Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/A7WLHqYHUbTB8YRyu_-Vo_zG16o.roa
File: A7WLHqYHUbTB8YRyu_-Vo_zG16o.roa (raw, json)
Hash identifier: N5Rx9TCFn24NsJGZqsl+VA7rOz169cw/d37+m5m4bdI=
Subject key identifier: 03:B5:8B:1E:A6:07:51:B4:C1:F1:84:72:BB:FF:95:A3:FC:C6:D7:AA
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 019422205DDFA1AE4FA2CC2198B1ACE51377
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/A7WLHqYHUbTB8YRyu_-Vo_zG16o.roa
Signing time: Wed 01 Jan 2025 13:48:54 +0000
ROA not before: Wed 01 Jan 2025 13:48:54 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 272611
IP address blocks: 185.238.230.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:20:5d:df:a1:ae:4f:a2:cc:21:98:b1:ac:e5:13:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jan 1 13:48:54 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=03b58b1ea60751b4c1f18472bbff95a3fcc6d7aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:ab:37:f8:f9:f2:ab:58:69:39:d5:73:59:0f:
88:9c:9e:6e:eb:32:e5:fd:5b:ba:cf:71:dc:d0:db:
d5:7c:f6:33:ba:f1:97:4c:f7:41:75:8d:1a:c6:86:
75:df:1e:7a:39:2e:c4:b0:26:65:e2:19:7c:5d:ef:
47:35:b9:e3:ef:53:6e:de:97:28:b5:28:25:bc:b9:
5d:b6:fd:32:43:ec:b0:7b:eb:27:e2:8b:e8:fd:8a:
b2:89:de:f1:ba:10:75:4f:c9:54:ea:7e:bd:27:bb:
24:f3:e9:52:7a:b8:87:40:7c:34:44:93:65:ee:5d:
65:6e:5a:e0:98:75:32:8b:4e:65:96:33:f9:34:93:
bd:0b:bb:36:9e:ed:8f:d5:59:0d:9b:b8:d0:b0:60:
45:14:f1:ca:39:b9:bd:29:c0:ac:27:40:47:2f:ab:
86:a2:a7:aa:22:5f:73:fe:55:34:6e:e8:31:59:97:
38:7f:11:07:87:7e:c9:9b:7a:89:b2:3a:21:fc:1f:
52:17:ab:97:7e:5b:27:a6:06:ff:3e:2e:c3:9d:d6:
2b:5a:80:85:d2:89:74:70:7e:3c:0b:e5:04:3e:ee:
74:9f:43:c6:39:23:73:1c:34:e9:2b:dc:15:f8:94:
e1:52:c0:a8:07:81:fe:25:d2:5c:d5:3f:a6:be:d8:
60:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:B5:8B:1E:A6:07:51:B4:C1:F1:84:72:BB:FF:95:A3:FC:C6:D7:AA
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/A7WLHqYHUbTB8YRyu_-Vo_zG16o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.238.230.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:7e:d1:4f:42:95:de:51:dc:af:06:16:fa:e9:b3:56:1b:36:
13:db:f4:cd:ea:55:27:5f:73:00:6c:56:de:92:58:b8:22:4f:
59:54:75:3f:c7:f7:09:2a:22:d8:58:72:7f:40:73:02:99:e1:
2c:48:8d:1f:2e:cb:5b:84:3e:e4:bf:da:d5:52:a0:41:e7:48:
ea:15:34:18:bf:24:ef:79:47:de:1a:63:bb:cc:3e:d4:eb:21:
4c:f7:1c:ab:33:50:27:e5:2c:57:97:34:ff:6e:48:44:3e:6d:
b8:cf:11:5f:77:01:39:1a:2c:ae:cc:c0:dd:79:3a:2d:c7:a5:
39:88:56:ef:be:9a:98:cf:88:92:0a:85:c1:2b:a7:27:d5:73:
ce:3d:80:9d:eb:bb:de:d2:72:47:dd:2a:12:a7:1c:5f:4b:01:
f9:8f:55:b7:94:fa:f5:e2:0c:a9:a7:1d:67:11:a9:ba:14:87:
b9:d2:46:88:9a:63:ff:e2:c6:73:8f:2d:be:fe:3b:ed:d2:57:
45:d5:33:b2:6f:8a:a6:e6:74:83:71:e5:58:49:5a:f3:d5:1e:
81:ca:92:48:b0:d6:1f:fb:e6:3d:10:31:13:e2:f2:ec:13:5c:
e0:bf:26:95:72:51:1e:05:58:47:9e:c0:f9:d6:8b:c4:87:e5:
e3:a6:ad:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 09:31:32 2025 by rpki-client