Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/9ab42a-df92-4e42-9e33-5c5892afa487/1/1gtsCJyHdZ_mz1Vmc6aYSOZRTug.roa
File: 1gtsCJyHdZ_mz1Vmc6aYSOZRTug.roa (raw, json)
Hash identifier: i5FmepCDxpYMWJtIWumi8I2WhRPEkV925D+zrSFUKqc=
Subject key identifier: D6:0B:6C:08:9C:87:75:9F:E6:CF:55:66:73:A6:98:48:E6:51:4E:E8
Certificate issuer: /CN=f04eb204f358004788224e2fb18e4d5e74bebf8d
Certificate serial: 019425221D28176B10025E2F682BEE0E91FF
Authority key identifier: F0:4E:B2:04:F3:58:00:47:88:22:4E:2F:B1:8E:4D:5E:74:BE:BF:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8E6yBPNYAEeIIk4vsY5NXnS-v40.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/9ab42a-df92-4e42-9e33-5c5892afa487/1/1gtsCJyHdZ_mz1Vmc6aYSOZRTug.roa
Signing time: Thu 02 Jan 2025 03:49:40 +0000
ROA not before: Thu 02 Jan 2025 03:49:40 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 202656
IP address blocks: 185.110.63.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:22:1d:28:17:6b:10:02:5e:2f:68:2b:ee:0e:91:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f04eb204f358004788224e2fb18e4d5e74bebf8d
Validity
Not Before: Jan 2 03:49:40 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=d60b6c089c87759fe6cf556673a69848e6514ee8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:ac:36:90:49:e3:24:f9:f3:d4:a0:6d:ab:10:
1d:e1:ad:c1:5a:e8:17:19:eb:03:56:43:57:83:f4:
c3:52:00:0f:8d:79:35:39:16:50:9e:10:00:01:13:
ed:68:22:43:2b:4b:66:71:d5:ab:77:12:e9:2a:9a:
af:3d:b6:af:8d:f3:74:42:2b:8d:1d:e2:1a:46:e8:
7c:38:63:b0:82:7a:80:14:02:d1:75:f5:2d:46:7e:
07:7b:e3:68:1e:c8:ed:60:26:cb:f0:d5:c0:a0:7c:
43:3e:35:65:74:76:1b:5c:08:05:ff:71:c1:aa:1e:
01:ef:fc:1b:5a:6e:bc:67:92:f2:63:14:1c:36:67:
3d:b9:50:41:84:1b:0d:7d:ef:02:66:6c:4f:9d:a3:
17:74:5d:68:9e:8a:3b:0c:9d:5b:0f:de:7a:7f:54:
b9:e3:2a:ec:26:a9:94:b3:c6:d2:d0:cd:43:5c:35:
58:43:37:87:de:14:6b:73:02:da:14:24:82:05:ce:
6b:ef:85:12:45:b5:59:54:76:57:f3:5a:76:2b:31:
e3:9e:63:6e:ee:63:04:83:60:b8:85:5a:d2:ca:41:
a7:f4:3d:7d:b2:af:f2:93:9a:0e:f1:97:67:9d:e0:
cc:6a:3a:ab:64:f3:a1:bc:eb:71:eb:5b:25:26:54:
fe:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:0B:6C:08:9C:87:75:9F:E6:CF:55:66:73:A6:98:48:E6:51:4E:E8
X509v3 Authority Key Identifier:
keyid:F0:4E:B2:04:F3:58:00:47:88:22:4E:2F:B1:8E:4D:5E:74:BE:BF:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8E6yBPNYAEeIIk4vsY5NXnS-v40.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/9ab42a-df92-4e42-9e33-5c5892afa487/1/1gtsCJyHdZ_mz1Vmc6aYSOZRTug.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/9ab42a-df92-4e42-9e33-5c5892afa487/1/8E6yBPNYAEeIIk4vsY5NXnS-v40.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.110.63.0/24
Signature Algorithm: sha256WithRSAEncryption
67:a4:4a:d3:78:86:93:73:8b:b1:8b:b5:d6:6d:76:5f:40:3c:
d6:d4:fc:a3:ec:f2:21:e2:57:87:0e:c6:c4:1d:83:cb:16:8d:
af:52:7f:69:9f:21:9c:80:74:7d:4f:27:96:ac:d0:3d:d7:6d:
06:e9:3b:0b:12:92:75:dc:e4:29:9a:d5:19:c6:85:2e:75:25:
08:4b:bd:9d:57:a3:60:07:0b:24:cf:cd:a8:1d:cb:67:18:9a:
33:49:8c:b0:1a:5e:2a:30:f6:96:53:72:2d:e1:ed:53:54:4a:
66:72:5f:23:0b:12:b6:a8:fe:2b:29:2b:5e:b3:f6:cc:50:3d:
a4:24:e0:3e:d4:bf:97:43:11:41:de:7b:a6:3a:eb:d9:98:fe:
70:1c:75:f6:22:72:8d:ac:94:6a:c9:20:6a:43:73:fc:e5:71:
b2:31:a3:d3:c3:91:b2:ff:66:ea:2f:05:0d:49:2c:b3:72:f4:
c0:0a:7d:7d:ec:2e:55:19:36:f1:d7:99:bd:bd:4b:f6:48:03:
5b:67:ce:ec:1f:19:29:13:34:ee:26:17:86:d1:49:46:0d:78:
28:b0:9e:49:dc:3c:a4:f0:70:b0:0e:25:82:42:85:aa:44:be:
ac:30:1a:e3:2b:d0:4c:64:be:ad:04:e7:4e:b0:29:b0:92:96:
06:df:fa:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 05:46:11 2025 by rpki-client