Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c6/353670-f3ae-453f-a034-034996970b9c/1/tYT2UdZkuv14IxSzYfP4-pXAL8Y.roa
File: tYT2UdZkuv14IxSzYfP4-pXAL8Y.roa (raw, json)
Hash identifier: LB4jSEV1sFjaY/BSEdjdlsWzUHUWUQZzU6VOS3pS4eo=
Subject key identifier: B5:84:F6:51:D6:64:BA:FD:78:23:14:B3:61:F3:F8:FA:95:C0:2F:C6
Certificate issuer: /CN=1352a9e5f25bea7d8cdf5f68eda3cfdd9684687b
Certificate serial: 1307C240
Authority key identifier: 13:52:A9:E5:F2:5B:EA:7D:8C:DF:5F:68:ED:A3:CF:DD:96:84:68:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/E1Kp5fJb6n2M319o7aPP3ZaEaHs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c6/353670-f3ae-453f-a034-034996970b9c/1/tYT2UdZkuv14IxSzYfP4-pXAL8Y.roa
Signing time: Sat 01 Jan 2022 09:59:40 +0000
ROA not before: Sat 01 Jan 2022 09:59:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 5588
IP address blocks: 185.171.186.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 319275584 (0x1307c240)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1352a9e5f25bea7d8cdf5f68eda3cfdd9684687b
Validity
Not Before: Jan 1 09:59:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b584f651d664bafd782314b361f3f8fa95c02fc6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fc:b9:4a:5e:43:3e:49:ca:a5:b3:05:f6:06:be:
30:2f:9c:8b:8b:86:70:bd:b1:f7:ee:f8:0a:ca:25:
6d:20:9c:ee:42:54:95:71:c5:ba:e2:fc:cf:c4:0e:
6d:c1:db:e3:c4:92:58:0f:fe:a3:76:56:10:21:97:
03:d4:c8:2c:20:b7:3c:fe:66:6b:a8:32:e0:d1:04:
bc:37:e2:db:09:78:64:7a:14:7e:98:b8:72:08:f4:
90:34:0b:1b:d5:10:54:3b:d6:b7:6e:4a:54:a8:6b:
f2:3c:f1:91:13:43:b5:2d:32:36:26:1b:d4:57:ae:
b7:d6:93:8a:b8:ba:f2:5c:96:19:2d:2d:89:2a:cc:
fc:96:cb:83:9d:d2:0a:39:7a:e9:ba:a6:9c:4c:9f:
b5:23:11:6d:21:7f:72:83:9e:69:23:cb:32:99:96:
13:c8:e6:c1:11:a4:49:e5:4c:33:28:54:c2:3b:42:
4f:52:4c:5f:c1:00:5d:be:dd:2e:df:b3:e3:9b:c4:
00:d8:06:45:ef:e1:90:40:da:e9:21:1d:d6:94:8e:
95:87:39:a9:c4:d5:b5:e2:e7:bb:ff:47:b3:e5:aa:
7c:40:aa:24:bf:f4:72:dc:ff:49:86:d8:c8:57:05:
52:c1:65:75:ad:d3:ff:d2:b9:7a:f9:34:71:17:f1:
3f:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:84:F6:51:D6:64:BA:FD:78:23:14:B3:61:F3:F8:FA:95:C0:2F:C6
X509v3 Authority Key Identifier:
keyid:13:52:A9:E5:F2:5B:EA:7D:8C:DF:5F:68:ED:A3:CF:DD:96:84:68:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/E1Kp5fJb6n2M319o7aPP3ZaEaHs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/353670-f3ae-453f-a034-034996970b9c/1/tYT2UdZkuv14IxSzYfP4-pXAL8Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/353670-f3ae-453f-a034-034996970b9c/1/E1Kp5fJb6n2M319o7aPP3ZaEaHs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.171.186.0/24
Signature Algorithm: sha256WithRSAEncryption
10:00:c6:9b:dd:66:d4:fb:b0:75:7b:e5:ec:89:6d:5c:9e:82:
8c:c9:19:3d:14:46:3b:c6:9a:ed:18:7e:fc:26:98:66:3f:4a:
aa:92:61:d8:8a:d9:e0:56:b1:5c:00:91:a8:5c:f3:f2:e7:b4:
6a:ba:93:e6:c0:ff:8f:77:9e:2a:1a:0c:53:4a:8f:62:db:71:
ac:81:f1:3c:0a:dd:c7:1c:95:9c:17:d5:5b:3b:e4:45:2a:7b:
11:b5:8a:b6:6f:b9:a9:1f:81:6c:3f:49:1f:33:46:39:46:01:
93:c9:c7:08:63:97:86:c9:47:fb:6e:cb:4a:d4:7e:da:af:c6:
a1:17:c4:81:2a:e8:a1:df:7e:eb:c4:c5:66:4f:9d:c2:a2:a3:
0f:07:f4:2d:8a:14:39:1b:c7:91:72:6a:75:f1:a9:9c:3a:aa:
42:86:68:37:ae:a8:b7:00:e6:4c:fd:b2:9a:89:e2:62:09:f3:
60:5f:02:f0:82:e2:ab:ce:6b:39:c2:9e:d5:5e:0f:07:8e:6b:
51:07:d1:48:d5:e3:01:52:0f:a3:28:b6:56:89:1b:ba:ea:57:
a7:9c:ac:30:bc:86:3c:19:5a:1e:1b:28:1f:2d:04:0c:42:64:
01:63:a7:7a:fc:6e:85:f8:79:5e:75:02:2d:76:1c:53:46:98:
e2:7f:18:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 05:10:04 2025 by rpki-client