Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/7bddda-0c6c-4a5e-b1c5-3ba5f30caabf/1/fRi0G2cIUxI61l2GTTKIFQAG9RE.roa
File: fRi0G2cIUxI61l2GTTKIFQAG9RE.roa (raw, json)
Hash identifier: IiPf4Yv8/FcDmWTn4xUhoGH8CrL6FWqGZiw6UQ0WOHg=
Subject key identifier: 7D:18:B4:1B:67:08:53:12:3A:D6:5D:86:4D:32:88:15:00:06:F5:11
Certificate issuer: /CN=1a4dd11554247bd2bd301cea43ff5180372c38e4
Certificate serial: 019426D9D2A213895866C8869F735530F32D
Authority key identifier: 1A:4D:D1:15:54:24:7B:D2:BD:30:1C:EA:43:FF:51:80:37:2C:38:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gk3RFVQke9K9MBzqQ_9RgDcsOOQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/7bddda-0c6c-4a5e-b1c5-3ba5f30caabf/1/fRi0G2cIUxI61l2GTTKIFQAG9RE.roa
Signing time: Thu 02 Jan 2025 11:49:56 +0000
ROA not before: Thu 02 Jan 2025 11:49:56 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 17767
IP address blocks: 185.192.56.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:d9:d2:a2:13:89:58:66:c8:86:9f:73:55:30:f3:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1a4dd11554247bd2bd301cea43ff5180372c38e4
Validity
Not Before: Jan 2 11:49:56 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=7d18b41b670853123ad65d864d3288150006f511
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:44:e4:7b:60:e5:e6:a3:19:ab:44:f0:77:3f:
c1:70:43:d3:99:03:69:e7:79:d0:a7:a1:07:46:40:
e0:f6:55:12:ea:96:ae:53:f0:26:52:b0:60:c4:04:
1e:f8:df:9a:34:ae:47:5b:97:c2:c6:00:48:72:a6:
70:ab:d6:44:9d:33:de:86:06:42:5c:2b:7e:57:62:
da:da:a5:3b:e3:62:5b:46:be:5c:41:d9:c5:dc:09:
2c:c4:d8:35:22:5a:41:8a:02:d2:b0:da:4b:bd:a9:
29:cb:13:fb:93:6e:ce:1c:8f:15:d2:08:cf:9b:4c:
09:f0:10:55:9c:ff:89:d5:0e:b9:23:85:b3:ab:8d:
0a:9d:a9:c1:63:5d:ec:7e:50:04:34:21:69:67:34:
8a:76:af:3b:83:a8:9d:52:57:e8:39:4f:e7:57:38:
07:62:dd:4c:38:6b:0b:29:38:77:d7:0d:56:15:08:
2f:3d:98:79:75:d7:a3:09:4b:7e:8f:94:39:7b:e7:
14:37:1c:c6:6e:a9:f5:bd:95:e7:f6:3b:b4:d4:00:
3f:5d:17:41:e3:da:f6:11:57:60:ae:64:97:4d:bf:
dc:6a:78:d1:48:bc:d6:2a:d6:75:b2:24:33:c7:f3:
00:cb:c6:b9:b7:dd:32:24:8c:ce:9d:0c:91:be:2f:
90:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:18:B4:1B:67:08:53:12:3A:D6:5D:86:4D:32:88:15:00:06:F5:11
X509v3 Authority Key Identifier:
keyid:1A:4D:D1:15:54:24:7B:D2:BD:30:1C:EA:43:FF:51:80:37:2C:38:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gk3RFVQke9K9MBzqQ_9RgDcsOOQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/7bddda-0c6c-4a5e-b1c5-3ba5f30caabf/1/fRi0G2cIUxI61l2GTTKIFQAG9RE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/7bddda-0c6c-4a5e-b1c5-3ba5f30caabf/1/Gk3RFVQke9K9MBzqQ_9RgDcsOOQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.192.56.0/22
Signature Algorithm: sha256WithRSAEncryption
4b:f8:5b:20:26:08:4f:bf:b8:77:15:8d:26:49:d5:c9:b8:b5:
3f:d6:67:6a:9e:40:64:03:3b:2b:2d:79:50:5e:73:b5:12:f9:
77:bb:50:74:10:c2:fe:27:72:7b:d6:5a:6c:0a:82:6a:aa:48:
cc:42:09:05:ef:06:c3:bb:7c:b4:7d:11:1a:6a:15:ad:7a:4b:
0a:7e:68:ee:af:cd:34:0d:b5:68:52:0b:ff:38:1e:97:f6:89:
55:7a:dd:ce:17:7e:3e:e4:af:03:80:db:26:c9:b0:59:46:a3:
96:ca:48:b9:01:13:53:33:21:70:e4:f6:4b:a3:a5:fa:a7:f3:
b3:a6:6a:10:46:10:f5:a6:92:51:29:e3:55:ad:af:a6:6d:31:
f2:94:ad:a7:8a:08:de:87:0d:27:a9:32:97:37:0b:ed:86:ab:
49:f7:a6:37:11:4e:f1:39:34:ff:ae:5f:a3:e3:01:8b:0b:22:
b4:c5:63:30:6a:aa:7b:1f:a6:95:45:14:68:55:1e:6f:0c:ea:
9f:97:8b:0c:28:e1:0f:ff:70:b9:ac:52:f9:99:6d:77:ab:04:
d3:70:3d:ec:b9:f4:9c:30:a1:ba:a7:06:e4:bc:fb:5e:3d:13:
2d:8f:5d:7b:ca:75:4d:d8:3a:15:d6:f3:89:85:c5:44:1a:85:
2e:6f:e3:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 22:31:11 2025 by rpki-client