Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/UmAD-P86c68RgyDNb_5VdTckBHU.roa
File: UmAD-P86c68RgyDNb_5VdTckBHU.roa (raw, json)
Hash identifier: Oky7/U6/U4qFbUmMFoUMDcbTkKJmJQMV+zO8L35iFdU=
Subject key identifier: 52:60:03:F8:FF:3A:73:AF:11:83:20:CD:6F:FE:55:75:37:24:04:75
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 019422202DE60BC0F50DCD23773262621197
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/UmAD-P86c68RgyDNb_5VdTckBHU.roa
Signing time: Wed 01 Jan 2025 13:48:41 +0000
ROA not before: Wed 01 Jan 2025 13:48:41 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 63127
IP address blocks: 185.218.23.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:20:2d:e6:0b:c0:f5:0d:cd:23:77:32:62:62:11:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jan 1 13:48:41 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=526003f8ff3a73af118320cd6ffe557537240475
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:fb:96:a6:33:ae:94:7a:a9:43:38:eb:9e:3b:
0e:b8:fa:cc:aa:12:45:b0:4a:84:34:98:a5:ba:fe:
ac:e4:06:5b:18:18:f2:0a:9a:f4:dd:d1:6c:7c:e8:
56:90:8d:87:d0:90:85:15:0c:66:51:1a:fb:e2:de:
c9:b6:62:dc:fe:7c:ad:9c:6f:65:53:6a:5f:ff:25:
d0:23:8e:0c:ce:66:d9:97:f0:3c:72:06:d4:51:ca:
5f:5c:6b:b3:5e:b3:6d:c4:43:37:22:6a:28:1c:a5:
8d:5f:ec:ee:71:c8:90:44:ea:ad:0e:ce:13:2f:7c:
59:50:d7:8a:3b:3e:67:31:c8:74:c0:67:64:06:8e:
0c:08:3a:a1:37:e1:1c:3f:d8:37:9c:65:d9:4a:33:
45:f7:1f:bd:4e:ab:43:4d:50:0b:f5:ce:da:5f:12:
f9:f4:b1:34:1a:d6:47:4b:2b:bc:ef:c2:51:15:ba:
2b:cf:60:18:df:5a:31:92:92:ef:92:e6:63:fd:f6:
28:b9:02:dd:43:44:f8:0d:34:50:9e:cb:3d:c1:72:
bc:99:64:95:ff:1b:c8:80:ce:ca:df:7a:ee:17:d8:
3d:62:1d:12:6b:35:3f:9d:61:7c:4d:91:d9:63:09:
39:54:b6:25:73:09:10:e0:18:d1:f3:f5:94:f8:d4:
61:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:60:03:F8:FF:3A:73:AF:11:83:20:CD:6F:FE:55:75:37:24:04:75
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/UmAD-P86c68RgyDNb_5VdTckBHU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.218.23.0/24
Signature Algorithm: sha256WithRSAEncryption
82:07:30:52:da:bd:b8:80:85:ef:a5:da:cd:16:71:17:b7:5d:
14:94:4c:7f:8f:39:9f:b9:80:50:ae:3f:ea:8c:97:b6:8e:4f:
f1:3d:e0:49:50:bd:ac:c2:e6:00:d9:85:c5:35:e5:4e:eb:1d:
d5:c1:02:fa:7f:c9:4f:81:6a:62:8e:3a:d9:76:8b:8c:4c:28:
19:26:be:88:f8:f5:21:18:76:01:21:94:cf:7c:1c:66:f0:2f:
7e:83:bf:32:18:d0:d8:d1:02:f7:6c:7f:68:64:89:9d:eb:7c:
e0:2e:93:68:ba:56:a7:11:32:72:99:c6:de:99:fa:83:02:79:
ca:93:8a:11:25:2a:01:d3:45:dd:14:7b:9d:8a:a8:8d:cd:7b:
d9:dc:0b:04:5c:77:44:c5:c4:b2:f0:d7:e7:ee:d7:66:1d:51:
be:91:2b:49:25:0e:8c:e8:55:6d:d8:7c:bb:a3:e0:6a:8a:e8:
c2:5d:26:da:a2:d2:55:dc:b1:cd:ca:01:71:97:ef:2e:dd:ff:
cf:e6:ea:7b:b1:c5:82:a4:74:63:f1:04:22:2f:9d:bb:66:1e:
30:14:2f:ac:30:f2:39:e4:f1:ad:eb:6e:38:8a:f2:f2:07:ba:
14:8b:bd:13:80:81:bd:cd:e0:af:ec:55:a4:e4:b0:5f:14:f6:
cb:86:bd:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 09:32:25 2025 by rpki-client