Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/rnTaQ1uEKUsJsa3f9-uniTuwHWo.roa
File: rnTaQ1uEKUsJsa3f9-uniTuwHWo.roa (raw, json)
Hash identifier: 65NB0UfxYYmSvSLb5gS9zELjlvrzXWC3McdcTIR7Hxk=
Subject key identifier: AE:74:DA:43:5B:84:29:4B:09:B1:AD:DF:F7:EB:A7:89:3B:B0:1D:6A
Certificate issuer: /CN=5dde4b3b82f209b701ae340cf53b974078f16a9f
Certificate serial: 019427B3F64B1D84C3095CAF39CD6EB05BD2
Authority key identifier: 5D:DE:4B:3B:82:F2:09:B7:01:AE:34:0C:F5:3B:97:40:78:F1:6A:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xd5LO4LyCbcBrjQM9TuXQHjxap8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/rnTaQ1uEKUsJsa3f9-uniTuwHWo.roa
Signing time: Thu 02 Jan 2025 15:48:12 +0000
ROA not before: Thu 02 Jan 2025 15:48:12 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 12400
IP address blocks: 185.200.247.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:b3:f6:4b:1d:84:c3:09:5c:af:39:cd:6e:b0:5b:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5dde4b3b82f209b701ae340cf53b974078f16a9f
Validity
Not Before: Jan 2 15:48:12 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ae74da435b84294b09b1addff7eba7893bb01d6a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:63:5e:cc:94:5f:d3:ea:8e:d0:b5:2c:28:59:
95:73:d0:93:85:96:5b:c2:ed:df:45:c1:1a:10:4c:
35:3d:8f:41:65:82:5f:31:87:4d:d9:1f:13:38:e8:
86:36:96:e4:c0:99:d2:34:c4:0d:84:b7:f0:df:69:
a1:06:18:0b:6f:2b:cc:62:d9:51:1b:45:2d:16:08:
8a:c1:31:65:ac:40:23:0d:a2:48:5e:d7:be:b5:cc:
71:8b:fa:b2:8f:f4:1e:8e:09:bd:17:ae:28:8a:11:
f5:98:69:72:6a:c6:77:8f:2a:1f:9c:e1:bd:3d:ee:
19:4b:c9:84:60:38:3e:2a:04:19:b7:c9:14:6b:6a:
3e:bd:4d:8a:49:e8:6a:c6:60:3d:55:c2:14:d3:36:
4f:97:87:57:80:d0:2e:f1:f0:bf:e3:c2:7b:19:11:
99:5a:00:5c:0c:97:0a:64:d5:06:79:56:9a:0f:ae:
fb:5e:a1:d2:cf:6e:91:4a:72:c1:e3:88:3b:89:09:
6f:d2:c5:ed:7f:ae:16:85:31:af:dc:7a:ad:6b:3f:
20:2e:32:9f:27:11:90:18:46:9b:cb:e3:a6:95:23:
c4:e9:f8:31:2c:41:47:bf:2b:37:c8:1e:11:40:c8:
c8:e2:9a:e6:b3:81:4d:f1:5a:45:15:af:bd:83:7e:
34:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:74:DA:43:5B:84:29:4B:09:B1:AD:DF:F7:EB:A7:89:3B:B0:1D:6A
X509v3 Authority Key Identifier:
keyid:5D:DE:4B:3B:82:F2:09:B7:01:AE:34:0C:F5:3B:97:40:78:F1:6A:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xd5LO4LyCbcBrjQM9TuXQHjxap8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/rnTaQ1uEKUsJsa3f9-uniTuwHWo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/Xd5LO4LyCbcBrjQM9TuXQHjxap8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.200.247.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:29:33:59:0a:f2:3a:df:72:be:1a:60:54:dc:09:3d:cf:f2:
14:d5:de:0d:1f:73:e3:24:0f:c9:f7:d5:1d:f4:6b:a6:d5:24:
b6:27:2c:ea:5d:74:2c:2d:6c:63:72:39:42:cf:86:ad:38:05:
34:af:d1:79:fb:78:a1:61:93:dd:8b:06:3c:27:d5:38:ef:8e:
ba:0b:02:70:a4:df:8b:8b:cc:17:95:d5:d0:2f:f0:d5:12:66:
c8:fc:96:87:78:16:29:61:e7:d6:2e:7b:08:62:5a:ce:00:0a:
1b:06:89:e1:ec:bd:85:62:e3:12:f5:0f:68:75:d4:c2:88:d7:
2f:2b:f5:6d:46:3f:f4:7e:b0:a3:cc:e8:5a:6a:bb:47:0f:42:
8b:24:17:36:e5:18:fd:1f:de:33:ae:d0:9e:02:77:06:95:53:
16:4d:4f:1e:60:e1:ba:1b:1a:98:66:e2:81:5c:72:7e:38:ed:
55:58:f6:50:a8:0e:ec:a4:ca:db:82:1c:dc:53:36:d1:33:6f:
0e:31:4c:3b:58:bb:99:46:74:0e:ac:d1:1d:b5:3b:f1:70:c1:
f2:c5:f2:7e:4c:d6:98:9e:14:fa:77:25:53:ad:07:41:d3:9a:
83:7b:51:47:fa:38:2d:ad:52:ee:41:2d:5a:5c:80:5e:fd:1e:
0c:3b:85:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 23:16:35 2025 by rpki-client