Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/210fbb-aa6e-49c9-918b-5558a8b53e3d/1/RLeyW7lqx5hu9s9VIH-LZ4c9FSQ.roa
File: RLeyW7lqx5hu9s9VIH-LZ4c9FSQ.roa (raw, json)
Hash identifier: 8qkFZX4fO9IGCK+/hjULowdb/hcL+0qKwz4xQec6iUE=
Subject key identifier: 44:B7:B2:5B:B9:6A:C7:98:6E:F6:CF:55:20:7F:8B:67:87:3D:15:24
Certificate issuer: /CN=4da84d247ce37cdccf06e1571d226a2b85677bcd
Certificate serial: 0194E44EDA5A8DFA043CCE347617C7272B71
Authority key identifier: 4D:A8:4D:24:7C:E3:7C:DC:CF:06:E1:57:1D:22:6A:2B:85:67:7B:CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TahNJHzjfNzPBuFXHSJqK4Vne80.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/210fbb-aa6e-49c9-918b-5558a8b53e3d/1/RLeyW7lqx5hu9s9VIH-LZ4c9FSQ.roa
Signing time: Sat 08 Feb 2025 06:46:00 +0000
ROA not before: Sat 08 Feb 2025 06:46:00 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 207709
IP address blocks: 185.174.69.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:e4:4e:da:5a:8d:fa:04:3c:ce:34:76:17:c7:27:2b:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4da84d247ce37cdccf06e1571d226a2b85677bcd
Validity
Not Before: Feb 8 06:46:00 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=44b7b25bb96ac7986ef6cf55207f8b67873d1524
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:57:6a:66:68:b5:18:d6:1b:05:fb:6e:11:03:
f7:64:38:28:4c:86:eb:c6:23:42:01:b8:fb:09:78:
bf:42:b9:ef:f7:0c:3e:74:54:09:e1:af:07:71:d2:
c4:d1:c7:7a:fa:f8:f5:ab:a6:e7:7b:f5:cc:09:cf:
3a:9d:c6:8d:45:e3:e4:1e:08:bc:24:18:d0:3a:18:
22:f2:09:2c:c2:ba:eb:88:90:c7:59:5b:26:1e:41:
85:47:96:31:60:3a:6e:2b:09:b3:ba:91:6a:b5:5b:
fb:b9:7a:1a:f0:46:61:f0:7c:6b:f0:4d:1d:83:8c:
04:78:8f:b9:29:5a:7d:8f:91:31:70:9c:49:9f:69:
0a:19:5b:64:26:43:08:a2:97:8f:da:60:21:96:52:
9c:2a:db:f3:fc:90:d3:24:01:07:ae:0f:3e:fe:0f:
cd:0c:a4:31:19:0e:39:0f:22:bd:e4:a1:e9:ec:90:
35:f4:f6:03:8e:fd:bb:36:bb:96:b2:78:5d:5c:57:
39:9f:0e:7e:b2:72:36:2f:66:6b:0f:e2:79:30:59:
ac:09:61:12:80:96:dc:42:d8:99:10:78:87:7e:d1:
97:aa:31:48:a1:da:55:95:8e:20:25:bb:a1:e8:d3:
c6:5f:c9:ad:44:70:30:7c:15:06:80:3f:0f:eb:7e:
e6:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:B7:B2:5B:B9:6A:C7:98:6E:F6:CF:55:20:7F:8B:67:87:3D:15:24
X509v3 Authority Key Identifier:
keyid:4D:A8:4D:24:7C:E3:7C:DC:CF:06:E1:57:1D:22:6A:2B:85:67:7B:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TahNJHzjfNzPBuFXHSJqK4Vne80.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/210fbb-aa6e-49c9-918b-5558a8b53e3d/1/RLeyW7lqx5hu9s9VIH-LZ4c9FSQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/210fbb-aa6e-49c9-918b-5558a8b53e3d/1/TahNJHzjfNzPBuFXHSJqK4Vne80.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.174.69.0/24
Signature Algorithm: sha256WithRSAEncryption
ad:4b:0d:1e:80:da:d5:72:db:8a:60:e1:8f:76:40:62:6b:29:
34:bf:eb:95:d3:6b:0b:55:4e:5c:6c:11:9a:75:94:6e:00:9d:
49:6b:2b:44:14:2e:ec:c2:9e:b3:55:8f:da:8e:56:a5:9b:96:
36:65:59:d2:fc:91:57:c2:aa:75:37:28:32:6e:12:87:3d:bf:
d0:b2:1c:b0:b9:be:6e:2a:5c:c1:c7:3f:67:3f:71:c6:26:65:
de:0e:eb:0b:b4:d3:24:82:7b:17:54:0b:c8:28:bf:73:c6:fa:
15:4b:7d:da:57:b2:76:81:64:45:7b:cc:a2:aa:ba:79:c6:7a:
c0:4a:6a:f0:e9:a1:42:95:5e:7a:cf:81:82:fd:08:83:6e:5a:
87:3c:5f:b0:16:ac:d2:57:80:24:d2:dc:ec:5c:63:03:5f:07:
dc:b0:9a:76:24:27:65:b0:1d:82:ef:a3:a2:9f:ab:4f:9b:52:
e7:95:0a:27:c2:a2:13:66:b6:84:e1:b3:24:3f:f7:e3:78:4f:
27:9e:5a:c6:23:75:2e:97:59:03:7a:76:fc:bb:c2:02:77:ef:
07:25:bd:56:99:29:06:b2:06:0a:68:fe:7d:98:3b:9c:7f:78:
c8:c3:52:59:2c:44:ca:c3:ba:6e:0b:d0:55:06:36:90:dc:3b:
65:fc:57:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 05:33:18 2025 by rpki-client