Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/a9399b-f867-4802-8c67-dbf2b3769445/1/_qAUmpmDNefd9UH0oGsDdu0Dm10.roa
File: _qAUmpmDNefd9UH0oGsDdu0Dm10.roa (raw, json)
Hash identifier: dhnP4xuQumbVUsoW5XRDL/9RukaAPXCZivf9aCXaQyU=
Subject key identifier: FE:A0:14:9A:99:83:35:E7:DD:F5:41:F4:A0:6B:03:76:ED:03:9B:5D
Certificate issuer: /CN=0a97c0c818868373c4014715053adaf61af1da1d
Certificate serial: 019422FB4F3C53BE284F7B0444FA491D5454
Authority key identifier: 0A:97:C0:C8:18:86:83:73:C4:01:47:15:05:3A:DA:F6:1A:F1:DA:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CpfAyBiGg3PEAUcVBTra9hrx2h0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/a9399b-f867-4802-8c67-dbf2b3769445/1/_qAUmpmDNefd9UH0oGsDdu0Dm10.roa
Signing time: Wed 01 Jan 2025 17:48:02 +0000
ROA not before: Wed 01 Jan 2025 17:48:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 60068
IP address blocks: 185.180.14.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:fb:4f:3c:53:be:28:4f:7b:04:44:fa:49:1d:54:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0a97c0c818868373c4014715053adaf61af1da1d
Validity
Not Before: Jan 1 17:48:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=fea0149a998335e7ddf541f4a06b0376ed039b5d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:ae:03:f2:1e:09:ff:92:3b:49:dd:33:e5:0c:
f5:2d:ec:5e:58:c9:da:49:c6:fe:24:a8:f7:35:c5:
d8:b2:78:06:c9:3d:c0:34:ae:52:af:cb:7b:10:3c:
e9:18:62:3e:24:b4:03:d4:93:08:08:44:6a:ff:bc:
0c:dd:d4:01:bd:6c:f6:5f:33:5b:64:a2:3f:ba:33:
bc:e5:26:bf:9e:df:e9:45:70:9f:f6:2b:e1:53:b8:
99:86:01:b1:02:5d:62:89:25:f9:96:9f:da:c0:73:
91:5d:78:fe:b7:ae:2b:5b:c1:cd:a7:40:36:1d:ac:
ac:b3:00:e6:7d:90:16:53:2f:9f:a4:dd:81:e3:02:
fa:b1:5e:86:86:91:32:93:3b:25:86:04:4b:2c:15:
81:ca:c8:84:88:1b:62:55:4c:02:b5:ba:b4:94:fe:
4e:f8:f2:11:99:48:30:1f:fb:ec:a3:7e:f3:0d:2c:
14:e4:d4:1b:53:ec:d2:e3:de:34:d3:80:4d:4e:c8:
87:d4:45:4e:e5:ca:4e:c8:d5:bb:5f:6c:af:32:24:
ae:d7:4f:46:78:0e:08:f8:a4:38:cd:b4:e2:78:ed:
1c:ee:bc:ba:76:ef:6e:ba:72:9a:4b:bf:89:a8:8a:
3d:3b:32:5f:84:7d:0e:6c:e7:17:11:cc:9c:ec:2a:
2c:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:A0:14:9A:99:83:35:E7:DD:F5:41:F4:A0:6B:03:76:ED:03:9B:5D
X509v3 Authority Key Identifier:
keyid:0A:97:C0:C8:18:86:83:73:C4:01:47:15:05:3A:DA:F6:1A:F1:DA:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CpfAyBiGg3PEAUcVBTra9hrx2h0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/a9399b-f867-4802-8c67-dbf2b3769445/1/_qAUmpmDNefd9UH0oGsDdu0Dm10.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/a9399b-f867-4802-8c67-dbf2b3769445/1/CpfAyBiGg3PEAUcVBTra9hrx2h0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.180.14.0/23
Signature Algorithm: sha256WithRSAEncryption
50:66:ed:62:81:05:6a:26:7f:f6:58:f1:3f:7e:c9:f8:3e:d9:
f9:9c:8e:eb:4a:17:a6:8a:39:4e:fd:68:ea:84:89:64:4e:cc:
7a:0f:5e:80:9e:d8:59:13:cd:c6:38:40:7d:85:ce:fa:9d:c5:
a1:9e:c1:5f:56:47:d6:b3:50:43:4c:3e:39:ab:6a:ea:ce:fd:
43:5a:62:a8:9a:68:fb:77:fc:e6:58:fb:b8:95:3c:ae:51:82:
40:38:f5:c9:a2:18:f0:bf:01:38:87:ac:ca:f9:01:2d:c3:99:
52:27:00:3b:c6:77:49:76:a7:a7:fe:63:7d:b9:64:db:8e:12:
5c:20:7f:4c:76:c6:ff:ed:4f:b4:a6:0f:d1:02:80:62:89:bb:
6c:ce:69:08:bd:a6:87:24:1c:1c:a4:da:54:1d:77:7c:f3:94:
06:17:58:17:3f:7e:53:f4:5f:bd:9b:f7:1a:eb:35:35:b7:6b:
d4:56:61:95:9c:90:ee:f1:f9:6d:e6:fe:c9:7b:dc:93:d1:70:
63:f3:34:3c:8b:55:c5:93:db:94:e0:ab:e8:87:0b:a7:4a:ca:
8f:9d:06:b8:cc:de:f2:06:87:d8:f0:9c:0e:38:33:ff:fa:79:
78:31:2a:f8:cd:60:ab:20:96:e9:e2:d1:de:07:2d:76:fb:37:
ac:a9:9d:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 23:18:53 2025 by rpki-client