Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/UT8hhGbm0HQ1IGr3YXZQdf3YCww.roa
File: UT8hhGbm0HQ1IGr3YXZQdf3YCww.roa (raw, json)
Hash identifier: KQ7ervN4wx0txL7PyWBgj2T8JhX42Xlej4ovt13URI8=
Subject key identifier: 51:3F:21:84:66:E6:D0:74:35:20:6A:F7:61:76:50:75:FD:D8:0B:0C
Certificate issuer: /CN=eebbf317e5faf5ef02c9cce79527d5e74b8abcc5
Certificate serial: 0192206788DD8D9EFAC1493BCD2E5B474FCC
Authority key identifier: EE:BB:F3:17:E5:FA:F5:EF:02:C9:CC:E7:95:27:D5:E7:4B:8A:BC:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7rvzF-X69e8CycznlSfV50uKvMU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/UT8hhGbm0HQ1IGr3YXZQdf3YCww.roa
Signing time: Mon 23 Sep 2024 19:41:48 +0000
ROA not before: Mon 23 Sep 2024 19:41:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 42375
IP address blocks: 185.210.138.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:20:67:88:dd:8d:9e:fa:c1:49:3b:cd:2e:5b:47:4f:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eebbf317e5faf5ef02c9cce79527d5e74b8abcc5
Validity
Not Before: Sep 23 19:41:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=513f218466e6d07435206af761765075fdd80b0c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:7b:61:56:06:62:db:f7:3b:1a:1a:83:5f:10:
15:0e:a6:d7:e3:14:3b:a4:46:88:f8:9a:e2:9a:41:
6c:23:4a:87:ce:a8:71:56:ce:86:96:b7:e0:63:8c:
77:ed:96:c3:ce:85:cd:73:3a:46:20:ba:17:62:16:
55:72:4d:46:ff:70:83:b0:37:33:d7:fd:f8:52:d6:
2c:62:42:5a:79:70:bc:dd:e0:be:7c:26:52:af:d6:
bc:72:87:7c:27:a5:48:68:4d:8c:d5:a3:9e:b7:9d:
86:dc:ce:1c:38:6b:7f:fb:fa:57:20:1a:fa:5a:c7:
70:23:4f:f1:8b:d9:51:da:99:9f:6b:78:8e:02:3b:
f1:91:b4:ec:60:23:ac:3e:ec:2a:1b:86:63:58:01:
27:0e:82:9c:96:70:04:ea:44:95:3e:fb:cf:81:0f:
66:1b:31:47:56:64:cc:94:cf:5c:e5:a5:cb:e6:b3:
25:d6:06:30:6d:33:e6:ee:61:74:f0:7a:d0:04:68:
40:34:b8:85:88:77:d8:e7:df:ed:9e:7e:d0:d9:23:
bf:52:8f:1b:94:c2:c4:25:6e:6c:fe:64:ec:d9:3f:
34:69:3b:ac:ca:5e:ce:a2:d2:50:0f:e4:b5:c9:a7:
99:cf:b5:1e:d7:87:52:fa:cf:ad:76:19:62:be:df:
3a:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:3F:21:84:66:E6:D0:74:35:20:6A:F7:61:76:50:75:FD:D8:0B:0C
X509v3 Authority Key Identifier:
keyid:EE:BB:F3:17:E5:FA:F5:EF:02:C9:CC:E7:95:27:D5:E7:4B:8A:BC:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7rvzF-X69e8CycznlSfV50uKvMU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/UT8hhGbm0HQ1IGr3YXZQdf3YCww.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/7rvzF-X69e8CycznlSfV50uKvMU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.210.138.0/24
Signature Algorithm: sha256WithRSAEncryption
25:09:06:f0:43:c5:35:d6:94:b5:e8:09:a3:9a:aa:63:09:af:
04:7c:b3:1d:b1:63:9b:35:b6:8d:81:04:72:1c:09:52:3c:9b:
36:74:23:ad:47:a1:29:eb:cc:fd:f2:2d:eb:b2:4b:09:74:3b:
55:9d:ae:84:04:41:91:d6:ed:49:b4:f0:0c:dc:20:6a:c8:0b:
59:22:f1:1b:34:5c:3d:57:40:45:cd:6b:f5:46:25:0e:8e:4b:
20:e0:3e:b9:c3:2a:aa:6e:66:df:87:3e:3d:fc:13:87:30:3a:
ce:6e:23:ce:5e:2e:bd:8b:eb:c1:01:5d:a4:c6:89:cb:25:73:
04:d8:e8:a1:a7:35:b1:4c:f5:13:1a:8b:7d:86:17:db:48:01:
73:b4:c9:23:90:4d:a0:7d:23:35:bc:4a:ad:ed:72:9c:4f:49:
ef:a3:3c:5c:e3:37:1e:56:19:e6:dc:f1:d7:44:09:85:38:76:
7d:6e:56:8f:7b:aa:2b:2d:ce:4e:1a:a7:70:ef:a4:73:49:4c:
50:9c:f5:e3:61:88:55:17:58:da:23:12:b0:79:b6:c1:fa:39:
b7:76:c3:6b:e3:83:75:e0:59:75:74:ef:52:a2:b6:1b:c7:bc:
3e:c6:08:fc:4f:eb:c3:70:92:5f:87:5e:18:b1:5d:e8:5f:53:
45:4e:a4:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:21:39 2025 by rpki-client