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:b3:84:18:73:b4:1d:c9:80:77:9b:5b:20:50:
f8:25:ea:55:d9:20:9b:8d:15:09:01:b7:5c:c2:82:
a1:d7:09:c7:34:b8:7b:50:c6:0e:57:d7:1e:5a:0a:
0b:40:de:58:0d:aa:a0:65:e3:19:aa:70:3f:3a:29:
96:06:53:e3:45:c2:42:b9:b8:c7:4a:2d:2a:b5:50:
16:87:9f:c3:67:18:77:20:6f:7e:2b:42:b2:fa:61:
3e:d6:66:23:e4:3f:2a:99:62:f1:5e:74:14:14:03:
c3:46:07:ad:df:27:bd:d3:c8:24:6f:c9:89:c3:02:
2e:6d:ba:2a:4b:bb:be:5c:a0:c3:1c:42:e5:94:0a:
d7:7f:52:3c:13:62:73:b6:cc:a9:ce:c4:9a:a4:84:
0d:07:a4:18:b1:90:af:f7:16:bc:22:70:6b:04:43:
f2:1b:f0:e5:28:12:e3:a1:23:a4:fb:a5:d3:f8:20:
6f:66:e4:26:c6:a6:67:b7:83:47:3a:e1:f5:f7:68:
d5:fc:2b:11:e0:38:34:be:d1:1f:ac:55:a3:6c:67:
2d:15:43:8f:62:b8:83:82:73:ca:37:c5:1c:0a:9e:
86:21:21:bf:01:c6:58:f1:b4:0e:f5:02:03:19:67:
30:4a:fc:45:09:0f:40:1e:5d:e8:fd:7e:1e:03:05:
6b:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:64:76:E1:71:0D:5B:1D:B8:A9:6A:F7:23:6E:39:24:A0:EA:94:73
X509v3 Authority Key Identifier:
keyid:18:AA:75:6A:37:D4:CF:CB:C1:72:2B:A0:44:03:19:B4:7A:63:72:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GKp1ajfUz8vBciugRAMZtHpjclU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/7d0f19-503e-4e77-b5c8-adf618581325/1/pmR24XENWx24qWr3I245JKDqlHM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/7d0f19-503e-4e77-b5c8-adf618581325/1/GKp1ajfUz8vBciugRAMZtHpjclU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.145.54.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:0f:27:0b:c3:3c:ca:ea:89:f5:2f:41:bf:43:5c:8f:17:67:
dd:ee:1c:9e:9b:ca:9c:35:d3:db:ad:bb:e0:c8:a4:02:fa:dd:
7b:c9:8d:6a:55:26:c3:ce:35:81:a1:41:d3:7e:65:8a:08:a1:
c6:87:12:61:fe:f6:a6:0b:5a:ac:3a:76:92:ba:6d:78:c3:ab:
2b:5b:f5:d2:9d:3b:7e:d8:42:20:03:24:bb:bc:fc:27:82:f1:
0a:0e:fd:33:2d:6f:04:ce:c7:fa:b8:33:97:92:bd:13:18:21:
cf:32:20:ff:f7:8a:05:db:0e:0b:f8:64:75:a3:2f:4a:90:cd:
48:06:1c:e5:0b:f0:a0:6a:19:e7:94:0f:c7:41:5c:5f:1f:b4:
fb:63:9c:35:8a:13:f0:63:62:ce:05:47:23:89:c6:40:5b:c6:
f8:a0:c5:5a:31:f4:8f:ab:82:62:47:de:c2:3b:25:3d:72:02:
af:2f:dd:ba:7d:b7:26:a4:11:91:52:42:e6:d9:f7:40:a0:f6:
9b:8d:db:30:4e:74:a0:24:79:ff:eb:a8:d4:34:a5:3f:c2:2d:
ab:4e:2a:41:24:56:9c:8f:4a:b9:18:cf:ce:9c:c0:49:a9:73:
75:b6:37:06:e4:08:96:73:1b:bf:49:b5:ea:1c:79:62:72:e5:
68:73:37:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 01:28:30 2025 by rpki-client