Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/5fd4bf-74d9-4072-b557-084cca1c8623/1/oJh0B_eYdHNYoIj-eMSg92GtqiU.roa
File: oJh0B_eYdHNYoIj-eMSg92GtqiU.roa (raw, json)
Hash identifier: VT24FOtWQc/ytG8iILX4ZcZUTmQmuSWh5GjQpAKaEDE=
Subject key identifier: A0:98:74:07:F7:98:74:73:58:A0:88:FE:78:C4:A0:F7:61:AD:AA:25
Certificate issuer: /CN=78703e7a62309bf027c1f10536926a19b7f14b1e
Certificate serial: 0194236A1C08863682CAC1C57AEC7F71A90D
Authority key identifier: 78:70:3E:7A:62:30:9B:F0:27:C1:F1:05:36:92:6A:19:B7:F1:4B:1E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eHA-emIwm_AnwfEFNpJqGbfxSx4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/5fd4bf-74d9-4072-b557-084cca1c8623/1/oJh0B_eYdHNYoIj-eMSg92GtqiU.roa
Signing time: Wed 01 Jan 2025 19:49:04 +0000
ROA not before: Wed 01 Jan 2025 19:49:04 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 205112
IP address blocks: 185.117.214.0/24 maxlen: 24
2a06:8784::/32 maxlen: 32
2a06:8784:8000::/33 maxlen: 33
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:6a:1c:08:86:36:82:ca:c1:c5:7a:ec:7f:71:a9:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=78703e7a62309bf027c1f10536926a19b7f14b1e
Validity
Not Before: Jan 1 19:49:04 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=a0987407f798747358a088fe78c4a0f761adaa25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:d7:ae:30:00:bd:59:41:03:38:09:5b:e7:17:
c4:22:83:1c:18:75:54:59:e4:05:ef:ba:f4:c8:66:
14:8a:57:4c:ab:f6:76:5b:c0:bc:86:de:7f:94:21:
5e:ea:97:b3:a3:c9:34:bc:00:26:fa:cc:c1:80:76:
c5:01:0e:b8:eb:99:1e:c9:93:9d:0d:10:05:33:35:
1e:22:45:27:af:09:85:81:8d:88:84:7b:ee:fd:9a:
65:0a:f8:cc:17:59:7e:e4:fc:dc:89:bd:41:d3:28:
70:c3:ff:44:8f:bd:02:d7:99:46:79:b5:e4:6e:3f:
6b:dc:6d:aa:7e:8d:59:ee:95:1f:3b:10:97:74:1a:
76:68:d0:0d:41:5e:13:09:57:f6:b5:34:6f:dd:15:
11:c0:84:62:92:9e:39:6d:62:bb:87:5a:76:53:ba:
66:55:1b:4d:59:b9:ed:d0:01:79:8c:5d:65:6b:8f:
ba:e4:42:ae:b2:81:da:ef:ec:98:d8:5d:9e:75:57:
e6:f1:dc:9e:cb:e3:47:3d:56:0d:e0:a1:41:45:28:
f0:75:de:69:5a:8b:0b:9b:3a:af:78:5d:b8:50:de:
92:f4:d3:fa:c9:84:e1:6f:bc:e7:1c:d8:6d:fb:0f:
4a:3b:c9:88:3f:8e:b4:c4:4e:b3:80:7d:ca:e7:ad:
01:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:98:74:07:F7:98:74:73:58:A0:88:FE:78:C4:A0:F7:61:AD:AA:25
X509v3 Authority Key Identifier:
keyid:78:70:3E:7A:62:30:9B:F0:27:C1:F1:05:36:92:6A:19:B7:F1:4B:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eHA-emIwm_AnwfEFNpJqGbfxSx4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/5fd4bf-74d9-4072-b557-084cca1c8623/1/oJh0B_eYdHNYoIj-eMSg92GtqiU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/5fd4bf-74d9-4072-b557-084cca1c8623/1/eHA-emIwm_AnwfEFNpJqGbfxSx4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.117.214.0/24
IPv6:
2a06:8784::/32
Signature Algorithm: sha256WithRSAEncryption
0f:9d:76:30:e5:bd:d4:41:35:8f:20:15:af:4f:d2:aa:c7:01:
54:8a:9f:7f:1d:0c:b7:ac:76:c7:41:20:fa:8f:b4:fb:4e:78:
a1:96:61:d7:0a:55:00:cb:17:ba:34:54:99:ae:48:07:a8:03:
3d:a9:5c:84:62:ee:4d:c9:2f:c4:cb:26:91:a2:7a:3a:61:bc:
95:32:32:e1:1a:66:68:4c:d1:60:68:99:f7:03:75:0c:83:e6:
57:a6:b9:bf:55:09:52:6d:2a:3c:fc:a6:cb:89:15:48:ed:8a:
e1:ac:df:d5:18:c1:ae:d8:98:53:7d:4c:d7:fe:d6:40:3b:1a:
90:a4:28:43:99:56:ea:0e:e8:05:cc:37:e3:fd:06:67:71:86:
91:95:c5:b4:9e:82:ad:d6:88:3e:e7:fe:95:97:2c:6a:cb:57:
db:ef:03:86:71:31:3a:07:78:bb:bb:82:df:b1:ac:28:c2:d5:
c8:24:e7:74:56:e0:46:b1:b2:05:cd:bc:89:45:c2:40:4a:13:
c3:50:22:fe:5c:d4:6e:24:09:a7:8f:7e:22:ea:58:41:16:7e:
bb:cc:a8:66:88:0e:0b:58:62:49:b6:e1:d5:cb:97:01:50:44:
f2:77:ee:c0:ff:06:75:57:4e:b4:e2:81:0d:04:5f:51:f0:39:
86:ad:6d:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 07:51:12 2025 by rpki-client