Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/ac1fa9-4ec8-4016-9add-4c3be9a28d93/1/d3-nUmhWPxilxJYRIxnkrR3tjhI.roa
File: d3-nUmhWPxilxJYRIxnkrR3tjhI.roa (raw, json)
Hash identifier: nCRP7GSY9Gpb6j6rYf+Ya74feBJgqnxBiBarST+uqyM=
Subject key identifier: 77:7F:A7:52:68:56:3F:18:A5:C4:96:11:23:19:E4:AD:1D:ED:8E:12
Certificate issuer: /CN=7be0af45ab4e57456f5a0a40dfa84f8d80610664
Certificate serial: 0194252197F8A2C86357DA903D70E7063D7F
Authority key identifier: 7B:E0:AF:45:AB:4E:57:45:6F:5A:0A:40:DF:A8:4F:8D:80:61:06:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/e-CvRatOV0VvWgpA36hPjYBhBmQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/ac1fa9-4ec8-4016-9add-4c3be9a28d93/1/d3-nUmhWPxilxJYRIxnkrR3tjhI.roa
Signing time: Thu 02 Jan 2025 03:49:05 +0000
ROA not before: Thu 02 Jan 2025 03:49:05 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 206922
IP address blocks: 185.67.163.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:21:97:f8:a2:c8:63:57:da:90:3d:70:e7:06:3d:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7be0af45ab4e57456f5a0a40dfa84f8d80610664
Validity
Not Before: Jan 2 03:49:05 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=777fa75268563f18a5c496112319e4ad1ded8e12
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:1b:f5:49:4b:c5:08:df:71:0d:3c:b9:67:f1:
20:d4:ae:31:a1:53:9b:8e:a1:9e:c9:ef:1b:b1:66:
f6:3b:51:7e:3e:91:e4:32:04:20:14:b5:37:bb:b0:
ff:be:16:91:92:6d:1a:cd:86:02:ee:3a:05:45:cd:
48:78:95:d3:12:83:9d:42:35:da:41:1c:c8:be:cc:
30:31:24:fb:e3:4e:8f:f6:cd:b2:e4:4f:93:fc:37:
0f:07:0c:a1:34:7a:f1:36:ed:28:47:8d:9b:eb:e1:
1f:90:36:20:0a:df:d0:be:d9:6c:51:98:1c:08:ad:
d6:73:75:9c:ff:01:24:d9:ae:e7:46:69:e9:30:7e:
07:bf:62:3e:ce:0b:cb:66:de:c8:88:bb:4d:58:1a:
ac:5c:00:a7:09:01:56:ee:ab:e2:2f:fd:f1:8b:e1:
18:b4:fb:87:79:aa:31:9b:7c:66:73:59:16:4b:b7:
67:01:04:dc:ba:9c:c1:75:b2:eb:b1:89:07:75:3c:
de:6d:53:21:33:9c:20:7c:ae:dc:f4:45:c9:7a:6a:
32:e1:83:5d:5c:6d:a3:03:75:aa:62:a8:f5:c8:e3:
fe:33:70:e9:bb:58:a2:e6:75:1d:37:f2:74:0b:1d:
aa:5b:25:69:eb:77:98:a2:40:6f:da:73:22:40:fa:
c1:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:7F:A7:52:68:56:3F:18:A5:C4:96:11:23:19:E4:AD:1D:ED:8E:12
X509v3 Authority Key Identifier:
keyid:7B:E0:AF:45:AB:4E:57:45:6F:5A:0A:40:DF:A8:4F:8D:80:61:06:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e-CvRatOV0VvWgpA36hPjYBhBmQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/ac1fa9-4ec8-4016-9add-4c3be9a28d93/1/d3-nUmhWPxilxJYRIxnkrR3tjhI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/ac1fa9-4ec8-4016-9add-4c3be9a28d93/1/e-CvRatOV0VvWgpA36hPjYBhBmQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.67.163.0/24
Signature Algorithm: sha256WithRSAEncryption
44:df:f8:e9:d2:bf:fd:31:0f:d0:b0:ef:f6:bd:4c:85:24:c0:
85:7e:fd:6f:a5:14:bd:f0:96:1e:e9:3d:64:bd:02:e0:db:f4:
a8:10:ec:68:2e:c7:aa:7d:6c:f4:1c:c3:c9:84:09:72:7e:c9:
f6:74:2b:83:34:f0:ed:af:b6:16:2a:1e:26:aa:32:7b:8d:a2:
70:da:25:8b:bb:1b:49:ee:11:04:02:12:f1:ee:a7:95:50:6a:
a8:2d:2e:48:bb:a4:6f:f6:17:da:77:d5:ca:10:50:65:0b:fa:
1d:52:ae:6c:7c:f6:95:18:6b:c4:30:f7:7b:f5:4e:38:56:5b:
c8:01:16:e2:00:bc:fe:d0:e4:b1:9a:15:37:3e:21:3c:56:58:
b2:78:b5:ed:3c:74:10:96:28:1e:1d:99:49:16:e7:a9:b5:4f:
21:b6:22:83:7c:f7:34:f1:dc:df:b7:4b:a1:3f:5a:b9:5f:3d:
a1:1c:8d:35:2d:b3:5d:40:67:2e:21:60:da:7a:62:a8:3a:64:
4e:f6:6c:dd:6b:74:12:64:dc:fa:12:1f:f6:0a:e5:d5:64:e4:
88:72:c0:91:08:e3:07:39:75:58:4d:02:e8:d8:43:38:32:dd:
a3:2d:05:25:b7:05:bd:4d:3a:42:5a:6b:29:44:ef:46:af:3d:
00:93:a2:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 23:46:30 2025 by rpki-client