Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/b4daf6-448d-4f3e-944a-573ca5a609c0/1/nIQMEgip1mNWJ7Ip1CpFsNhv-14.roa
File: nIQMEgip1mNWJ7Ip1CpFsNhv-14.roa (raw, json)
Hash identifier: VrH3DSnZI21b6Kq/80BtfMStPDWRD226xCztuO3RSP8=
Subject key identifier: 9C:84:0C:12:08:A9:D6:63:56:27:B2:29:D4:2A:45:B0:D8:6F:FB:5E
Certificate issuer: /CN=72098efaae8063cacecc4f1c1a0b64483bb69503
Certificate serial: 019420680E0912F098CD374D3E0A212CF909
Authority key identifier: 72:09:8E:FA:AE:80:63:CA:CE:CC:4F:1C:1A:0B:64:48:3B:B6:95:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgmO-q6AY8rOzE8cGgtkSDu2lQM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/b4daf6-448d-4f3e-944a-573ca5a609c0/1/nIQMEgip1mNWJ7Ip1CpFsNhv-14.roa
Signing time: Wed 01 Jan 2025 05:47:57 +0000
ROA not before: Wed 01 Jan 2025 05:47:57 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 214164
IP address blocks: 185.213.114.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:68:0e:09:12:f0:98:cd:37:4d:3e:0a:21:2c:f9:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72098efaae8063cacecc4f1c1a0b64483bb69503
Validity
Not Before: Jan 1 05:47:57 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=9c840c1208a9d6635627b229d42a45b0d86ffb5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:de:1b:08:2b:d1:fc:67:40:96:10:5c:4d:05:
15:57:f2:1f:fe:72:3d:19:1d:b0:6e:2b:7e:f6:03:
c1:ab:4a:89:40:e0:50:5b:f4:1b:99:f2:06:2a:a7:
4a:34:6b:35:f4:05:da:0c:61:13:a1:25:67:6e:c0:
d6:de:92:6a:f4:c6:4d:c9:0a:bf:51:78:2b:26:b0:
d8:59:6d:48:00:06:e4:14:04:08:b5:5d:d5:8d:eb:
37:cb:75:5b:c4:bc:92:9c:d8:e7:76:b3:9d:04:56:
f2:f8:df:fc:58:9e:11:28:3f:7f:53:0c:fe:35:45:
07:14:bf:4f:01:4a:81:49:49:d4:46:69:43:cb:b5:
46:b9:54:40:82:83:42:1e:aa:60:01:a9:df:3d:e5:
47:e0:59:3f:46:f9:87:71:a8:21:44:62:3b:51:26:
8a:63:b2:15:de:e4:cb:90:b2:be:ae:36:01:dc:59:
67:3e:93:d1:cc:bd:17:5e:71:41:2d:60:77:24:9d:
fe:a6:fa:6e:52:07:e4:27:4b:b7:15:be:0b:35:37:
2b:a8:09:66:89:6b:65:40:62:80:fe:3f:c4:7e:c3:
e6:d1:01:28:f0:bc:a4:53:55:ee:dc:c4:be:d3:18:
be:ee:53:17:32:76:99:51:09:a6:48:21:a9:1d:85:
95:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:84:0C:12:08:A9:D6:63:56:27:B2:29:D4:2A:45:B0:D8:6F:FB:5E
X509v3 Authority Key Identifier:
keyid:72:09:8E:FA:AE:80:63:CA:CE:CC:4F:1C:1A:0B:64:48:3B:B6:95:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgmO-q6AY8rOzE8cGgtkSDu2lQM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/b4daf6-448d-4f3e-944a-573ca5a609c0/1/nIQMEgip1mNWJ7Ip1CpFsNhv-14.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/b4daf6-448d-4f3e-944a-573ca5a609c0/1/cgmO-q6AY8rOzE8cGgtkSDu2lQM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.213.114.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:8f:e6:11:1c:d4:ea:7f:89:74:23:93:a5:04:ec:a3:a6:a0:
ff:4d:ef:14:24:71:44:e8:3b:80:0e:1b:bd:49:f3:59:ae:a7:
d5:b6:8e:d7:4e:ee:a0:d6:a0:a3:7e:bd:03:81:4a:15:00:43:
af:27:f8:63:28:b9:ee:9b:a8:6c:65:b4:9c:f4:3f:1f:7b:e4:
76:67:90:50:c7:67:47:4d:3e:a6:be:35:50:04:fc:38:eb:6f:
b7:8d:c0:77:7c:e6:16:aa:5e:2c:9f:5c:c2:16:fc:1b:05:6d:
6f:5b:65:be:17:2c:0e:9d:a2:e0:2d:bb:e5:a3:af:f7:fa:93:
51:2e:a4:8a:3c:7e:01:42:b3:cf:d4:e9:b3:e0:37:38:8b:f6:
b9:26:6e:28:10:a2:ed:5c:aa:5c:b8:fb:f4:d1:cc:a1:21:d4:
45:cd:a0:b5:d9:b2:0e:1b:9b:18:f2:fd:a6:62:f9:5b:9b:74:
3b:5e:6a:5f:c6:e5:5a:3f:36:85:0b:a0:07:dc:65:f4:2f:63:
06:f9:78:47:b6:1d:b4:6b:38:c3:18:c4:2d:bd:d4:16:87:8a:
56:89:d9:53:01:f5:ab:41:14:ee:fd:d5:48:77:9a:29:98:b7:
4e:ed:dc:e5:83:0a:15:9d:36:10:05:6a:b8:3c:c2:8a:24:68:
6a:fa:1d:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 20:12:35 2025 by rpki-client