Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/1e4c03-f619-47a3-81bd-36ef7aeebe3b/1/TMkhKaPUJB4LI1mMmf3sccZhBEE.roa
File: TMkhKaPUJB4LI1mMmf3sccZhBEE.roa (raw, json)
Hash identifier: SQD8a+jFccoVxuuqM1aTazg815YSaiMZNjfARcco9Jw=
Subject key identifier: 4C:C9:21:29:A3:D4:24:1E:0B:23:59:8C:99:FD:EC:71:C6:61:04:41
Certificate issuer: /CN=c75799ff4335b7b1ae7188edfa53fd7e213eb216
Certificate serial: 019427B5B12D6B7AEF620809905C1E19E362
Authority key identifier: C7:57:99:FF:43:35:B7:B1:AE:71:88:ED:FA:53:FD:7E:21:3E:B2:16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x1eZ_0M1t7GucYjt-lP9fiE-shY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/1e4c03-f619-47a3-81bd-36ef7aeebe3b/1/TMkhKaPUJB4LI1mMmf3sccZhBEE.roa
Signing time: Thu 02 Jan 2025 15:50:06 +0000
ROA not before: Thu 02 Jan 2025 15:50:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 51221
IP address blocks: 185.34.164.0/22 maxlen: 23
185.34.164.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:b5:b1:2d:6b:7a:ef:62:08:09:90:5c:1e:19:e3:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c75799ff4335b7b1ae7188edfa53fd7e213eb216
Validity
Not Before: Jan 2 15:50:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=4cc92129a3d4241e0b23598c99fdec71c6610441
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:6b:8e:a8:a1:22:33:a7:ab:89:bb:08:aa:ba:
f8:4b:31:0e:41:22:1a:42:81:e4:f9:c1:b0:e1:6c:
9a:4f:ec:d7:ee:8f:f0:48:5c:c4:df:50:10:3c:67:
2d:b7:7e:da:08:90:e1:b1:e0:cc:60:88:8d:8c:8d:
3d:2a:58:0a:6e:47:cf:2c:2b:d5:ea:9f:07:34:92:
b2:6c:bd:ac:f7:c3:ab:91:72:89:1d:af:ff:ee:f8:
a5:d3:bc:7e:47:f6:37:24:ed:b1:92:d7:cf:ac:12:
54:b0:e0:c6:96:5d:2b:ef:06:f6:39:16:66:98:fd:
31:91:97:6f:7e:dd:71:90:c4:25:c5:96:8f:c9:26:
9a:f6:63:62:0e:cf:62:6e:1b:04:f0:79:4d:99:44:
61:13:48:b9:f9:16:7b:59:36:ba:e7:30:c4:a3:2a:
3f:53:bf:7d:f0:c8:06:53:05:0b:f0:3d:ca:4c:41:
c6:b4:ab:db:22:93:94:b0:3f:dd:d7:7b:ef:4c:3c:
0e:e2:ef:81:34:ac:1e:6c:08:af:d0:0f:3d:9a:45:
2e:d8:6a:0a:1d:ed:6c:5f:fb:d2:33:11:31:af:7e:
18:88:0e:25:af:1e:27:c5:1c:72:e6:2d:98:f3:0c:
cd:f2:f3:2f:a1:65:a6:35:a4:5e:99:3c:3d:53:93:
57:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:C9:21:29:A3:D4:24:1E:0B:23:59:8C:99:FD:EC:71:C6:61:04:41
X509v3 Authority Key Identifier:
keyid:C7:57:99:FF:43:35:B7:B1:AE:71:88:ED:FA:53:FD:7E:21:3E:B2:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x1eZ_0M1t7GucYjt-lP9fiE-shY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/1e4c03-f619-47a3-81bd-36ef7aeebe3b/1/TMkhKaPUJB4LI1mMmf3sccZhBEE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/1e4c03-f619-47a3-81bd-36ef7aeebe3b/1/x1eZ_0M1t7GucYjt-lP9fiE-shY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.34.164.0/22
Signature Algorithm: sha256WithRSAEncryption
8f:06:9b:e9:b1:b3:d9:67:b2:ce:06:ea:3c:4c:7f:59:76:11:
19:d6:10:56:56:c8:c1:15:30:cd:62:6a:12:64:4c:65:7a:ca:
26:8b:41:39:75:6e:9d:cb:6d:03:96:5d:62:7c:03:c5:b8:2a:
35:48:18:07:93:29:ab:1e:4f:b4:4b:f4:42:f5:87:ee:1a:e0:
6d:91:0c:99:94:20:26:78:99:fc:48:b9:1b:38:f9:ec:9c:fc:
75:25:2b:dd:2e:06:a4:88:ee:b2:49:a8:35:f3:1e:93:8a:07:
97:ac:a4:13:bc:a1:43:90:fe:c2:12:82:c2:92:24:6f:14:1a:
08:ed:06:2f:fb:d0:dd:2f:98:61:e9:7d:aa:5a:84:8f:ca:8d:
e4:40:43:56:d4:1b:df:f1:35:54:32:78:8f:ba:de:10:9f:0c:
7f:8f:14:12:83:3d:b7:c8:21:af:7c:95:99:8b:0c:d1:aa:27:
14:4c:b7:a5:38:4b:48:f7:34:ef:60:7b:db:40:39:1f:b0:0b:
74:74:eb:bc:da:58:c5:de:71:b4:61:08:a1:7b:5a:1d:cb:c7:
6a:7b:70:5d:f0:22:bf:06:fa:69:15:6a:ee:d1:ad:52:9b:12:
19:48:f7:43:ea:f3:5e:af:ab:ee:b3:0b:27:be:51:f5:30:9e:
f1:6e:12:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 03:15:23 2025 by rpki-client