Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/3e5c96-7e95-4797-aa6a-a8978e3aae98/1/TeFv9Kd2FbNzufUz1M4EUtdT3Xg.roa
File: TeFv9Kd2FbNzufUz1M4EUtdT3Xg.roa (raw, json)
Hash identifier: zGrnYc3nuLuo0nlpuHPKJrCPtCdE57liuR6ITCdonSo=
Subject key identifier: 4D:E1:6F:F4:A7:76:15:B3:73:B9:F5:33:D4:CE:04:52:D7:53:DD:78
Certificate issuer: /CN=4eeb86abd5374e553098209075b9afecabef333a
Certificate serial: 01942522173D9CE801F76399A98540A58022
Authority key identifier: 4E:EB:86:AB:D5:37:4E:55:30:98:20:90:75:B9:AF:EC:AB:EF:33:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TuuGq9U3TlUwmCCQdbmv7KvvMzo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/3e5c96-7e95-4797-aa6a-a8978e3aae98/1/TeFv9Kd2FbNzufUz1M4EUtdT3Xg.roa
Signing time: Thu 02 Jan 2025 03:49:38 +0000
ROA not before: Thu 02 Jan 2025 03:49:38 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 29017
IP address blocks: 185.230.220.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:22:17:3d:9c:e8:01:f7:63:99:a9:85:40:a5:80:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4eeb86abd5374e553098209075b9afecabef333a
Validity
Not Before: Jan 2 03:49:38 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=4de16ff4a77615b373b9f533d4ce0452d753dd78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:65:16:27:dd:4f:83:a4:40:b3:53:13:35:63:
78:1b:a9:c8:fe:db:96:42:6c:04:dd:ca:55:c6:82:
4d:19:c9:f5:49:7d:9d:46:b4:15:e7:27:e9:04:e3:
2f:73:cd:2a:c5:fe:ac:26:fc:c5:c5:92:5f:54:1c:
5f:87:01:8a:dc:ce:0b:b5:95:2b:3f:50:51:8f:bd:
50:a6:a4:61:13:e6:82:d5:6e:61:b8:29:5a:e7:0e:
60:c2:71:b7:00:4b:fb:d1:a5:30:41:f9:3d:b2:3c:
5a:23:74:d6:53:4d:88:bc:e1:13:80:39:82:ee:d5:
60:aa:80:e0:75:96:31:e4:dd:8a:ae:00:f3:2d:b0:
18:1e:db:5e:e8:21:97:34:28:8e:3c:9e:3f:97:81:
f1:17:aa:e0:63:0e:1e:29:a9:74:65:8d:66:a6:85:
fd:db:6f:c9:8d:c7:b2:4b:20:54:b6:6c:79:42:79:
1e:19:99:92:d0:97:ef:fd:e0:a3:a6:b5:c3:42:af:
3f:e4:b9:93:89:05:4c:01:de:0e:b1:93:b4:0a:dc:
88:8f:b8:14:ee:9d:88:1b:f2:5a:46:31:86:e7:c3:
b1:31:45:8a:a2:2d:df:f6:86:a4:92:ba:01:f1:b2:
29:8f:a6:49:6a:28:12:b0:07:0f:5d:f8:58:c9:99:
63:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:E1:6F:F4:A7:76:15:B3:73:B9:F5:33:D4:CE:04:52:D7:53:DD:78
X509v3 Authority Key Identifier:
keyid:4E:EB:86:AB:D5:37:4E:55:30:98:20:90:75:B9:AF:EC:AB:EF:33:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TuuGq9U3TlUwmCCQdbmv7KvvMzo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/3e5c96-7e95-4797-aa6a-a8978e3aae98/1/TeFv9Kd2FbNzufUz1M4EUtdT3Xg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/3e5c96-7e95-4797-aa6a-a8978e3aae98/1/TuuGq9U3TlUwmCCQdbmv7KvvMzo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.230.220.0/24
Signature Algorithm: sha256WithRSAEncryption
9e:fa:9d:0b:57:e7:9f:bc:84:1a:85:00:7e:da:f5:c5:5c:1d:
9b:65:8b:8e:ff:0f:47:36:6e:ff:8c:91:d3:ff:9e:ee:e2:3d:
29:44:bd:2d:ef:3e:37:62:a8:e0:01:cf:fd:56:eb:9a:81:57:
9c:fe:21:30:22:47:d8:53:51:6a:5e:d9:6b:ed:ed:3b:c9:90:
05:f2:1a:a8:eb:b1:7f:fe:30:3c:54:bc:4f:f8:60:d7:a3:88:
08:e1:40:94:42:85:65:73:3a:4c:dd:6f:77:ec:02:bd:11:37:
15:fb:8c:a9:a3:16:6e:35:b4:05:50:69:af:9b:11:67:a3:12:
05:9b:82:31:db:f4:18:92:67:64:43:7b:c4:c5:23:b6:10:99:
45:12:eb:99:10:96:1d:c9:a7:f8:df:81:f9:f9:45:15:72:9a:
ba:18:bf:eb:c1:15:74:c7:fc:87:8d:21:fd:ec:5c:37:1a:0d:
1a:a8:3b:8c:2f:53:f4:4a:da:4f:00:e4:75:d7:b0:b8:ad:22:
51:31:f6:48:29:08:ce:19:f2:71:45:49:ab:75:9d:a3:cd:97:
0c:ec:e2:09:5c:3b:ce:28:73:e0:06:ea:94:59:11:09:25:0c:
8b:cf:68:e6:1e:aa:d6:70:e6:f4:42:ff:b6:cd:12:df:23:de:
7f:fd:41:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 15:45:53 2025 by rpki-client