Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/1125a2-4432-483f-a00b-616d97a77bd6/1/jDhY9lJarfFb_P6q8Kby7kLWEAY.roa
File: jDhY9lJarfFb_P6q8Kby7kLWEAY.roa (raw, json)
Hash identifier: SOA2ZGT8Sy+sStiRmr2h6ihdJGvdu48NZwhiVATrK5o=
Subject key identifier: 8C:38:58:F6:52:5A:AD:F1:5B:FC:FE:AA:F0:A6:F2:EE:42:D6:10:06
Certificate issuer: /CN=6085397f26a044caef6a6b669287331aa4d68645
Certificate serial: 01856FF943AF8BFE2B3E3165A6F095AB1655
Authority key identifier: 60:85:39:7F:26:A0:44:CA:EF:6A:6B:66:92:87:33:1A:A4:D6:86:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YIU5fyagRMrvamtmkoczGqTWhkU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/1125a2-4432-483f-a00b-616d97a77bd6/1/jDhY9lJarfFb_P6q8Kby7kLWEAY.roa
Signing time: Mon 02 Jan 2023 00:54:44 +0000
ROA not before: Mon 02 Jan 2023 00:54:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61138
IP address blocks: 185.244.95.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:f9:43:af:8b:fe:2b:3e:31:65:a6:f0:95:ab:16:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6085397f26a044caef6a6b669287331aa4d68645
Validity
Not Before: Jan 2 00:54:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8c3858f6525aadf15bfcfeaaf0a6f2ee42d61006
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:a6:c2:9c:23:64:31:37:76:50:62:9d:ae:8b:
3e:82:dd:93:7f:14:cc:50:93:09:a6:e7:2a:8f:56:
44:27:d3:0b:23:fe:be:b5:38:e7:d5:69:51:db:69:
23:a6:c4:07:3a:be:bc:2f:aa:d6:c2:cb:cd:ce:33:
d0:75:7b:24:73:db:32:e4:29:63:1a:38:87:5c:18:
e8:94:35:43:55:cc:dd:5c:7a:80:7d:a0:f4:ef:74:
50:b6:fb:25:9f:dc:e4:01:23:23:6a:e2:ea:d9:eb:
53:d8:d2:0b:c5:78:66:d7:6f:2c:d5:65:a1:70:a1:
f5:a6:14:ca:39:35:f7:e8:1e:00:96:6a:15:e8:b6:
a9:83:bb:0a:49:f0:6c:09:c6:85:be:7c:53:ed:c0:
1b:12:bd:6a:13:01:19:5e:83:ba:d4:eb:9b:82:1d:
21:36:a1:b5:45:64:ed:1d:14:e0:cd:cf:96:d4:68:
ed:52:bf:17:0c:73:ee:4e:85:65:5c:cf:11:9c:b2:
aa:8b:2e:89:e7:b8:70:59:53:13:e2:27:fa:c3:29:
d8:7d:45:a7:31:95:cb:57:74:b0:d5:98:12:9b:9e:
67:63:0f:26:21:44:6d:78:6e:0a:fc:4a:ea:69:e6:
af:bb:f0:63:ce:c9:c0:2f:05:d0:63:25:1e:10:2b:
61:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:38:58:F6:52:5A:AD:F1:5B:FC:FE:AA:F0:A6:F2:EE:42:D6:10:06
X509v3 Authority Key Identifier:
keyid:60:85:39:7F:26:A0:44:CA:EF:6A:6B:66:92:87:33:1A:A4:D6:86:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YIU5fyagRMrvamtmkoczGqTWhkU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/1125a2-4432-483f-a00b-616d97a77bd6/1/jDhY9lJarfFb_P6q8Kby7kLWEAY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/1125a2-4432-483f-a00b-616d97a77bd6/1/YIU5fyagRMrvamtmkoczGqTWhkU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.244.95.0/24
Signature Algorithm: sha256WithRSAEncryption
20:08:f6:2c:0f:90:02:cd:e5:50:6f:04:47:75:db:7b:68:07:
85:49:84:0f:92:b1:e7:77:65:9c:0f:a3:5c:f2:54:35:e5:f5:
48:50:60:34:a6:bd:ec:99:33:c3:99:4a:ab:25:36:b0:a6:22:
d6:98:0e:4b:ae:58:ed:fb:2f:85:fd:98:b1:18:1c:05:aa:d0:
4a:38:22:dc:1c:79:12:54:8b:9e:ce:f0:d1:dd:55:4f:99:eb:
cf:95:d3:0c:53:29:42:b7:d3:60:99:d9:56:62:48:82:89:d0:
e3:81:6b:7a:d9:5a:f6:bf:54:9e:6f:a5:8b:6a:75:28:90:f9:
91:bf:83:22:9b:a3:8d:29:4d:77:1b:d6:6b:ae:34:53:a7:f9:
84:29:51:7e:a6:3c:5b:5f:24:00:9c:df:ba:1d:ff:6f:e9:22:
10:48:91:62:ab:5c:69:ca:fb:f4:0b:02:07:60:46:e8:d5:f8:
e4:cb:3f:86:15:05:b0:41:e1:eb:cd:e7:9d:8b:10:9a:11:aa:
c5:3e:24:38:d9:a3:e6:bd:10:01:d9:72:35:4d:3b:f9:fd:da:
9e:c3:d6:0f:17:12:0a:72:9b:07:0c:bd:41:bc:8c:c4:10:dc:
87:df:d6:cf:67:59:a0:64:a0:b4:f6:79:f5:7a:d3:90:40:74:
7b:df:de:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 13:27:56 2025 by rpki-client