Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/846bd3-0373-4190-adff-3e36ca9a2d69/1/RJPHi4UfLVVQ4xHpe8tTM4SNRO4.roa
File: RJPHi4UfLVVQ4xHpe8tTM4SNRO4.roa (raw, json)
Hash identifier: dOTSLMDpTF1t5bpzc8oTYmvPXAzi5ssP1A0AdSL2ViI=
Subject key identifier: 44:93:C7:8B:85:1F:2D:55:50:E3:11:E9:7B:CB:53:33:84:8D:44:EE
Certificate issuer: /CN=dca0adb1a8b797020f0ec7a29a9b5abad40b653e
Certificate serial: 018CC64B41F87DDC7EBA0DAD1433CA532076
Authority key identifier: DC:A0:AD:B1:A8:B7:97:02:0F:0E:C7:A2:9A:9B:5A:BA:D4:0B:65:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3KCtsai3lwIPDseimptautQLZT4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/846bd3-0373-4190-adff-3e36ca9a2d69/1/RJPHi4UfLVVQ4xHpe8tTM4SNRO4.roa
Signing time: Mon 01 Jan 2024 18:31:10 +0000
ROA not before: Mon 01 Jan 2024 18:31:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15440
IP address blocks: 185.186.25.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:4b:41:f8:7d:dc:7e:ba:0d:ad:14:33:ca:53:20:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dca0adb1a8b797020f0ec7a29a9b5abad40b653e
Validity
Not Before: Jan 1 18:31:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4493c78b851f2d5550e311e97bcb5333848d44ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:95:65:f0:c9:41:a9:c4:9d:9f:7c:2b:be:cb:
35:14:7d:be:8a:a0:de:ab:79:ab:ca:2e:49:23:fe:
41:08:c2:55:65:3b:ff:eb:d8:0d:60:ca:71:99:d6:
42:0a:70:15:59:a6:2e:12:33:e7:31:29:be:c5:36:
73:de:7c:0a:30:cc:38:e6:b0:71:11:0c:8e:ba:13:
ae:e8:ed:95:4a:0f:ad:79:38:60:4a:18:41:06:36:
49:40:2b:3f:f9:d9:58:9e:7e:9c:70:87:0e:6a:c6:
41:6d:f8:be:c6:8a:52:2e:cc:df:f7:8b:40:86:9a:
6d:a0:e8:fb:67:1b:01:6c:e4:9b:08:8c:36:74:79:
5c:3f:1b:b7:f4:45:15:9d:f1:d3:05:79:a5:1a:1c:
2d:44:ee:b3:04:99:b0:a8:27:b2:12:0b:ea:b3:60:
bb:8c:b1:7d:ae:43:88:af:45:98:39:db:b9:32:5b:
cd:f3:06:01:80:b7:79:7c:42:11:11:0b:5a:9e:f6:
b5:71:60:69:5f:37:2a:da:16:6e:2a:86:6e:01:f4:
f7:e5:12:42:4b:d2:3e:0e:da:24:13:d7:74:00:e8:
83:27:de:d8:3e:d3:66:ad:b6:a1:92:59:2e:4d:c7:
5b:21:68:08:c7:79:74:9b:b6:2f:ef:bc:d8:2a:20:
79:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:93:C7:8B:85:1F:2D:55:50:E3:11:E9:7B:CB:53:33:84:8D:44:EE
X509v3 Authority Key Identifier:
keyid:DC:A0:AD:B1:A8:B7:97:02:0F:0E:C7:A2:9A:9B:5A:BA:D4:0B:65:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3KCtsai3lwIPDseimptautQLZT4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/846bd3-0373-4190-adff-3e36ca9a2d69/1/RJPHi4UfLVVQ4xHpe8tTM4SNRO4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/846bd3-0373-4190-adff-3e36ca9a2d69/1/3KCtsai3lwIPDseimptautQLZT4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.186.25.0/24
