Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/705aad-59b2-474e-a3d8-bf34d01f8b0a/1/ItVJPK2mLPB9FvjsYvA3kQUwYMo.roa
File: ItVJPK2mLPB9FvjsYvA3kQUwYMo.roa (raw, json)
Hash identifier: 1Z3qdwF8M3C1Jp6cQIQ9f/sPtjEFM+fpGWKdDGskejw=
Subject key identifier: 22:D5:49:3C:AD:A6:2C:F0:7D:16:F8:EC:62:F0:37:91:05:30:60:CA
Certificate issuer: /CN=09f93d62beb75bb4232dcd052d270276d36f8573
Certificate serial: 019422FBB80B15DA7CB5250181F9A2E5BACF
Authority key identifier: 09:F9:3D:62:BE:B7:5B:B4:23:2D:CD:05:2D:27:02:76:D3:6F:85:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Cfk9Yr63W7QjLc0FLScCdtNvhXM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/705aad-59b2-474e-a3d8-bf34d01f8b0a/1/ItVJPK2mLPB9FvjsYvA3kQUwYMo.roa
Signing time: Wed 01 Jan 2025 17:48:29 +0000
ROA not before: Wed 01 Jan 2025 17:48:29 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 8544
IP address blocks: 185.141.194.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:fb:b8:0b:15:da:7c:b5:25:01:81:f9:a2:e5:ba:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09f93d62beb75bb4232dcd052d270276d36f8573
Validity
Not Before: Jan 1 17:48:29 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=22d5493cada62cf07d16f8ec62f03791053060ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:93:19:e5:d3:72:b4:1c:db:2c:57:7c:c7:ee:
77:69:1a:46:30:f6:51:af:d3:e8:64:7d:22:55:3e:
61:f3:fc:d3:ee:cd:d6:01:f3:12:00:dd:f3:16:b9:
bf:42:ba:ff:d2:b0:22:99:ae:c1:33:fd:a7:9f:a8:
17:b8:95:fb:81:25:93:1f:30:d9:11:dd:65:9f:25:
8b:d7:b1:af:f3:e7:11:fe:25:1c:08:0c:3b:9d:66:
03:21:86:f5:1d:58:61:a4:86:54:6a:7a:3f:a6:ac:
c4:c7:ad:a6:74:65:d5:0a:33:a0:17:82:50:f8:4f:
b3:b8:8a:6b:5c:24:e3:61:ef:f2:a5:60:82:bd:3a:
18:d3:1f:3c:02:20:78:6b:0b:79:c6:21:75:d9:a5:
5d:06:cd:c1:71:ff:6c:1b:47:9c:83:a9:5d:01:a3:
24:cc:d8:d4:d1:60:20:2d:9a:5a:fb:aa:04:b0:9b:
8d:3a:6f:50:c6:c7:ca:a2:7b:2d:07:75:ac:33:27:
8c:7d:20:72:58:d4:15:c2:c1:94:65:2b:17:aa:08:
db:2c:14:b8:5e:b6:f7:93:89:e9:c1:96:1c:27:4d:
b1:f3:f5:41:cc:52:ce:a8:b9:76:60:23:a4:5a:c8:
32:89:d0:a5:91:d1:f2:0c:0c:79:8d:04:6c:59:f5:
94:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:D5:49:3C:AD:A6:2C:F0:7D:16:F8:EC:62:F0:37:91:05:30:60:CA
X509v3 Authority Key Identifier:
keyid:09:F9:3D:62:BE:B7:5B:B4:23:2D:CD:05:2D:27:02:76:D3:6F:85:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Cfk9Yr63W7QjLc0FLScCdtNvhXM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/705aad-59b2-474e-a3d8-bf34d01f8b0a/1/ItVJPK2mLPB9FvjsYvA3kQUwYMo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/705aad-59b2-474e-a3d8-bf34d01f8b0a/1/Cfk9Yr63W7QjLc0FLScCdtNvhXM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.141.194.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:4f:c5:1d:28:59:9f:1a:3d:4e:96:3c:a5:de:b8:16:34:54:
55:6c:93:73:07:f1:65:15:cb:fa:1a:a1:76:76:09:06:da:eb:
8b:11:4b:fb:3b:35:e0:24:73:29:4a:cb:91:31:f7:81:e6:2b:
4d:da:4b:6a:2d:cb:f3:76:64:24:69:0a:a3:3a:7b:82:e4:c4:
1c:0b:bc:93:ce:71:4a:49:da:17:7b:92:9f:8b:1b:d9:35:9f:
64:64:27:2b:8f:da:9c:71:70:19:b6:02:75:75:6d:90:be:5d:
d5:0e:df:79:6c:56:8b:be:d1:b8:97:91:45:79:a9:0e:1b:34:
48:36:b9:a2:83:5b:e7:c6:52:3d:18:6a:66:73:d4:50:06:d6:
aa:d9:5e:51:3b:c6:77:f7:f9:26:f0:8d:bd:1a:ab:5d:2a:6f:
63:72:94:35:5e:a5:a4:8e:16:7b:ff:eb:f3:16:03:36:4f:53:
04:1a:9b:90:89:22:34:24:21:9a:87:7b:c9:27:c4:eb:4b:bc:
dc:cf:18:9c:92:f3:ee:f1:1e:18:29:8b:99:a6:2d:7e:66:d9:
55:65:b2:34:51:93:7d:8e:e6:ef:d4:b0:f7:80:07:c0:84:01:
8a:7b:ae:65:65:fd:fc:1e:1c:f6:c8:9f:94:cd:60:1c:91:14:
8c:1e:c9:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 12:23:15 2025 by rpki-client