Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/NmoYPoFsB3H-yWZn9Rb0NDz1MJ4.roa
File: NmoYPoFsB3H-yWZn9Rb0NDz1MJ4.roa (raw, json)
Hash identifier: FwqkjteV8mEkwCHBz60OLk0gwsGOE+XgtXFsarBN/XQ=
Subject key identifier: 36:6A:18:3E:81:6C:07:71:FE:C9:66:67:F5:16:F4:34:3C:F5:30:9E
Certificate issuer: /CN=5dde4b3b82f209b701ae340cf53b974078f16a9f
Certificate serial: 019427B3F70881975FC5BEE2C7BB87F270F5
Authority key identifier: 5D:DE:4B:3B:82:F2:09:B7:01:AE:34:0C:F5:3B:97:40:78:F1:6A:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xd5LO4LyCbcBrjQM9TuXQHjxap8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/NmoYPoFsB3H-yWZn9Rb0NDz1MJ4.roa
Signing time: Thu 02 Jan 2025 15:48:13 +0000
ROA not before: Thu 02 Jan 2025 15:48:13 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 21859
IP address blocks: 185.200.244.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:b3:f7:08:81:97:5f:c5:be:e2:c7:bb:87:f2:70:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5dde4b3b82f209b701ae340cf53b974078f16a9f
Validity
Not Before: Jan 2 15:48:13 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=366a183e816c0771fec96667f516f4343cf5309e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:29:db:12:8a:09:e6:8d:13:16:d2:75:f1:b4:
46:45:76:78:87:94:ef:08:df:d1:14:ef:59:28:e8:
af:00:ed:8f:56:e8:68:4a:c5:97:5e:15:b3:5f:ec:
36:f8:37:b7:7a:8c:43:06:46:e2:81:8f:79:d1:c5:
e2:4e:35:82:de:0a:4f:26:2a:ad:39:e8:5c:09:87:
b2:fa:c3:08:c8:0b:7c:f3:fb:8c:d8:43:38:54:d1:
b7:a8:e6:59:6f:0b:7d:b2:f8:ff:d4:18:0b:41:88:
a0:db:a2:10:a8:6f:60:a0:fe:9b:2e:85:ed:90:05:
d6:bc:5a:42:4a:3e:37:fe:84:30:b6:a0:b2:bd:ae:
88:9d:5e:88:b2:d0:49:a3:14:c3:23:55:7e:d0:d1:
8e:f6:a1:1b:a1:65:23:cc:c9:17:8e:da:5e:b7:8e:
f3:55:15:ac:70:49:c8:b0:a7:91:1e:b4:87:54:35:
1d:67:67:5e:05:f0:ca:e9:52:6a:ce:ab:d2:42:5e:
25:44:63:38:10:b3:6e:f4:00:6b:f8:df:aa:f8:2d:
04:77:9a:55:35:77:5d:05:6c:23:04:62:e7:1f:7b:
aa:09:ab:ed:6c:d1:89:96:4b:79:95:65:ba:92:31:
95:fc:93:45:f5:a8:3f:e3:85:dd:0d:1f:c6:db:4c:
0a:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:6A:18:3E:81:6C:07:71:FE:C9:66:67:F5:16:F4:34:3C:F5:30:9E
X509v3 Authority Key Identifier:
keyid:5D:DE:4B:3B:82:F2:09:B7:01:AE:34:0C:F5:3B:97:40:78:F1:6A:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xd5LO4LyCbcBrjQM9TuXQHjxap8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/NmoYPoFsB3H-yWZn9Rb0NDz1MJ4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/Xd5LO4LyCbcBrjQM9TuXQHjxap8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.200.244.0/24
Signature Algorithm: sha256WithRSAEncryption
27:5d:e2:a1:4f:c5:cd:97:64:2f:5f:67:7e:0f:87:2c:cd:93:
b5:80:36:13:cb:38:61:22:03:38:9b:4b:c3:7d:cd:5d:d9:e2:
19:75:de:3f:b9:7c:60:69:a6:c4:22:4b:e3:74:d8:56:87:1c:
a1:e1:91:05:3f:0c:09:6c:b0:af:47:d3:0e:75:fa:9f:b7:9b:
27:96:d2:2c:a4:99:57:bc:d3:84:b7:df:a9:01:32:25:cb:57:
69:a9:62:7e:af:88:4e:ce:50:5c:ce:7a:86:94:0d:11:11:96:
18:50:b4:b0:f2:07:a4:26:67:5b:76:27:3a:fb:3f:75:a8:d6:
f7:74:c5:d0:9c:91:6b:00:74:93:4f:4f:05:84:4f:14:89:34:
fa:2c:e3:a1:c2:53:22:1e:2e:be:76:f3:a5:d9:9e:79:53:41:
f2:cc:74:e5:88:40:00:a8:ae:bb:49:bc:73:b4:77:4a:e2:bb:
c7:86:05:83:5f:ca:ac:42:e8:1c:12:1c:d7:56:85:a4:0e:49:
b9:20:74:72:4f:42:cd:99:03:3e:33:76:ed:ab:dd:0a:4e:f9:
fd:13:19:83:3f:12:63:b0:31:22:b0:a1:ed:c1:07:56:c4:04:
fc:34:61:ba:35:34:8b:55:b3:da:58:d1:ff:c6:8a:b5:37:d6:
e3:6f:ba:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 14:08:28 2025 by rpki-client