Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/57zAUxjN80d98_hrUg6wNGuh-LQ.roa
File: 57zAUxjN80d98_hrUg6wNGuh-LQ.roa (raw, json)
Hash identifier: qIcET8+9I+XlvyugPkuqmk4yArAibC2n8LmahOzKwL0=
Subject key identifier: E7:BC:C0:53:18:CD:F3:47:7D:F3:F8:6B:52:0E:B0:34:6B:A1:F8:B4
Certificate issuer: /CN=5dde4b3b82f209b701ae340cf53b974078f16a9f
Certificate serial: 019427B3F7E9C8C0225DC9C55016571E6E79
Authority key identifier: 5D:DE:4B:3B:82:F2:09:B7:01:AE:34:0C:F5:3B:97:40:78:F1:6A:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xd5LO4LyCbcBrjQM9TuXQHjxap8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/57zAUxjN80d98_hrUg6wNGuh-LQ.roa
Signing time: Thu 02 Jan 2025 15:48:13 +0000
ROA not before: Thu 02 Jan 2025 15:48:13 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 52073
IP address blocks: 185.143.241.0/24 maxlen: 24
185.200.246.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:b3:f7:e9:c8:c0:22:5d:c9:c5:50:16:57:1e:6e:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5dde4b3b82f209b701ae340cf53b974078f16a9f
Validity
Not Before: Jan 2 15:48:13 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=e7bcc05318cdf3477df3f86b520eb0346ba1f8b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:c7:26:6f:f4:9f:86:ad:ff:3b:ed:31:65:f0:
04:c1:81:07:69:34:3e:52:b7:f5:35:be:e1:a1:55:
94:bd:97:63:b6:41:67:36:40:24:29:57:ef:9a:1f:
76:2b:f4:71:8e:42:1b:c4:04:05:03:d0:f9:31:7d:
c1:29:44:04:81:11:c5:24:93:3f:e1:a5:ab:6c:36:
41:8c:a9:ba:71:e3:90:ad:c3:93:6a:98:aa:e0:da:
8c:d4:76:31:31:af:19:e6:53:9e:cf:eb:2d:fe:fc:
c4:61:77:76:86:8e:2f:25:d8:23:af:f1:0f:87:5a:
30:86:72:30:79:b9:36:c7:17:2f:1d:68:04:e6:2e:
1e:b7:40:5a:48:6a:5e:58:57:27:1a:d9:a6:2d:72:
52:87:9e:b5:17:e7:df:c2:ef:af:5d:f3:54:d8:ba:
96:18:b0:84:d3:bf:91:8c:93:31:77:86:4f:0c:3f:
7c:2a:74:17:e8:30:1b:b2:fc:66:cd:0b:36:84:be:
84:b3:bf:a3:82:d7:2d:9e:e3:8f:94:66:f0:e7:00:
22:fe:13:16:79:e2:00:4b:57:fe:aa:c5:c5:29:6a:
c9:81:0f:7d:79:78:06:0c:12:70:f9:ef:05:c6:7c:
f6:57:2d:c3:bc:ed:f5:42:67:d0:ca:8a:d3:be:c8:
ac:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:BC:C0:53:18:CD:F3:47:7D:F3:F8:6B:52:0E:B0:34:6B:A1:F8:B4
X509v3 Authority Key Identifier:
keyid:5D:DE:4B:3B:82:F2:09:B7:01:AE:34:0C:F5:3B:97:40:78:F1:6A:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xd5LO4LyCbcBrjQM9TuXQHjxap8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/57zAUxjN80d98_hrUg6wNGuh-LQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/Xd5LO4LyCbcBrjQM9TuXQHjxap8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.143.241.0/24
185.200.246.0/24
Signature Algorithm: sha256WithRSAEncryption
90:b9:f7:4f:98:15:19:bd:ef:75:c0:31:45:e4:69:60:e9:92:
01:7e:9e:98:fe:7c:c4:8d:cd:98:cc:55:ce:72:cb:59:35:a3:
74:5f:82:6d:83:18:b6:09:77:25:7d:f0:c7:88:e0:eb:d1:4b:
d9:f1:32:ae:21:fe:42:aa:24:88:b2:d7:3d:fc:f6:db:b7:1b:
86:e6:33:2e:bc:58:62:bc:a6:4a:2b:85:19:68:29:01:87:44:
be:fd:6a:ec:a1:fa:2c:af:0e:bb:8a:75:87:43:25:7d:dc:1c:
64:d9:eb:66:16:e4:b9:1d:63:9a:11:38:60:d1:2e:c7:01:87:
e0:dd:21:cd:fc:2d:0b:b8:b1:4c:15:c2:3b:a4:76:ca:b9:6a:
a1:f0:79:85:6b:7b:d2:59:38:db:0c:ce:b3:70:61:db:e7:2f:
c0:6d:b4:47:1f:bd:e1:a6:46:94:d6:61:9a:41:c1:8b:b3:00:
6e:55:8a:6f:35:f7:5d:52:5c:92:96:f0:de:74:b9:97:8d:3e:
1b:f0:3c:58:a3:10:a4:7b:18:81:7c:b0:bc:4d:e0:7b:2f:2e:
84:67:0c:97:d4:5d:65:d2:42:37:fb:a6:59:74:57:6a:6d:57:
2f:96:d2:7d:d8:ba:a8:bb:44:a5:02:9a:57:ce:84:14:fd:17:
e4:de:67:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 08:51:09 2025 by rpki-client