Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/2f830f-af4d-4d33-a300-b98df544bc20/1/uXwQWRGTbp4iQG2hqxNhBERgVfM.roa
File: uXwQWRGTbp4iQG2hqxNhBERgVfM.roa (raw, json)
Hash identifier: ZMVua8ZiPI5nY6upqsZo7sTjSdm1cARPTecfc5Wvr3E=
Subject key identifier: B9:7C:10:59:11:93:6E:9E:22:40:6D:A1:AB:13:61:04:44:60:55:F3
Certificate issuer: /CN=261b941dbe59651fafbba9724a12775e07edb635
Certificate serial: 019421B251211E096E67299407E6DC616662
Authority key identifier: 26:1B:94:1D:BE:59:65:1F:AF:BB:A9:72:4A:12:77:5E:07:ED:B6:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JhuUHb5ZZR-vu6lyShJ3XgfttjU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/2f830f-af4d-4d33-a300-b98df544bc20/1/uXwQWRGTbp4iQG2hqxNhBERgVfM.roa
Signing time: Wed 01 Jan 2025 11:48:41 +0000
ROA not before: Wed 01 Jan 2025 11:48:41 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 8218
IP address blocks: 185.172.152.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:b2:51:21:1e:09:6e:67:29:94:07:e6:dc:61:66:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=261b941dbe59651fafbba9724a12775e07edb635
Validity
Not Before: Jan 1 11:48:41 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b97c105911936e9e22406da1ab136104446055f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:c6:f2:da:68:92:79:25:3e:14:e4:43:5c:31:
e2:f9:42:35:d0:b7:3a:53:3e:d7:c8:3c:71:81:b1:
d6:7a:a8:18:8f:85:92:91:a6:37:ef:1b:72:ab:1c:
bd:49:aa:11:1b:d6:3e:e0:bb:cd:c2:c6:27:ad:70:
3d:6f:d2:de:a0:da:92:d7:00:88:5a:2f:57:02:fb:
26:22:d4:34:09:a9:fb:4b:e2:d1:c4:8a:54:9e:ed:
d5:a0:44:f1:6d:5a:9f:e1:af:41:a7:18:6c:a7:30:
55:4c:6d:93:cf:4d:5f:85:2b:38:db:92:19:32:ea:
d4:c2:15:84:33:5b:30:05:e9:c8:59:44:10:eb:6b:
12:bf:1d:80:7f:9a:da:7f:b7:b9:49:6a:1f:ec:a2:
e2:55:77:4f:29:a7:02:51:77:f7:5d:f2:15:d0:1c:
aa:5f:ec:e3:70:54:99:bb:a4:f6:b0:2d:88:0a:d2:
d9:56:9f:44:3f:c0:f6:31:e7:c5:42:17:ba:8d:ee:
02:c5:46:b1:c9:0c:d4:b6:0d:93:11:f3:9f:ad:9c:
c5:e5:1d:8e:97:71:5a:b7:b0:5d:a2:14:79:89:b7:
bd:d4:b3:fd:8b:0f:ae:8f:40:46:ea:7d:58:80:b8:
e6:ce:36:0f:75:a8:36:6f:17:ad:9b:4a:82:87:91:
03:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:7C:10:59:11:93:6E:9E:22:40:6D:A1:AB:13:61:04:44:60:55:F3
X509v3 Authority Key Identifier:
keyid:26:1B:94:1D:BE:59:65:1F:AF:BB:A9:72:4A:12:77:5E:07:ED:B6:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JhuUHb5ZZR-vu6lyShJ3XgfttjU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/2f830f-af4d-4d33-a300-b98df544bc20/1/uXwQWRGTbp4iQG2hqxNhBERgVfM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/2f830f-af4d-4d33-a300-b98df544bc20/1/JhuUHb5ZZR-vu6lyShJ3XgfttjU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.172.152.0/22
Signature Algorithm: sha256WithRSAEncryption
5c:bf:9a:85:89:cf:17:3a:6e:96:5e:7c:61:b1:cb:8d:3d:12:
1d:88:07:c3:1b:73:d1:f4:43:d5:bc:10:54:f3:65:51:ef:c9:
bd:67:a2:fd:5c:1b:ae:1d:5c:01:e8:04:1f:b7:dd:0a:8e:0b:
36:a0:07:df:b9:46:ce:70:69:81:cf:c0:4b:88:94:6f:ef:40:
ec:7a:a7:a4:24:49:2c:34:e2:6d:e0:3c:c2:48:a3:ea:5a:fe:
07:77:84:ea:bd:41:1a:f0:da:af:cc:c1:d2:c4:a9:f8:be:ae:
49:da:5d:bf:a1:ff:7a:c1:32:11:bc:02:b1:a0:e7:f6:38:3e:
fd:a4:43:da:e0:a6:7c:c6:87:a2:3f:18:5e:c3:7b:ed:b4:a9:
6e:29:63:aa:56:43:d8:c8:7b:4f:e8:bc:51:6b:7f:e9:12:31:
c7:fa:fd:5e:5f:14:db:e4:81:93:fe:bd:8c:78:0c:79:51:df:
6f:30:12:1d:ec:5f:60:c0:97:56:2b:b6:2a:28:ba:6a:87:e2:
84:14:f1:ee:e4:10:24:21:de:75:92:bb:6f:6b:1c:d2:36:c9:
0c:ac:ee:7d:14:af:77:d5:90:36:54:24:a4:2e:83:ca:08:a2:
c8:0f:2f:0e:9e:02:da:18:1e:33:bd:c3:48:43:b8:2f:48:bc:
8e:9a:c9:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 11:19:30 2025 by rpki-client