Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/2e5c49-0d74-487a-a81c-9174df4ddb9a/1/N5hZORY6BH0_7cHTBNOVNkVCEYU.roa
File: N5hZORY6BH0_7cHTBNOVNkVCEYU.roa (raw, json)
Hash identifier: WR+MD/xxBtQVHPY1qaKKu6KnkMSkFI0jT+q93Z2CIUM=
Subject key identifier: 37:98:59:39:16:3A:04:7D:3F:ED:C1:D3:04:D3:95:36:45:42:11:85
Certificate issuer: /CN=b799ac989c44b2e1cdabc258e96ca93caad4bd64
Certificate serial: 01941F8C3EF592845BE8001EFD52F40BF25C
Authority key identifier: B7:99:AC:98:9C:44:B2:E1:CD:AB:C2:58:E9:6C:A9:3C:AA:D4:BD:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t5msmJxEsuHNq8JY6WypPKrUvWQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/2e5c49-0d74-487a-a81c-9174df4ddb9a/1/N5hZORY6BH0_7cHTBNOVNkVCEYU.roa
Signing time: Wed 01 Jan 2025 01:47:52 +0000
ROA not before: Wed 01 Jan 2025 01:47:52 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 204517
IP address blocks: 185.242.138.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:8c:3e:f5:92:84:5b:e8:00:1e:fd:52:f4:0b:f2:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b799ac989c44b2e1cdabc258e96ca93caad4bd64
Validity
Not Before: Jan 1 01:47:52 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=37985939163a047d3fedc1d304d3953645421185
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:72:1a:b7:e0:e6:37:c3:f3:e7:30:e3:21:a2:
b8:00:8b:63:ce:10:9a:07:22:77:6c:83:65:19:3e:
c5:cb:5b:f0:31:20:df:01:50:28:c2:91:bd:3f:23:
19:ab:44:2c:f9:03:87:d3:94:22:67:42:fa:3d:4c:
83:d9:d1:e0:ec:da:32:68:8b:27:d8:3c:92:cf:b6:
2d:41:33:38:f5:5c:f2:17:3a:11:28:bb:1a:43:52:
42:e7:70:eb:22:eb:fd:53:5f:de:bd:0f:cb:c8:a5:
cd:28:04:33:fb:e5:97:3d:fe:ad:b2:93:7e:b1:35:
ca:21:96:61:09:a1:60:55:00:ee:b0:ab:65:93:09:
be:2a:68:83:ad:85:1a:0c:4b:f1:b0:f0:be:21:72:
22:b1:03:61:0d:7f:c7:25:a5:e0:5b:f3:07:f3:f4:
90:cc:44:d5:3c:60:2f:c1:ee:45:31:b9:8d:e8:cb:
98:2f:c6:53:0f:00:dd:54:f8:1f:65:aa:5a:59:ba:
b8:65:70:d1:3e:82:cb:ee:72:06:cc:b5:c3:27:f7:
0a:af:e9:db:36:5d:36:48:20:d5:3e:cd:30:ca:50:
1f:aa:67:88:f9:43:ae:fa:d1:62:d4:22:3f:37:aa:
28:07:6a:cf:d6:f4:02:b0:fe:3f:82:d4:71:f9:32:
35:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:98:59:39:16:3A:04:7D:3F:ED:C1:D3:04:D3:95:36:45:42:11:85
X509v3 Authority Key Identifier:
keyid:B7:99:AC:98:9C:44:B2:E1:CD:AB:C2:58:E9:6C:A9:3C:AA:D4:BD:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t5msmJxEsuHNq8JY6WypPKrUvWQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/2e5c49-0d74-487a-a81c-9174df4ddb9a/1/N5hZORY6BH0_7cHTBNOVNkVCEYU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/2e5c49-0d74-487a-a81c-9174df4ddb9a/1/t5msmJxEsuHNq8JY6WypPKrUvWQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.242.138.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:cb:63:52:31:f4:69:29:c2:84:7a:02:5d:da:88:6e:ad:8f:
66:42:c7:b9:2b:bf:7e:59:dc:6e:f6:27:2a:76:24:b9:23:87:
8f:e1:07:64:0d:0b:dd:a0:e2:bf:45:ce:d0:56:3b:f8:23:9f:
21:a6:42:71:e6:53:73:ab:f5:3b:e6:42:ee:db:08:04:cd:a9:
c0:50:7a:a5:13:22:a3:74:75:2e:25:9d:fe:77:b4:11:1a:71:
35:96:92:bf:e9:08:71:52:bf:8e:4e:54:cd:77:58:fd:a9:46:
d1:4a:d2:f2:f0:50:ec:ef:26:36:81:e4:7b:92:30:59:e0:18:
6a:4e:12:a3:ea:af:a8:50:f4:50:af:6c:70:f9:70:5e:85:47:
79:3d:9e:51:da:8a:53:ff:67:72:76:09:af:23:bb:59:02:6e:
ec:19:11:36:5a:f5:cf:8b:57:db:8c:58:0a:44:3e:2c:25:8f:
47:c7:15:7b:dd:3d:90:a0:c3:6a:c7:21:b4:c5:4e:b7:23:cd:
00:08:66:e2:3f:2d:ed:00:f8:1d:91:f3:e4:a2:b4:f4:07:68:
2e:b9:74:9f:a4:4d:f4:4b:d7:39:89:93:9e:d5:26:3b:75:68:
76:ab:4c:b3:25:a1:16:03:90:5b:b7:9a:ce:99:70:21:d4:6f:
db:2f:04:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 20:16:26 2025 by rpki-client