Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/pCvtx7px3dSPBXNHkAgtDv7KPO8.roa
File: pCvtx7px3dSPBXNHkAgtDv7KPO8.roa (raw, json)
Hash identifier: TaCX0jjn5yyj7KkqtcbQuuJWs8NQsX0VE6YZ8tTfmE4=
Subject key identifier: A4:2B:ED:C7:BA:71:DD:D4:8F:05:73:47:90:08:2D:0E:FE:CA:3C:EF
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 0194222038C4E3730AD9FA8CF19343CE08CC
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/pCvtx7px3dSPBXNHkAgtDv7KPO8.roa
Signing time: Wed 01 Jan 2025 13:48:44 +0000
ROA not before: Wed 01 Jan 2025 13:48:44 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 201446
IP address blocks: 185.150.76.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:20:38:c4:e3:73:0a:d9:fa:8c:f1:93:43:ce:08:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jan 1 13:48:44 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=a42bedc7ba71ddd48f05734790082d0efeca3cef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:13:d6:be:99:49:77:94:4a:81:5b:d6:3e:fa:
94:3b:a3:68:e0:27:81:41:94:dd:31:3f:a5:58:52:
3e:68:57:56:ce:aa:e6:18:d8:cc:3b:13:9d:07:0b:
c0:1a:5b:cc:d9:3a:1c:a2:5b:c0:34:a9:d1:ee:9a:
0f:b5:54:81:df:8f:d5:b4:4e:b2:4e:2c:ea:d8:da:
08:cf:24:c6:7f:f3:3d:18:28:88:22:b5:3e:fe:2b:
1f:11:69:38:0c:d8:1e:87:67:4d:6e:9f:54:31:5f:
26:87:16:9e:4a:3a:60:25:5e:b3:1b:fe:65:a8:b0:
a4:98:3e:bf:bf:c1:11:d1:09:48:76:51:b4:17:eb:
88:c8:16:52:7b:f4:4c:05:94:f1:b1:05:31:c1:ee:
0e:19:90:30:f8:8b:a8:a2:87:7a:63:66:26:f2:8e:
30:17:c8:f5:00:9e:ef:db:df:6a:bd:28:8f:8f:74:
b2:42:fe:e6:77:9d:cf:08:a9:78:15:77:5f:ba:08:
2b:6e:67:c8:f4:c2:c0:25:81:72:42:71:e2:da:b8:
59:67:cb:64:78:a6:8b:69:f7:e5:01:cc:a2:e1:21:
d3:3f:46:6f:e2:f3:ef:48:2c:b9:28:bc:a5:b9:92:
21:a8:35:4b:8f:9b:1c:7e:71:b1:de:68:43:86:a8:
9e:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:2B:ED:C7:BA:71:DD:D4:8F:05:73:47:90:08:2D:0E:FE:CA:3C:EF
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/pCvtx7px3dSPBXNHkAgtDv7KPO8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.150.76.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:35:c6:86:d6:c3:86:42:b4:47:af:f0:2c:54:5f:53:20:e0:
a8:25:db:98:89:6e:6d:a1:94:a8:b5:28:d4:95:25:32:17:17:
0c:75:2b:6f:1a:33:7a:4e:b8:a2:f8:a6:7d:ff:65:d9:e7:36:
4b:09:e7:97:3e:96:11:2b:4d:69:19:7f:5d:76:7b:7f:a9:59:
fc:e3:a7:b4:b1:4e:62:53:29:f9:0c:99:dd:42:0c:8f:b3:ea:
2f:c0:ff:5f:52:9a:53:95:7f:d4:53:c6:51:d0:d8:72:59:4e:
aa:51:25:4a:c1:0c:13:5f:fc:d1:c3:da:cd:4a:06:0d:e9:6f:
31:7d:52:d4:3f:28:66:9e:3c:dd:29:fc:7a:65:f5:3b:cd:77:
76:44:ca:07:42:c1:17:00:7b:06:4e:ba:45:d1:92:d0:ba:84:
a8:71:24:d7:fb:f5:14:d5:77:5e:fe:df:5b:a6:25:82:d2:73:
6c:f0:fc:07:82:5a:65:e8:e6:e1:64:13:73:42:5b:0f:9e:1b:
46:22:5a:61:ee:7d:3f:2b:e0:aa:9b:52:8c:4c:d5:c4:32:8b:
dc:4f:ad:ce:ea:c7:60:82:ef:94:36:ef:8f:4b:99:45:fc:f8:
1c:34:66:44:87:bf:cc:1f:76:78:48:56:1d:ac:38:3e:62:18:
e5:91:f0:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 09:28:19 2025 by rpki-client