Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/Ho4uuJitGbFxv10A2fC6RNjWFpE.roa
File: Ho4uuJitGbFxv10A2fC6RNjWFpE.roa (raw, json)
Hash identifier: oSYPtdX2129yrNnwmSW4XdCdjZ8vxFGRy9sMVoW0/LQ=
Subject key identifier: 1E:8E:2E:B8:98:AD:19:B1:71:BF:5D:00:D9:F0:BA:44:D8:D6:16:91
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 019422204AD31E8E15B624194D6BB6A948B5
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/Ho4uuJitGbFxv10A2fC6RNjWFpE.roa
Signing time: Wed 01 Jan 2025 13:48:49 +0000
ROA not before: Wed 01 Jan 2025 13:48:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 211585
IP address blocks: 185.206.248.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:20:4a:d3:1e:8e:15:b6:24:19:4d:6b:b6:a9:48:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jan 1 13:48:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=1e8e2eb898ad19b171bf5d00d9f0ba44d8d61691
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:b0:98:27:54:e4:86:c7:75:49:66:c7:2f:80:
5f:94:fa:bc:6c:80:5b:53:fa:86:9a:ae:cd:4a:90:
86:55:c7:59:c0:a6:77:d5:1e:ab:42:b2:70:c8:22:
7c:cf:ac:95:26:ac:a2:66:fb:77:4c:14:85:a0:ae:
68:72:8d:fa:ce:2f:81:80:33:85:fe:35:6e:ff:33:
76:33:3f:f4:af:d1:99:0e:39:4a:68:f9:b6:ef:e4:
c3:ef:a5:93:47:5b:1f:bb:c2:25:9e:85:32:20:59:
e0:cb:5d:7a:1f:9f:a8:b1:1a:63:96:d8:90:b9:da:
10:d8:4e:99:f4:11:d0:95:da:36:30:03:59:ab:54:
c7:93:88:0a:d4:77:97:ab:be:4e:4e:eb:64:2c:32:
cd:2c:c3:96:2d:8a:1a:34:3c:7c:7c:b9:a8:c4:22:
14:eb:e2:9c:ec:d0:df:d2:60:d2:a2:9d:35:ad:11:
39:a4:12:d6:92:b4:98:24:13:87:ce:23:3b:86:48:
ac:4e:d4:71:3e:15:cb:55:c2:72:09:e6:b3:dc:1f:
d9:cd:f6:17:2f:fa:5c:b3:09:4a:30:84:61:4c:97:
0a:ac:c3:71:af:c2:d7:8b:66:ae:01:80:b2:fe:18:
7c:e5:60:b5:05:54:54:36:72:2b:4b:49:9d:bd:cc:
18:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:8E:2E:B8:98:AD:19:B1:71:BF:5D:00:D9:F0:BA:44:D8:D6:16:91
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/Ho4uuJitGbFxv10A2fC6RNjWFpE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.206.248.0/24
Signature Algorithm: sha256WithRSAEncryption
c2:d0:29:43:12:d8:36:6d:e5:38:57:d1:d8:8c:0a:4d:1f:fa:
ca:6d:aa:64:78:4e:c2:42:ba:f9:6b:31:7d:c0:cc:fb:77:aa:
8e:a8:99:eb:0d:04:60:49:9a:11:cf:4d:15:ca:2b:8e:54:70:
34:68:c9:26:95:75:60:e4:4d:c6:60:82:f8:d1:5a:2c:a2:02:
b0:77:7d:64:3f:f3:43:6b:a8:eb:d7:3c:68:6a:f2:d2:b3:ca:
a1:dd:fe:4a:ef:5b:83:63:41:d2:fe:c4:6f:c0:1e:e3:e1:86:
11:06:9e:fd:9c:9a:ff:2d:07:f6:51:71:23:0f:84:a5:c1:32:
20:96:4c:d1:64:d1:a8:1a:f7:f6:1c:94:1a:d6:b3:59:ea:7f:
c9:7f:56:61:05:23:34:90:f9:95:e3:14:01:99:76:6c:ee:d5:
9b:aa:0c:79:35:01:d3:c3:9c:0f:89:bb:b2:7f:74:c6:47:5d:
85:58:ce:9d:39:ec:bf:87:7b:e2:6e:52:5d:a1:26:83:1f:08:
bb:18:1a:fa:ec:88:bf:d0:a9:1d:cd:1e:45:e5:cd:80:4d:c9:
5b:17:ab:9b:ba:d5:2d:f2:e1:67:ad:8a:36:d6:21:ec:b2:69:
5b:d2:16:db:57:c2:e0:3f:80:24:cd:21:c3:1c:6e:1c:c1:86:
f1:7f:31:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 18:07:17 2025 by rpki-client