Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/8f551f-2425-434d-afb5-a762e9c0dd32/1/F6TRgo1Qxqb0z2HOICITaJq6vVA.roa
File: F6TRgo1Qxqb0z2HOICITaJq6vVA.roa (raw, json)
Hash identifier: HB4jpWzWtSDjiUJivZqFCyvc7yAlpLdjecgjjSvTmVc=
Subject key identifier: 17:A4:D1:82:8D:50:C6:A6:F4:CF:61:CE:20:22:13:68:9A:BA:BD:50
Certificate issuer: /CN=71cec269f84d5641ff63a63d1f3997c8cfd4fe28
Certificate serial: 01942143E42EB20B1D974E9B9010D0B23BE6
Authority key identifier: 71:CE:C2:69:F8:4D:56:41:FF:63:A6:3D:1F:39:97:C8:CF:D4:FE:28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cc7CafhNVkH_Y6Y9HzmXyM_U_ig.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/8f551f-2425-434d-afb5-a762e9c0dd32/1/F6TRgo1Qxqb0z2HOICITaJq6vVA.roa
Signing time: Wed 01 Jan 2025 09:48:04 +0000
ROA not before: Wed 01 Jan 2025 09:48:04 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 3257
IP address blocks: 185.228.192.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:43:e4:2e:b2:0b:1d:97:4e:9b:90:10:d0:b2:3b:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71cec269f84d5641ff63a63d1f3997c8cfd4fe28
Validity
Not Before: Jan 1 09:48:04 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=17a4d1828d50c6a6f4cf61ce202213689ababd50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:cc:14:5c:23:00:41:5c:ba:cc:5f:37:b4:5c:
be:f2:4d:b1:55:71:4b:15:3e:8e:90:e4:d0:d0:34:
67:54:f3:e4:36:30:37:fa:59:dc:dc:62:d4:34:31:
64:46:60:6e:37:8d:37:7b:4f:8f:d7:8e:1f:46:b7:
95:60:01:21:5f:c5:05:95:46:72:26:95:fb:0e:5a:
67:30:15:b9:a1:7f:42:69:3c:13:57:cb:37:24:d9:
65:b1:f3:7c:c9:1f:ac:88:99:4b:96:87:75:21:05:
10:27:43:d7:77:f1:f5:58:47:d6:59:d6:c6:1d:34:
78:24:ad:d4:fe:f1:0f:73:e9:10:93:fd:ee:51:a5:
2b:91:99:4b:fb:12:f2:d0:dd:3b:8d:ab:9a:6d:ce:
f2:59:8b:5a:16:1b:eb:46:a0:01:54:b5:e2:57:74:
05:06:f3:05:c3:08:1d:56:f3:f5:bd:24:73:3f:4e:
f7:a2:4b:33:aa:0e:fa:8d:98:0a:26:ad:bc:38:de:
e6:0f:c2:52:4f:62:2d:87:39:f2:53:2f:90:86:dd:
fc:55:15:f7:08:8a:f7:7d:4b:0d:f6:97:a5:52:1a:
30:fd:90:46:59:82:98:be:ea:da:0f:2e:c5:e1:0f:
19:4b:6d:4b:f3:dc:3b:aa:2a:3f:8d:9f:6b:5b:da:
ee:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:A4:D1:82:8D:50:C6:A6:F4:CF:61:CE:20:22:13:68:9A:BA:BD:50
X509v3 Authority Key Identifier:
keyid:71:CE:C2:69:F8:4D:56:41:FF:63:A6:3D:1F:39:97:C8:CF:D4:FE:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc7CafhNVkH_Y6Y9HzmXyM_U_ig.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/8f551f-2425-434d-afb5-a762e9c0dd32/1/F6TRgo1Qxqb0z2HOICITaJq6vVA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/8f551f-2425-434d-afb5-a762e9c0dd32/1/cc7CafhNVkH_Y6Y9HzmXyM_U_ig.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.228.192.0/22
Signature Algorithm: sha256WithRSAEncryption
a5:8e:dc:4d:cb:41:64:36:a9:2b:95:61:ec:38:24:fc:76:ed:
3f:cf:96:09:78:62:bf:75:ea:6b:84:a0:c1:92:8d:86:d9:62:
ab:9f:07:48:cf:91:33:37:a4:e9:7c:6d:9a:ea:72:e9:3c:c6:
b8:4b:64:d1:30:28:84:bb:9c:73:86:68:95:e9:dd:b2:a8:0a:
3b:82:24:2d:e5:71:2e:7a:a8:7c:49:d5:75:af:6d:48:41:47:
c3:31:d2:1c:03:b3:cd:22:d2:38:7e:da:dd:15:38:61:f1:4c:
bb:7c:45:05:17:ae:52:10:75:77:f0:47:77:7e:4a:53:a6:21:
0a:a3:cd:c7:d0:83:8c:91:e8:d2:70:3f:63:39:c4:97:2c:56:
fc:46:70:69:dd:e7:43:6c:b7:30:ca:af:8e:75:58:a0:1b:8c:
76:b5:1d:53:29:c5:04:6e:86:75:ff:18:78:5b:a5:6f:c8:83:
5e:dc:6e:7f:d0:f4:16:93:a4:8a:bd:6a:44:54:3b:0d:e4:d6:
1d:ef:12:e9:b6:ad:77:2c:cf:25:d9:fe:95:e3:e5:8b:a4:0c:
ea:9e:13:3d:a0:04:64:bb:65:3e:1d:61:66:8b:8d:67:27:d6:
36:76:3d:69:19:a4:dd:6c:08:f3:c2:f9:17:c9:34:cd:21:2d:
54:e3:79:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 22:36:54 2025 by rpki-client