Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/be1a25-5855-4aec-8e18-bbfd45c84bea/1/ekxrL1JWVDnVVqv-WzRWrKw3NmE.roa
File: ekxrL1JWVDnVVqv-WzRWrKw3NmE.roa (raw, json)
Hash identifier: gOtUBg7Sy3dDxdkYc7Zj0tKSsAmH3tZ3PiUCEroxpkQ=
Subject key identifier: 7A:4C:6B:2F:52:56:54:39:D5:56:AB:FE:5B:34:56:AC:AC:37:36:61
Certificate issuer: /CN=66f8206e3311df394f48389b8122b94aa1f0b05c
Certificate serial: 019388B652D3690C0B8FD3B4F447E4006BB7
Authority key identifier: 66:F8:20:6E:33:11:DF:39:4F:48:38:9B:81:22:B9:4A:A1:F0:B0:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZvggbjMR3zlPSDibgSK5SqHwsFw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/be1a25-5855-4aec-8e18-bbfd45c84bea/1/ekxrL1JWVDnVVqv-WzRWrKw3NmE.roa
Signing time: Mon 02 Dec 2024 18:51:10 +0000
ROA not before: Mon 02 Dec 2024 18:51:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 55286
IP address blocks: 185.229.34.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:88:b6:52:d3:69:0c:0b:8f:d3:b4:f4:47:e4:00:6b:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66f8206e3311df394f48389b8122b94aa1f0b05c
Validity
Not Before: Dec 2 18:51:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7a4c6b2f52565439d556abfe5b3456acac373661
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:81:06:d6:73:b8:d1:25:ea:27:c2:6c:0b:82:
55:c0:14:90:3b:1a:d9:30:d5:9f:36:98:81:6a:f5:
10:10:31:4e:0b:23:6f:4a:21:09:77:88:1a:e9:30:
e9:ec:11:83:21:61:39:b4:c9:5f:f1:a3:fc:81:5f:
90:4a:24:8e:57:7c:22:87:34:9e:44:16:f8:29:e9:
f4:cc:6b:66:d1:e1:78:5a:23:31:f3:92:4b:17:48:
ac:be:28:4f:28:79:bd:aa:75:cd:ae:a4:fb:49:18:
6e:45:32:6f:7d:19:5f:06:db:ef:65:3f:45:51:a7:
7e:e4:84:8f:2e:92:e1:43:a0:78:12:24:a1:61:1c:
86:96:ff:36:20:6a:f4:95:56:c2:5f:19:7f:11:10:
c6:b5:f6:48:a1:84:8c:90:57:a7:f6:71:a9:49:e3:
2d:8a:08:91:83:fd:f6:64:fe:dd:a9:f2:6e:09:cd:
95:37:03:24:20:6e:01:c1:69:28:38:b0:fe:6d:e4:
8f:7c:46:2a:c9:83:1e:f3:a2:2f:8d:56:96:c6:9c:
3e:da:54:cb:04:4a:22:f5:2d:41:b1:c3:0e:05:2b:
c9:5b:45:66:a0:bd:2c:dc:c7:28:36:09:bc:6f:d9:
d5:af:18:42:00:58:b1:6f:c9:6f:4d:23:42:fa:9f:
4c:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:4C:6B:2F:52:56:54:39:D5:56:AB:FE:5B:34:56:AC:AC:37:36:61
X509v3 Authority Key Identifier:
keyid:66:F8:20:6E:33:11:DF:39:4F:48:38:9B:81:22:B9:4A:A1:F0:B0:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZvggbjMR3zlPSDibgSK5SqHwsFw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/be1a25-5855-4aec-8e18-bbfd45c84bea/1/ekxrL1JWVDnVVqv-WzRWrKw3NmE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/be1a25-5855-4aec-8e18-bbfd45c84bea/1/ZvggbjMR3zlPSDibgSK5SqHwsFw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.229.34.0/24
Signature Algorithm: sha256WithRSAEncryption
34:4a:f4:f7:aa:0e:8d:53:e0:ff:1d:55:6d:bc:08:e2:c2:a6:
51:93:2f:0c:3f:7d:0c:a0:d2:6d:57:57:2a:cb:d6:7d:fb:0b:
7c:56:09:1f:a0:49:40:e4:96:df:24:45:fd:07:bb:e6:99:9e:
4a:ff:e9:5e:d7:2f:ed:e0:65:b0:76:08:a4:7d:b1:31:81:bc:
4d:61:42:2d:7e:03:19:45:f2:f7:a2:76:dd:47:e5:83:5c:39:
75:4a:49:ff:e3:e2:2f:94:8b:15:83:76:53:39:ab:65:37:f9:
db:c9:62:b1:0d:08:fd:8b:0a:8d:b2:5f:75:da:2c:f3:d6:2c:
8a:48:9b:91:fa:de:6f:e8:f9:4e:f0:c6:7d:a9:86:f5:5c:66:
76:3a:a0:e5:cb:71:e8:f3:8b:6f:6d:8c:36:06:ad:2c:95:42:
36:e7:95:e4:75:9a:12:97:c4:bd:6f:22:5c:cc:68:67:c7:ca:
52:56:7c:1b:d2:0e:38:ef:69:56:1b:6a:82:a7:0d:2f:b5:72:
1d:52:5b:68:8c:17:61:36:cb:b1:3c:ef:15:2f:19:33:ab:27:
cb:37:91:e4:bb:42:b1:4b:f1:e2:18:d0:07:51:83:c3:3f:b1:
a2:db:75:22:ec:cd:94:dc:0e:c0:91:a6:f0:38:03:95:b8:f4:
6d:2f:45:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:40:59 2025 by rpki-client