Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/1eeba8-7399-4bca-9341-ce882a5054c6/1/U2aJyBd8P_eUVY58McQwjVpYLjA.roa
File: U2aJyBd8P_eUVY58McQwjVpYLjA.roa (raw, json)
Hash identifier: LuVboNkBf5MvVMVqL/wxb5E/X4ZkELwqjAYKuZW9FEk=
Subject key identifier: 53:66:89:C8:17:7C:3F:F7:94:55:8E:7C:31:C4:30:8D:5A:58:2E:30
Certificate issuer: /CN=1cecefd9eadb2d5284d713b94b56d3abbc10e9e5
Certificate serial: 019423D6FC288D1E245C88C67B1F54565E93
Authority key identifier: 1C:EC:EF:D9:EA:DB:2D:52:84:D7:13:B9:4B:56:D3:AB:BC:10:E9:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HOzv2erbLVKE1xO5S1bTq7wQ6eU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/1eeba8-7399-4bca-9341-ce882a5054c6/1/U2aJyBd8P_eUVY58McQwjVpYLjA.roa
Signing time: Wed 01 Jan 2025 21:47:59 +0000
ROA not before: Wed 01 Jan 2025 21:47:59 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 834
IP address blocks: 185.119.197.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:d6:fc:28:8d:1e:24:5c:88:c6:7b:1f:54:56:5e:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1cecefd9eadb2d5284d713b94b56d3abbc10e9e5
Validity
Not Before: Jan 1 21:47:59 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=536689c8177c3ff794558e7c31c4308d5a582e30
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:d3:23:f6:f7:29:89:b5:73:04:ec:cc:9b:ee:
45:02:e3:7f:5f:95:2f:fd:53:4e:15:5a:9b:6d:97:
7d:d7:5c:06:06:0b:99:cb:b3:81:7d:d7:45:ce:89:
fe:40:43:fa:06:68:32:96:3a:6e:4a:aa:eb:39:73:
7e:e9:a5:e7:ce:70:6e:21:de:5a:ac:6b:02:1b:f9:
78:52:0d:93:0a:65:ce:6d:4d:2b:08:61:e5:06:70:
66:75:f0:b4:8b:ca:65:d1:9a:3f:0a:68:df:52:18:
9c:42:b2:93:9c:e8:03:c2:c6:e5:6d:3f:e5:5c:7c:
8c:7c:2b:0e:94:3d:94:60:a1:ec:d3:99:f7:0d:b4:
4f:f3:43:2d:ab:40:d3:91:e6:56:2a:10:ba:dc:71:
7f:10:ce:7f:48:ec:f4:f1:78:86:84:65:76:fe:80:
76:61:d9:86:c4:f1:be:92:c0:51:a5:1c:da:a5:47:
f6:0c:d2:45:83:3c:86:2e:cf:ed:8a:9a:da:1a:77:
ef:aa:a1:15:76:0d:87:43:d1:e2:37:61:90:00:27:
c4:cf:2b:d3:fa:96:42:c1:c2:d0:52:2f:5c:01:12:
50:c0:28:e9:1a:68:de:a3:45:af:c1:06:d3:21:e7:
33:5a:05:30:fa:78:95:41:75:1a:36:e7:a3:c5:55:
9a:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:66:89:C8:17:7C:3F:F7:94:55:8E:7C:31:C4:30:8D:5A:58:2E:30
X509v3 Authority Key Identifier:
keyid:1C:EC:EF:D9:EA:DB:2D:52:84:D7:13:B9:4B:56:D3:AB:BC:10:E9:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HOzv2erbLVKE1xO5S1bTq7wQ6eU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/1eeba8-7399-4bca-9341-ce882a5054c6/1/U2aJyBd8P_eUVY58McQwjVpYLjA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/1eeba8-7399-4bca-9341-ce882a5054c6/1/HOzv2erbLVKE1xO5S1bTq7wQ6eU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.119.197.0/24
Signature Algorithm: sha256WithRSAEncryption
c9:58:2d:d8:9b:45:3e:7a:9f:39:77:2d:bf:d6:12:c9:7d:55:
04:64:50:b8:93:33:ce:8a:9c:c2:05:b3:9b:02:c8:46:66:82:
e1:ba:6c:f1:09:26:b6:36:fa:d4:a2:48:37:c4:37:e4:49:90:
39:19:b4:4f:3d:4f:c1:37:ba:b6:23:ed:54:21:f5:76:ff:34:
bb:54:30:e9:5c:33:1a:32:ac:c9:bd:84:f9:08:f4:9b:70:e6:
98:f1:89:12:44:b3:73:21:6a:fb:f8:b1:36:93:70:42:40:89:
5e:93:e9:c6:38:cd:df:1e:0c:5b:42:6f:70:08:06:68:40:0a:
6f:fd:78:ba:4a:e9:0a:58:50:72:51:52:05:c8:dc:66:79:e0:
b3:fe:7f:cd:7d:fc:82:72:90:27:82:fe:93:a2:ee:4a:da:23:
9b:fa:9c:34:af:d5:fe:e6:d2:f3:44:51:87:ae:0a:6d:b9:17:
15:e2:24:f6:89:3f:99:56:c0:e7:3a:35:0f:3a:04:10:79:0a:
dc:e5:61:3b:38:73:05:c7:02:ee:ef:f3:4c:b5:af:9d:ee:0e:
d8:d9:eb:dc:e6:b7:43:e7:6d:cc:da:8b:3b:7c:24:94:3e:97:
8a:33:87:25:c3:2e:e7:f2:c6:73:51:bb:05:08:62:c9:9f:d5:
ea:8b:0a:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:06:33 2025 by rpki-client