Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/253f2c-4ed9-4f1f-a96f-deff71124233/1/qoEqQd-KonLGkAm_wguz4NaqHfs.roa
File: qoEqQd-KonLGkAm_wguz4NaqHfs.roa (raw, json)
Hash identifier: E6NKTVGy2K4uHsRTO20RHuS+xHYcScb4tSIex+a8NyU=
Subject key identifier: AA:81:2A:41:DF:8A:A2:72:C6:90:09:BF:C2:0B:B3:E0:D6:AA:1D:FB
Certificate issuer: /CN=64cfba184ff9442a8fe7517b503a9e017fa9f2cb
Certificate serial: 019424B39056FA62341E6B45067FB50066DB
Authority key identifier: 64:CF:BA:18:4F:F9:44:2A:8F:E7:51:7B:50:3A:9E:01:7F:A9:F2:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZM-6GE_5RCqP51F7UDqeAX-p8ss.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/253f2c-4ed9-4f1f-a96f-deff71124233/1/qoEqQd-KonLGkAm_wguz4NaqHfs.roa
Signing time: Thu 02 Jan 2025 01:48:55 +0000
ROA not before: Thu 02 Jan 2025 01:48:55 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 39521
IP address blocks: 185.224.1.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:b3:90:56:fa:62:34:1e:6b:45:06:7f:b5:00:66:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=64cfba184ff9442a8fe7517b503a9e017fa9f2cb
Validity
Not Before: Jan 2 01:48:55 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=aa812a41df8aa272c69009bfc20bb3e0d6aa1dfb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:90:f3:59:56:91:91:6d:77:88:f8:12:f7:5e:
7a:f2:4e:af:60:d1:2d:da:79:6a:c3:4e:5f:f6:71:
0e:ec:07:b6:e1:cf:3b:ad:a3:e7:4d:cf:89:7d:c9:
e2:95:78:4f:97:bd:56:03:8e:e7:a4:78:31:70:66:
bc:00:d3:ee:36:11:88:04:25:ee:81:f9:e9:df:8a:
ba:8a:ac:7c:5a:88:a3:d7:26:29:1f:81:95:fa:2b:
a5:cc:30:79:81:6e:5e:60:bb:dd:e2:c1:98:85:4c:
df:a9:f5:77:68:4a:d6:5b:3f:28:84:f6:6c:b6:d0:
16:18:64:35:a5:66:b4:f8:09:8a:08:d5:6a:11:d0:
61:48:64:81:76:e4:5c:86:66:88:4b:ab:51:65:06:
28:b8:65:38:ab:8a:22:02:7f:92:65:30:11:4c:7a:
72:79:f7:6c:53:11:dc:e9:e2:8d:b9:d4:7b:bb:52:
69:d5:be:0c:f5:0c:3a:77:b4:b1:56:44:b4:19:87:
46:ac:0c:a2:86:15:1f:14:b7:c7:59:54:bc:31:58:
de:ad:45:2e:3e:63:26:94:e8:e9:98:57:fc:cb:97:
8d:a0:d4:29:7f:37:d6:17:08:55:6a:dc:aa:f1:9b:
72:6b:47:ce:6b:87:f7:aa:33:f7:f3:64:13:3b:85:
f4:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:81:2A:41:DF:8A:A2:72:C6:90:09:BF:C2:0B:B3:E0:D6:AA:1D:FB
X509v3 Authority Key Identifier:
keyid:64:CF:BA:18:4F:F9:44:2A:8F:E7:51:7B:50:3A:9E:01:7F:A9:F2:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZM-6GE_5RCqP51F7UDqeAX-p8ss.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/253f2c-4ed9-4f1f-a96f-deff71124233/1/qoEqQd-KonLGkAm_wguz4NaqHfs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/253f2c-4ed9-4f1f-a96f-deff71124233/1/ZM-6GE_5RCqP51F7UDqeAX-p8ss.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.224.1.0/24
Signature Algorithm: sha256WithRSAEncryption
04:b8:0f:49:ba:3c:96:f7:8d:96:bd:34:27:54:d6:04:56:bd:
3b:97:66:b5:dc:e6:f9:b6:e0:3b:ae:ee:ce:04:a4:c5:99:8a:
c5:f6:f2:e6:fb:f3:dd:3b:3a:04:d8:79:0a:9a:de:65:84:10:
78:3d:e8:5c:e0:6d:02:de:67:86:ad:51:d8:ee:5a:5e:24:1c:
7c:73:8d:0b:3b:3e:a1:13:71:ed:40:11:a2:69:63:e5:33:5c:
f4:5a:da:97:7e:36:fb:2a:b2:38:f5:c2:06:42:3c:7f:b3:d2:
4a:43:4f:ec:34:d1:58:c6:4e:f8:38:47:58:7c:c0:3d:1b:fc:
85:d4:00:18:60:88:5c:3d:50:a8:f4:a8:dc:82:fa:a3:0f:f9:
bf:35:ad:77:c6:8c:cf:57:e7:d0:ad:10:18:ff:ad:84:dd:ce:
06:47:0e:2b:b8:e5:a4:18:2a:63:1b:f0:2a:4e:54:88:27:ea:
51:a0:73:a3:a2:75:f0:3e:0c:44:7c:81:59:77:44:13:21:d7:
1f:41:c8:3b:af:3f:cd:35:21:e0:be:e0:35:88:59:68:f4:c5:
d3:f8:5f:8e:c8:36:d2:92:70:c3:e6:fb:4a:08:d3:f6:bb:c9:
cc:3d:a2:35:93:6c:00:75:3b:cc:d8:65:a4:64:52:08:06:47:
21:c1:11:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 02:39:57 2025 by rpki-client