Signature Algorithm: sha256WithRSAEncryption
74:c2:87:eb:ec:9f:d1:06:00:70:cb:0d:45:e3:d3:e3:43:d0:
11:79:fe:c4:9b:9d:8f:1c:66:41:b4:58:84:82:01:ab:06:48:
13:a1:51:e1:65:b7:59:cf:9e:a9:4f:11:45:7a:3d:80:dd:82:
87:ff:1a:33:e0:26:f4:5d:21:b8:3e:3c:99:22:7f:d4:bf:10:
a0:2a:cf:eb:27:1d:04:32:a9:03:f4:b6:9d:32:77:19:35:09:
6c:d1:7b:0d:1f:48:f9:f7:8e:ef:d2:e9:e4:02:ba:30:6a:99:
c1:8c:1d:3a:85:6d:87:20:d4:cf:0c:f4:65:41:73:83:94:d8:
5d:1b:d2:e6:e0:c8:c1:e4:83:b9:d2:68:85:2d:9a:cc:38:61:
e8:02:66:25:fa:cd:8e:cb:40:be:d9:fe:c1:8e:6b:fd:6e:60:
ef:d8:59:63:cc:ed:2f:1d:0b:e0:55:d2:87:d5:57:15:ae:35:
d9:1d:9a:9a:e4:34:c2:75:93:1f:57:01:de:0d:ee:7a:19:1b:
1b:b5:d8:13:0d:18:ab:c0:5c:a4:2e:1f:b4:a3:52:39:5b:c1:
5a:4b:04:17:b2:fa:02:aa:54:62:0c:0c:f5:39:60:ec:ad:55:
2c:b7:5b:11:5c:b9:95:9b:b9:87:a2:b2:7e:a5:77:f4:fd:b0:
84:d3:47:5b
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzGS0H4fdx+ug2tFDPKUyB2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRjYTBhZGIxYThiNzk3MDIwZjBlYzdhMjlhOWI1YWJhZDQw
YjY1M2UwHhcNMjQwMTAxMTgzMTEwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0NDkzYzc4Yjg1MWYyZDU1NTBlMzExZTk3YmNiNTMzMzg0OGQ0NGVlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgZVl8MlBqcSdn3wrvss1FH2+iqDe
q3mryi5JI/5BCMJVZTv/69gNYMpxmdZCCnAVWaYuEjPnMSm+xTZz3nwKMMw45rBx
EQyOuhOu6O2VSg+teThgShhBBjZJQCs/+dlYnn6ccIcOasZBbfi+xopSLszf94tA
hpptoOj7ZxsBbOSbCIw2dHlcPxu39EUVnfHTBXmlGhwtRO6zBJmwqCeyEgvqs2C7
jLF9rkOIr0WYOdu5MlvN8wYBgLd5fEIREQtanva1cWBpXzcq2hZuKoZuAfT35RJC
S9I+DtokE9d0AOiDJ97YPtNmrbahklkuTcdbIWgIx3l0m7Yv77zYKiB5IQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFESTx4uFHy1VUOMR6XvLUzOEjUTuMB8GA1UdIwQY
MBaAFNygrbGot5cCDw7HopqbWrrUC2U+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM0tDdHNhaTNsd0lQRHNlaW1wdGF1dFFMWlQ0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNC84NDZiZDMtMDM3My00MTkwLWFkZmYt
M2UzNmNhOWEyZDY5LzEvUkpQSGk0VWZMVlZRNHhIcGU4dFRNNFNOUk80LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNC84NDZiZDMtMDM3My00MTkwLWFkZmYtM2UzNmNhOWEyZDY5
LzEvM0tDdHNhaTNsd0lQRHNlaW1wdGF1dFFMWlQ0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuboZMA0G
CSqGSIb3DQEBCwUAA4IBAQB0wofr7J/RBgBwyw1F49PjQ9ARef7Em52PHGZBtFiE
ggGrBkgToVHhZbdZz56pTxFFej2A3YKH/xoz4Cb0XSG4PjyZIn/UvxCgKs/rJx0E
MqkD9LadMncZNQls0XsNH0j5947v0unkArowapnBjB06hW2HINTPDPRlQXODlNhd
G9Lm4MjB5IO50miFLZrMOGHoAmYl+s2Oy0C+2f7Bjmv9bmDv2FljzO0vHQvgVdKH
1VcVrjXZHZqa5DTCdZMfVwHeDe56GRsbtdgTDRirwFykLh+0o1I5W8FaSwQXsvoC
qlRiDAz1OWDsrVUst1sRXLmVm7mHorJ+pXf0/bCE00db
-----END CERTIFICATE-----
Generated at Tue May 14 12:52:46 2024 by rpki-client on console-ams.rpki-client.org