Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/7fa943-9ea6-4068-b6ae-a4d413d7f89c/1/V4JFeDwnCAqThlIryfbjYJ96jqI.roa
File: V4JFeDwnCAqThlIryfbjYJ96jqI.roa (raw, json)
Hash identifier: kiCqOYzNhXEMGFGlKAItyp8yURJWNGMcGMSiUikSSU4=
Subject key identifier: 57:82:45:78:3C:27:08:0A:93:86:52:2B:C9:F6:E3:60:9F:7A:8E:A2
Certificate issuer: /CN=93ece780dfda43ab4a841727eb20d71fc76528bc
Certificate serial: 0195419B29A1F860CB0533DD12BD25A8BF8B
Authority key identifier: 93:EC:E7:80:DF:DA:43:AB:4A:84:17:27:EB:20:D7:1F:C7:65:28:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k-zngN_aQ6tKhBcn6yDXH8dlKLw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/7fa943-9ea6-4068-b6ae-a4d413d7f89c/1/V4JFeDwnCAqThlIryfbjYJ96jqI.roa
Signing time: Wed 26 Feb 2025 09:34:02 +0000
ROA not before: Wed 26 Feb 2025 09:34:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 400133
IP address blocks: 185.216.23.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:41:9b:29:a1:f8:60:cb:05:33:dd:12:bd:25:a8:bf:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93ece780dfda43ab4a841727eb20d71fc76528bc
Validity
Not Before: Feb 26 09:34:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=578245783c27080a9386522bc9f6e3609f7a8ea2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:2f:b4:90:52:c5:1e:9f:dc:91:56:95:09:39:
f1:8b:7d:71:fd:d2:7a:a0:e4:b4:e4:26:f6:fc:f0:
f2:7a:19:7d:fc:50:4c:82:e9:8f:08:f6:c5:7b:a3:
f1:65:c9:f0:93:d4:ec:28:bb:2c:f9:ef:fc:7e:1a:
90:7e:f7:bf:3d:9e:e7:4a:64:a5:ff:8d:1e:b5:59:
b5:44:40:46:da:12:f4:a7:ff:89:20:c1:b7:ce:c9:
f4:dc:bd:14:9b:61:af:53:09:93:51:cb:5d:bf:60:
fa:21:01:35:24:2a:6c:83:7a:b8:30:30:1f:33:d7:
37:70:fc:94:fd:f3:39:a1:9a:9e:89:af:6f:62:a0:
5a:17:4d:de:fa:2d:fb:01:67:15:59:c0:39:e0:01:
39:20:d2:28:5e:27:33:49:8a:f3:6c:38:a4:37:ad:
fd:9a:12:c0:db:06:99:36:3a:8c:17:50:28:14:09:
72:53:24:c0:fe:d2:5c:53:3b:1b:7b:b5:3f:ed:63:
fe:e3:7b:10:e1:60:74:f1:10:5f:e6:93:23:b7:a7:
b5:65:7b:86:00:0b:e1:67:72:56:09:ff:22:e1:66:
48:69:00:8c:ba:f6:8c:e4:3b:a4:db:28:3e:f2:49:
9f:53:1e:1e:19:74:36:bd:2b:1e:13:31:66:1a:cd:
ce:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:82:45:78:3C:27:08:0A:93:86:52:2B:C9:F6:E3:60:9F:7A:8E:A2
X509v3 Authority Key Identifier:
keyid:93:EC:E7:80:DF:DA:43:AB:4A:84:17:27:EB:20:D7:1F:C7:65:28:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k-zngN_aQ6tKhBcn6yDXH8dlKLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/7fa943-9ea6-4068-b6ae-a4d413d7f89c/1/V4JFeDwnCAqThlIryfbjYJ96jqI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/7fa943-9ea6-4068-b6ae-a4d413d7f89c/1/k-zngN_aQ6tKhBcn6yDXH8dlKLw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.216.23.0/24
Signature Algorithm: sha256WithRSAEncryption
03:1c:69:6d:0f:12:50:83:f6:99:19:bf:4e:b1:c8:80:6d:e7:
4a:76:2a:4f:4c:eb:b6:0d:28:51:de:37:17:13:a3:d5:fb:13:
bb:f3:ea:f9:70:40:97:d4:27:f3:35:1d:79:98:09:ae:15:e4:
50:cb:de:0b:b3:f5:ce:b5:0a:d9:d5:04:78:4c:88:fb:5c:9f:
ab:52:90:46:2f:70:59:3f:78:1e:79:62:47:b2:73:8c:a7:c4:
4a:67:c3:90:f6:e2:e2:68:57:7b:b0:98:78:2b:34:6e:49:a8:
5c:af:e0:85:2c:7c:a5:5f:6e:c5:cc:0a:63:f1:0e:15:23:0f:
b6:95:33:be:64:da:01:38:46:d9:c4:b7:3a:12:c0:6d:dd:cd:
20:1e:c6:73:23:0e:a4:16:34:0a:96:8e:1f:06:2f:b6:4e:df:
e9:a8:56:37:a1:43:61:67:2b:9b:36:11:ea:5f:20:0a:40:b2:
3d:c3:26:b5:57:92:24:21:e8:f3:8c:2a:35:05:3d:cf:a2:cd:
a1:5f:c7:70:31:31:11:b0:f8:0c:6c:c2:44:ba:9f:61:72:68:
2d:01:41:04:16:14:9a:c1:73:a1:c4:90:23:fb:33:08:79:f4:
38:c3:31:0b:16:9c:f1:b9:de:7a:65:d3:e8:4b:2f:90:07:25:
11:ea:aa:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 17:01:11 2025 by rpki-client