Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/b7abdf-3be1-4642-9f3e-f1f0b9598f32/1/rv2T0z2-EaRycTaTUtgnY9iXvuM.roa
File: rv2T0z2-EaRycTaTUtgnY9iXvuM.roa (raw, json)
Hash identifier: MmHOVpdvMsHiJYhDAYO9gh012OamwZs3XB6zAgLs1UA=
Subject key identifier: AE:FD:93:D3:3D:BE:11:A4:72:71:36:93:52:D8:27:63:D8:97:BE:E3
Certificate issuer: /CN=a71a2a2db4d7418e9bf4f93c8c046a0161663c62
Certificate serial: 0194266BF83F9D44EAB3234D12516F9DAEEA
Authority key identifier: A7:1A:2A:2D:B4:D7:41:8E:9B:F4:F9:3C:8C:04:6A:01:61:66:3C:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pxoqLbTXQY6b9Pk8jARqAWFmPGI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/b7abdf-3be1-4642-9f3e-f1f0b9598f32/1/rv2T0z2-EaRycTaTUtgnY9iXvuM.roa
Signing time: Thu 02 Jan 2025 09:49:57 +0000
ROA not before: Thu 02 Jan 2025 09:49:57 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 16276
IP address blocks: 185.157.51.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:6b:f8:3f:9d:44:ea:b3:23:4d:12:51:6f:9d:ae:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a71a2a2db4d7418e9bf4f93c8c046a0161663c62
Validity
Not Before: Jan 2 09:49:57 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=aefd93d33dbe11a47271369352d82763d897bee3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:85:ad:71:3a:9a:47:2d:88:99:26:22:68:bc:
a6:71:7a:d2:60:42:46:98:0b:30:5e:7d:fb:37:12:
15:23:1e:a2:25:fb:b5:37:eb:55:af:a4:5d:82:d7:
39:d4:bb:58:5b:7b:ab:8a:29:4b:7b:2f:88:a9:53:
25:d4:4c:18:4f:a9:84:ba:2f:24:7d:92:4c:fb:0a:
de:e4:b2:e1:5d:3c:5b:62:ce:35:b4:02:f6:86:58:
3f:83:0a:72:11:2e:25:41:18:21:fe:0f:a9:87:2e:
c1:c0:7d:f8:03:fb:30:8d:54:53:21:5a:78:c5:b1:
f1:e3:32:44:9f:2e:5d:ee:c7:da:66:cf:4f:9a:b8:
9e:28:83:75:e3:41:20:1d:4c:09:09:e4:16:dd:15:
47:95:10:f1:85:97:57:12:46:50:a1:33:e9:af:b4:
cd:71:b4:a8:4e:7c:ba:b5:0b:0a:55:29:ed:bd:70:
9f:d8:14:24:ae:d5:5a:e0:d7:a3:e6:11:af:8c:d2:
c0:26:31:46:07:aa:a8:8f:f2:d1:8e:b4:44:35:b8:
25:9f:39:f6:fc:46:e5:35:8f:30:5c:e4:88:0c:4c:
65:58:ed:2e:65:34:ab:29:c3:24:e7:64:cc:8d:6c:
5f:51:da:b4:f9:75:4f:fe:19:fc:66:dc:f4:9f:b1:
31:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:FD:93:D3:3D:BE:11:A4:72:71:36:93:52:D8:27:63:D8:97:BE:E3
X509v3 Authority Key Identifier:
keyid:A7:1A:2A:2D:B4:D7:41:8E:9B:F4:F9:3C:8C:04:6A:01:61:66:3C:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pxoqLbTXQY6b9Pk8jARqAWFmPGI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/b7abdf-3be1-4642-9f3e-f1f0b9598f32/1/rv2T0z2-EaRycTaTUtgnY9iXvuM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/b7abdf-3be1-4642-9f3e-f1f0b9598f32/1/pxoqLbTXQY6b9Pk8jARqAWFmPGI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.157.51.0/24
Signature Algorithm: sha256WithRSAEncryption
55:86:b5:fe:9a:13:5d:e2:61:ff:82:0d:2b:60:f4:bd:5e:32:
70:47:61:04:92:12:24:c9:fd:af:ff:bb:49:05:70:fd:34:fe:
f6:95:90:c7:40:5c:7c:29:b1:a2:f3:ca:85:1b:ab:1d:ca:c4:
09:e0:45:21:f6:cb:3d:2d:ef:18:c7:f2:e6:a6:79:4a:e0:a9:
28:fa:ea:e5:58:26:9b:5b:63:ed:93:54:05:9b:02:a6:ab:64:
68:75:47:4c:1f:6b:6a:cc:31:3d:39:ac:74:7d:db:b7:af:5b:
1c:e3:aa:6e:60:e9:9a:e3:69:33:37:ec:5f:28:f0:d6:e8:76:
5e:ee:cd:b5:b8:7c:82:b8:47:27:89:1f:1c:68:22:ea:c1:73:
09:dc:e9:a2:34:ab:4b:46:8a:93:01:66:4b:6c:0b:b3:8f:22:
73:46:48:02:fc:bf:ed:ef:17:e9:ed:ae:b8:1d:ea:af:af:5b:
5f:42:15:a3:65:29:34:ec:4d:09:f1:dc:24:fa:4c:61:3b:14:
0f:ab:c5:fd:47:bc:19:cf:27:05:b3:c9:03:e8:4f:89:34:df:
ce:79:7d:15:48:84:c3:29:0e:ad:89:5c:0e:eb:a4:aa:3a:d2:
a1:b1:13:a9:64:39:e9:20:88:f9:07:ad:57:c7:0f:56:74:a7:
da:25:9c:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Feb 21 11:22:15 2025 by rpki-client