Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/1d5ee1-accf-474f-a589-cd1fa484411b/1/99RFgiq7g_gChTYODj9SoWnajwU.roa
File: 99RFgiq7g_gChTYODj9SoWnajwU.roa (raw, json)
Hash identifier: V4dZ9V5S+JExa88JiflVnJ/6nApSu2fFViLfEYhYbao=
Subject key identifier: F7:D4:45:82:2A:BB:83:F8:02:85:36:0E:0E:3F:52:A1:69:DA:8F:05
Certificate issuer: /CN=b869ee66164d3cb41dbd2df5417817c32f4cea05
Certificate serial: 0194252213D7F81131C3A49E7FC0EBEB140B
Authority key identifier: B8:69:EE:66:16:4D:3C:B4:1D:BD:2D:F5:41:78:17:C3:2F:4C:EA:05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uGnuZhZNPLQdvS31QXgXwy9M6gU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/1d5ee1-accf-474f-a589-cd1fa484411b/1/99RFgiq7g_gChTYODj9SoWnajwU.roa
Signing time: Thu 02 Jan 2025 03:49:37 +0000
ROA not before: Thu 02 Jan 2025 03:49:37 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 60647
IP address blocks: 185.59.29.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:22:13:d7:f8:11:31:c3:a4:9e:7f:c0:eb:eb:14:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b869ee66164d3cb41dbd2df5417817c32f4cea05
Validity
Not Before: Jan 2 03:49:37 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=f7d445822abb83f80285360e0e3f52a169da8f05
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:c3:f1:14:8b:e1:2e:b8:3c:5b:fd:df:ff:3a:
c3:27:06:3b:2c:b2:05:d6:ce:fc:0c:29:9e:d8:10:
c3:a8:9c:ec:19:79:71:fe:21:a4:1d:a6:c6:31:a9:
c1:a2:02:e1:1f:3b:a6:53:34:f7:42:dd:74:c3:34:
25:16:15:ce:b5:06:35:75:2c:da:8a:07:1e:d0:99:
05:ea:92:3e:30:66:1b:2a:7d:31:bf:1d:7e:25:d0:
bd:00:cb:42:36:76:c5:04:20:da:ed:a8:d2:a0:32:
46:d3:4e:b3:9e:ae:53:8f:8a:17:30:18:19:36:a1:
8b:b2:9b:1b:4a:05:59:2a:64:56:68:79:1a:bf:dd:
22:f5:57:bb:75:71:88:cb:f7:58:ab:c2:7a:60:2b:
48:73:24:e9:1d:fc:45:c8:48:05:dc:39:d9:18:d6:
19:ed:91:31:2b:3f:a5:77:35:84:72:d1:0b:dc:e8:
46:99:93:61:05:e6:41:c2:b3:e3:f8:c2:1b:61:c0:
c2:d3:47:6c:7c:41:d5:c0:58:bb:28:ca:8f:6e:33:
4d:26:1d:ab:08:02:0e:6b:a6:5b:52:89:0f:03:c3:
50:10:17:12:e8:96:5e:81:ee:89:b7:65:c3:4d:3d:
91:94:e5:2f:29:24:d1:38:7e:02:f0:20:fb:0f:b3:
8a:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:D4:45:82:2A:BB:83:F8:02:85:36:0E:0E:3F:52:A1:69:DA:8F:05
X509v3 Authority Key Identifier:
keyid:B8:69:EE:66:16:4D:3C:B4:1D:BD:2D:F5:41:78:17:C3:2F:4C:EA:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uGnuZhZNPLQdvS31QXgXwy9M6gU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/1d5ee1-accf-474f-a589-cd1fa484411b/1/99RFgiq7g_gChTYODj9SoWnajwU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/1d5ee1-accf-474f-a589-cd1fa484411b/1/uGnuZhZNPLQdvS31QXgXwy9M6gU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.59.29.0/24
Signature Algorithm: sha256WithRSAEncryption
cc:4e:1b:20:ff:61:71:83:fc:cc:e8:14:82:38:51:dc:b4:1c:
2a:c4:97:a6:5b:9e:f9:ce:9b:03:4a:83:75:81:db:79:ba:79:
ec:7a:4c:03:eb:ca:34:f9:5d:b0:de:ea:9c:f3:0d:d9:19:46:
4a:07:a2:40:0d:a0:be:22:b8:4f:87:02:fb:dd:07:61:4c:18:
1b:93:c0:7d:ea:0b:e4:db:e2:20:e2:61:a2:d4:7d:47:46:af:
db:8c:e1:26:e9:46:ba:d8:85:34:c3:32:b3:d0:3f:02:0a:32:
56:ee:22:ed:0a:9e:15:da:dc:db:0b:d4:62:67:06:de:c3:3a:
de:a7:82:75:8e:c6:ec:c9:6e:5b:f1:ae:ea:60:51:29:f3:70:
97:82:d7:93:19:aa:3a:01:b0:6f:ea:83:f8:75:d0:ee:60:b3:
46:df:fd:39:42:0c:ee:3b:82:6f:96:5d:f5:18:07:90:21:20:
82:cb:f0:c6:34:3b:22:98:b4:f0:a3:d1:9c:d2:3c:56:45:41:
91:2b:78:c0:01:a5:49:c5:11:f9:98:0d:3a:b9:7b:ab:01:52:
43:c7:b0:17:f5:1c:f7:19:35:70:09:f6:c9:39:42:d7:58:10:
90:80:f1:92:d6:bd:26:10:33:5c:da:fc:be:3e:32:af:04:08:
16:29:2f:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 20:10:01 2025 by rpki-client