Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/f116d7-8519-4924-8d1d-4c77d605afec/1/1Pr3Rju9xHQPfWV31auS4t6_JKs.roa
File: 1Pr3Rju9xHQPfWV31auS4t6_JKs.roa (raw, json)
Hash identifier: U6YPngmDoN0L1hanOZmXAZn1QKdSvL9NB2XC3NylzBI=
Subject key identifier: D4:FA:F7:46:3B:BD:C4:74:0F:7D:65:77:D5:AB:92:E2:DE:BF:24:AB
Certificate issuer: /CN=5f99fde0d63b11b5c2dd816c0f93c2ea58350336
Certificate serial: 019427486CA69BCB7BB4DA16D1DC020EE75F
Authority key identifier: 5F:99:FD:E0:D6:3B:11:B5:C2:DD:81:6C:0F:93:C2:EA:58:35:03:36
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X5n94NY7EbXC3YFsD5PC6lg1AzY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/f116d7-8519-4924-8d1d-4c77d605afec/1/1Pr3Rju9xHQPfWV31auS4t6_JKs.roa
Signing time: Thu 02 Jan 2025 13:50:45 +0000
ROA not before: Thu 02 Jan 2025 13:50:45 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 25400
IP address blocks: 185.81.14.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:48:6c:a6:9b:cb:7b:b4:da:16:d1:dc:02:0e:e7:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5f99fde0d63b11b5c2dd816c0f93c2ea58350336
Validity
Not Before: Jan 2 13:50:45 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=d4faf7463bbdc4740f7d6577d5ab92e2debf24ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:eb:66:fd:de:82:9e:87:a1:a5:0c:78:e5:23:
f3:cd:44:fe:94:2c:74:42:a7:61:3a:4c:8a:d7:d2:
2a:d1:c0:60:c7:f4:f2:7b:ea:84:79:27:99:1c:76:
d7:48:54:2e:81:ce:35:53:30:a6:a7:96:15:15:00:
e7:1d:d1:c6:7a:a2:fe:54:3e:ef:53:c3:39:48:8e:
4e:26:b7:a3:0c:7a:c5:0e:f5:86:cb:44:77:3a:e2:
3b:ea:92:4f:f1:fa:5f:a3:17:ba:10:09:4e:04:88:
4a:4e:3d:cd:69:30:64:48:78:c2:b2:67:99:86:ea:
88:2b:cb:bd:c6:aa:60:ec:60:cd:1e:ea:22:30:29:
04:3f:68:27:c2:c5:c3:1d:1a:3a:7c:58:08:a9:00:
03:95:8e:56:84:1d:7a:72:c5:48:5f:0e:96:b4:eb:
cd:82:8d:2a:f6:07:09:6e:45:6d:d2:18:61:bd:55:
d7:b2:6f:dd:de:f8:1b:92:2e:7f:d4:97:3e:a5:93:
95:bf:17:5d:14:1e:08:ab:3b:be:6a:ec:46:42:43:
b9:65:fe:b4:69:db:83:ba:e2:62:e2:eb:df:ad:94:
11:b4:a0:51:40:89:53:67:8c:10:be:fb:b9:c0:a4:
dd:a5:78:7e:b6:bd:54:57:4e:d6:05:76:bd:87:10:
ec:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:FA:F7:46:3B:BD:C4:74:0F:7D:65:77:D5:AB:92:E2:DE:BF:24:AB
X509v3 Authority Key Identifier:
keyid:5F:99:FD:E0:D6:3B:11:B5:C2:DD:81:6C:0F:93:C2:EA:58:35:03:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X5n94NY7EbXC3YFsD5PC6lg1AzY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/f116d7-8519-4924-8d1d-4c77d605afec/1/1Pr3Rju9xHQPfWV31auS4t6_JKs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/f116d7-8519-4924-8d1d-4c77d605afec/1/X5n94NY7EbXC3YFsD5PC6lg1AzY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.81.14.0/23
Signature Algorithm: sha256WithRSAEncryption
28:55:9a:1a:12:03:53:3e:1b:2f:50:b8:5e:37:70:04:39:14:
90:8c:cc:ac:a0:94:f9:dd:6c:c1:04:b2:c5:51:80:1a:eb:47:
df:b5:33:6f:2f:09:9c:f6:db:5c:a5:0c:54:b2:f1:d7:8a:24:
b2:db:c4:23:49:9a:a1:33:8e:3a:b3:bd:2f:0f:45:6f:dd:23:
58:98:0e:f7:b4:65:f7:cb:40:d5:a0:14:78:5b:d6:06:1e:7b:
31:89:83:38:b5:0b:85:3f:eb:13:71:99:db:66:54:35:79:56:
64:1f:e3:c9:ba:e4:3e:4a:89:0c:8a:76:3b:d9:90:17:71:76:
55:dc:56:54:83:60:f8:af:3d:f9:50:16:03:fd:79:57:8e:70:
d2:b8:c9:bf:1b:41:03:85:6e:fc:7f:ef:1e:21:21:b6:ca:57:
ee:cf:fc:73:a1:36:97:05:18:ea:05:a3:d5:73:3b:35:d2:4c:
5f:d0:e1:12:04:7e:83:48:f5:eb:f0:66:58:a5:66:6a:53:b1:
b9:92:50:45:4b:ef:bd:bc:40:1c:06:a3:e5:5c:8b:13:87:27:
fa:d7:b1:da:a8:34:e5:3c:73:a9:ad:f8:2b:f7:48:2c:a2:55:
3c:b1:72:1f:64:09:79:54:f8:ba:ef:9d:04:17:7f:3c:91:56:
eb:eb:cd:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 00:20:20 2025 by rpki-client