Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c6/353670-f3ae-453f-a034-034996970b9c/1/jI2cBUm2vu7Z0gVJ1tWmMPFlSl4.roa
File: jI2cBUm2vu7Z0gVJ1tWmMPFlSl4.roa (raw, json)
Hash identifier: WACB7/iM0waa1/iqxqtHq/GZWBrVwDa7N8tYW7ish3s=
Subject key identifier: 8C:8D:9C:05:49:B6:BE:EE:D9:D2:05:49:D6:D5:A6:30:F1:65:4A:5E
Certificate issuer: /CN=1352a9e5f25bea7d8cdf5f68eda3cfdd9684687b
Certificate serial: 13091D9F
Authority key identifier: 13:52:A9:E5:F2:5B:EA:7D:8C:DF:5F:68:ED:A3:CF:DD:96:84:68:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/E1Kp5fJb6n2M319o7aPP3ZaEaHs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c6/353670-f3ae-453f-a034-034996970b9c/1/jI2cBUm2vu7Z0gVJ1tWmMPFlSl4.roa
Signing time: Sat 01 Jan 2022 09:59:40 +0000
ROA not before: Sat 01 Jan 2022 09:59:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 5606
IP address blocks: 185.171.186.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 319364511 (0x13091d9f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1352a9e5f25bea7d8cdf5f68eda3cfdd9684687b
Validity
Not Before: Jan 1 09:59:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8c8d9c0549b6beeed9d20549d6d5a630f1654a5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:13:c9:04:d7:95:21:26:ea:e5:c3:56:35:8b:
42:28:9c:b2:27:2e:bb:89:85:1d:1f:7f:86:c8:db:
b8:ee:f8:5a:c4:be:63:7d:f9:6e:f5:b3:01:8e:d7:
8f:b0:18:8b:40:93:12:5d:74:4b:cf:29:ec:cc:61:
c5:61:b8:af:4c:fa:83:40:c4:6a:8e:05:e4:1e:4a:
15:b1:f0:fa:75:37:0a:a3:2b:82:a9:f0:ee:8a:c3:
04:49:31:f0:c9:4d:39:da:48:5e:eb:aa:17:16:14:
20:a6:bf:8d:46:7e:eb:10:95:0c:06:d0:de:1d:7a:
4c:78:f4:b5:e5:57:d5:26:64:6c:ea:be:c8:24:4d:
55:95:07:a2:e3:31:9b:fc:09:f8:c2:2a:4d:e6:56:
25:2e:8a:e4:be:cc:5e:17:b7:7b:b6:08:31:ff:d2:
72:29:df:86:89:1e:4c:c4:f7:14:72:94:d1:d2:4c:
29:de:17:3b:cc:a2:fe:f1:c5:f8:eb:d5:a0:aa:c7:
93:2a:fe:42:a9:3e:0c:64:60:2c:13:f7:e4:b7:58:
f6:bc:73:0b:17:19:9c:8c:ca:4d:cf:0a:c1:eb:bb:
a3:22:4f:bb:2c:de:00:56:2d:4b:a2:d1:f0:2d:c3:
88:18:40:0d:40:08:2b:7d:82:fc:1f:49:66:74:28:
68:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:8D:9C:05:49:B6:BE:EE:D9:D2:05:49:D6:D5:A6:30:F1:65:4A:5E
X509v3 Authority Key Identifier:
keyid:13:52:A9:E5:F2:5B:EA:7D:8C:DF:5F:68:ED:A3:CF:DD:96:84:68:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/E1Kp5fJb6n2M319o7aPP3ZaEaHs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/353670-f3ae-453f-a034-034996970b9c/1/jI2cBUm2vu7Z0gVJ1tWmMPFlSl4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/353670-f3ae-453f-a034-034996970b9c/1/E1Kp5fJb6n2M319o7aPP3ZaEaHs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.171.186.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:5a:e0:94:d5:d3:09:d7:71:00:e1:6d:0a:2f:1d:bd:61:ec:
c5:5b:36:4c:b5:2b:4f:a9:a0:f3:38:cf:db:6e:ac:9a:b3:91:
43:c9:cd:cd:3c:07:01:df:fe:44:aa:09:12:b8:b0:0c:65:4d:
02:24:29:dd:06:a0:3b:50:8b:f5:b1:45:10:6e:28:66:b4:cd:
2c:4a:f4:19:db:35:e8:55:d5:66:07:c8:cf:43:0d:15:91:46:
2b:fb:cf:74:33:fa:7a:70:e0:9b:5c:37:46:7e:a7:cd:53:22:
5b:41:91:c8:a1:2e:eb:e9:d9:8a:95:7d:0d:17:b8:76:13:11:
e2:14:fc:b6:18:fc:c0:c6:d9:83:68:a8:a7:b1:e1:1a:44:07:
0b:11:11:ee:d7:d2:c8:3f:41:f2:c1:43:00:53:cf:ad:08:85:
d9:07:e7:97:12:5f:12:2a:f9:3a:ad:89:5c:e5:e2:08:a3:c7:
7c:39:95:61:99:81:c4:19:6a:dc:a7:f6:bd:86:f4:26:10:27:
3a:db:e5:fa:a9:99:63:32:99:99:14:6b:f0:68:79:72:f2:aa:
5e:d8:83:ef:cd:12:89:b1:df:51:a1:f9:5e:8a:a1:7d:b5:48:
b7:e2:ba:81:ec:b0:ef:0b:05:04:b6:a1:5a:a8:d4:bf:d7:9e:
ad:fb:4a:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 05:02:52 2025 by rpki-client