Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/f153dc-cbfb-4a4f-80d2-745e08fe58c6/1/XXx0PZbW0VSnHcKqWvct0KGeX5o.roa
File: XXx0PZbW0VSnHcKqWvct0KGeX5o.roa (raw, json)
Hash identifier: fg2kYbNMaJFsDmSVzEYMa+3owPgOnqiysynI+fCXGgg=
Subject key identifier: 5D:7C:74:3D:96:D6:D1:54:A7:1D:C2:AA:5A:F7:2D:D0:A1:9E:5F:9A
Certificate issuer: /CN=b0b5a80a7106e0a4b8545c8150bb72c699fcc9a0
Certificate serial: 0194252143B2BDE03DFE449502156382D5C9
Authority key identifier: B0:B5:A8:0A:71:06:E0:A4:B8:54:5C:81:50:BB:72:C6:99:FC:C9:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sLWoCnEG4KS4VFyBULtyxpn8yaA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/f153dc-cbfb-4a4f-80d2-745e08fe58c6/1/XXx0PZbW0VSnHcKqWvct0KGeX5o.roa
Signing time: Thu 02 Jan 2025 03:48:44 +0000
ROA not before: Thu 02 Jan 2025 03:48:44 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 57844
IP address blocks: 185.93.71.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:21:43:b2:bd:e0:3d:fe:44:95:02:15:63:82:d5:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0b5a80a7106e0a4b8545c8150bb72c699fcc9a0
Validity
Not Before: Jan 2 03:48:44 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=5d7c743d96d6d154a71dc2aa5af72dd0a19e5f9a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:ca:87:88:ea:69:76:3a:40:06:64:c7:f4:19:
97:f6:5e:c4:54:c6:61:77:93:1e:b8:b9:40:80:41:
0f:59:00:c1:cf:a3:00:45:53:41:d2:1d:a3:9d:76:
6b:06:28:04:09:28:13:3b:3b:c1:cc:b3:06:8b:0b:
75:cb:ce:76:b2:5c:c6:22:51:96:3d:c4:6c:91:5a:
1d:c5:ac:d7:66:21:b1:51:21:d8:8c:31:cb:17:d3:
67:e5:60:47:83:44:1e:50:fd:8d:13:9d:ad:43:86:
ff:6c:a0:1a:13:0e:88:70:ce:80:41:74:7b:e5:2e:
4e:5c:84:b5:35:5a:61:24:ee:52:21:a0:bc:7d:78:
1e:03:3e:b1:bc:c5:f0:90:f3:91:17:26:4b:56:01:
fd:70:20:28:bd:d3:d1:bb:56:53:86:e2:a2:59:97:
21:4f:79:fd:6d:e8:94:b1:c9:4d:8f:70:c4:fc:93:
b4:32:02:2d:e1:21:e4:57:c8:4b:2d:44:a6:d5:81:
33:ff:41:b9:65:e8:07:2a:3d:28:50:47:3c:ba:1e:
4c:f0:8c:57:20:58:01:b0:c2:9a:91:a2:b4:e4:fd:
ad:94:75:8a:32:ed:bf:bc:08:fc:6b:92:e4:96:ca:
e6:4e:d2:41:57:f1:b1:8f:ba:fd:e7:38:4e:cd:24:
2a:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:7C:74:3D:96:D6:D1:54:A7:1D:C2:AA:5A:F7:2D:D0:A1:9E:5F:9A
X509v3 Authority Key Identifier:
keyid:B0:B5:A8:0A:71:06:E0:A4:B8:54:5C:81:50:BB:72:C6:99:FC:C9:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sLWoCnEG4KS4VFyBULtyxpn8yaA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/f153dc-cbfb-4a4f-80d2-745e08fe58c6/1/XXx0PZbW0VSnHcKqWvct0KGeX5o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/f153dc-cbfb-4a4f-80d2-745e08fe58c6/1/sLWoCnEG4KS4VFyBULtyxpn8yaA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.93.71.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:53:10:48:2b:65:62:64:02:59:e1:3b:08:95:00:1b:60:68:
99:c8:03:e5:7a:b3:f2:1b:bd:60:a5:ca:a2:68:27:99:0c:47:
fc:04:9c:69:7c:40:21:34:9b:f9:58:fe:a0:92:cc:bc:07:40:
3a:51:84:2f:2f:d0:b3:23:3c:e3:b2:20:b7:a0:8c:2b:4e:41:
99:00:94:b3:62:52:28:d9:c7:03:dc:db:ce:b7:d2:13:d5:f3:
63:f6:8c:26:8f:8d:d0:df:8e:76:64:0c:96:82:fc:1d:5b:3b:
39:bd:a5:18:b4:4b:2a:d6:8e:9c:b3:e6:4c:5d:3b:6b:2a:85:
d1:80:4a:df:00:c9:21:4b:13:63:a2:42:27:86:7a:7a:5e:db:
ca:9c:5c:f3:0e:19:3e:9c:ab:52:27:d0:6e:02:aa:55:f0:b8:
fb:d7:4a:cf:68:d7:42:fb:a1:26:fd:47:9d:b9:ee:64:92:ce:
39:97:35:f7:e4:0a:a3:f5:34:12:fa:27:3c:47:46:29:37:5b:
2b:84:58:5a:b8:cf:0b:1d:97:05:5b:11:d9:4d:b5:04:ca:63:
b7:f2:50:b1:70:bb:b5:67:b7:66:c0:6e:f1:d0:c8:bd:d6:86:
9c:72:6f:1d:28:8c:03:bc:00:11:92:5e:96:00:58:53:b0:e1:
c2:84:c5:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 18:19:42 2025 by rpki-client