Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/fb5257-a00f-4de8-9bf5-23644585f280/1/EKmp59MSWlHvxHmjKYYW13ZfnVA.roa
File: EKmp59MSWlHvxHmjKYYW13ZfnVA.roa (raw, json)
Hash identifier: Bbu6P5DunW2wLdxIOr3onNNToCVG9tXvAirFwK74Hoc=
Subject key identifier: 10:A9:A9:E7:D3:12:5A:51:EF:C4:79:A3:29:86:16:D7:76:5F:9D:50
Certificate issuer: /CN=80f5b9798c5096c8da86d0fd91bff64d4055d956
Certificate serial: 01856E38A9BA54648C0F54E62A45E351BFD6
Authority key identifier: 80:F5:B9:79:8C:50:96:C8:DA:86:D0:FD:91:BF:F6:4D:40:55:D9:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gPW5eYxQlsjahtD9kb_2TUBV2VY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/fb5257-a00f-4de8-9bf5-23644585f280/1/EKmp59MSWlHvxHmjKYYW13ZfnVA.roa
Signing time: Sun 01 Jan 2023 16:44:45 +0000
ROA not before: Sun 01 Jan 2023 16:44:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 64267
IP address blocks: 185.182.65.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:38:a9:ba:54:64:8c:0f:54:e6:2a:45:e3:51:bf:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=80f5b9798c5096c8da86d0fd91bff64d4055d956
Validity
Not Before: Jan 1 16:44:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=10a9a9e7d3125a51efc479a3298616d7765f9d50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:dc:ec:f5:58:f7:0c:89:e4:0b:0a:f1:4c:b9:
ee:4f:34:7b:2d:bb:ea:e0:01:52:93:55:86:85:23:
e8:9d:64:83:ab:88:04:5d:da:7c:08:00:6e:69:6d:
83:87:08:10:a5:a7:f6:71:b5:ba:87:18:3c:6f:fb:
14:fa:69:80:c0:6b:e6:61:af:6e:e7:95:38:de:1c:
99:0f:42:85:a3:51:06:fa:69:3e:ae:0b:b7:21:9b:
06:9e:e0:81:ea:e2:2a:75:ca:f2:90:38:6d:ca:bd:
59:fe:0d:14:f9:3b:c3:44:d2:15:f2:9f:2d:bd:85:
d6:24:fe:e2:08:c2:f5:e5:85:b7:29:b9:23:e4:ea:
c2:9f:b8:02:80:cd:66:35:d4:38:1d:13:d8:c3:a7:
96:38:2e:be:85:9f:ad:25:1b:34:c9:d1:bb:e6:5a:
24:e8:6c:84:1a:d9:f4:94:d0:12:98:b6:7d:65:8c:
57:f5:23:ad:69:a0:3f:eb:32:02:8a:5e:30:21:84:
b4:ea:ed:d5:8b:21:21:b5:27:58:4e:d2:8c:d9:39:
15:67:4b:c0:da:3c:fc:95:4a:20:1b:dc:39:74:bc:
ef:db:90:a2:19:34:af:6f:94:52:1d:ac:64:49:5e:
3f:7b:39:49:0d:4e:ff:be:1a:df:4c:14:e4:d6:8d:
5e:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:A9:A9:E7:D3:12:5A:51:EF:C4:79:A3:29:86:16:D7:76:5F:9D:50
X509v3 Authority Key Identifier:
keyid:80:F5:B9:79:8C:50:96:C8:DA:86:D0:FD:91:BF:F6:4D:40:55:D9:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gPW5eYxQlsjahtD9kb_2TUBV2VY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/fb5257-a00f-4de8-9bf5-23644585f280/1/EKmp59MSWlHvxHmjKYYW13ZfnVA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/fb5257-a00f-4de8-9bf5-23644585f280/1/gPW5eYxQlsjahtD9kb_2TUBV2VY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.182.65.0/24
Signature Algorithm: sha256WithRSAEncryption
a0:e3:cd:62:0d:93:92:0c:ef:94:97:07:71:fa:66:54:f7:0a:
47:d4:34:e9:7f:32:d0:ec:6e:f2:53:72:49:87:8d:31:24:d4:
a3:ef:4a:30:85:fc:cd:28:80:49:aa:1a:22:2c:d5:bc:c7:ca:
d1:5a:b3:d1:bf:ee:62:c9:d1:aa:98:50:40:0f:84:3c:66:75:
7a:fe:ac:5d:e6:55:bc:cb:10:4a:3b:1e:3d:f6:56:40:dd:9a:
4f:82:76:0e:00:fa:76:35:b0:aa:66:2c:2b:08:c0:63:c5:23:
04:85:cc:07:97:9d:45:c3:30:a0:4d:e3:80:04:ed:5c:cd:32:
64:a4:c5:9c:22:49:2e:2a:19:fb:48:c5:ad:fc:d3:df:02:f8:
8c:10:a1:d8:aa:ce:2e:e4:bb:c3:b7:c4:98:b6:bf:10:16:06:
88:ad:4e:df:1d:a5:61:73:33:be:c4:97:03:b3:7b:07:0d:2e:
02:32:79:23:66:3b:9d:b2:e6:ea:17:02:21:ca:29:8b:37:f5:
58:69:64:36:01:17:a4:e7:f9:ba:97:d5:b2:57:af:f6:24:17:
f6:42:96:37:9b:b5:f4:95:92:11:e8:20:d4:b1:b1:c3:e3:4c:
c8:a9:b9:9d:7e:bf:de:2c:25:35:cf:35:64:99:c0:d6:17:01:
12:c4:7f:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:37:17 2025 by rpki-client