Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/2c17cb-4742-44cf-891f-7bf8277d8a2f/1/inYhmF6eIH31cCbSimSwHmklnkM.roa
File: inYhmF6eIH31cCbSimSwHmklnkM.roa (raw, json)
Hash identifier: Z7JVezrkgt/wUelYsw9uGal8TdsJiFhrzbB2ZBBaAzE=
Subject key identifier: 8A:76:21:98:5E:9E:20:7D:F5:70:26:D2:8A:64:B0:1E:69:25:9E:43
Certificate issuer: /CN=4acfac8645a3c6f10042dc4a74d700d9d06af17a
Certificate serial: 019420687916657B0B9FA088A073D7272D8E
Authority key identifier: 4A:CF:AC:86:45:A3:C6:F1:00:42:DC:4A:74:D7:00:D9:D0:6A:F1:7A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ss-shkWjxvEAQtxKdNcA2dBq8Xo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/2c17cb-4742-44cf-891f-7bf8277d8a2f/1/inYhmF6eIH31cCbSimSwHmklnkM.roa
Signing time: Wed 01 Jan 2025 05:48:25 +0000
ROA not before: Wed 01 Jan 2025 05:48:25 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 396982
IP address blocks: 185.180.142.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:68:79:16:65:7b:0b:9f:a0:88:a0:73:d7:27:2d:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4acfac8645a3c6f10042dc4a74d700d9d06af17a
Validity
Not Before: Jan 1 05:48:25 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=8a7621985e9e207df57026d28a64b01e69259e43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:f9:d7:5d:f2:1d:8c:c5:da:48:8f:2f:37:1f:
80:35:5f:ff:66:45:75:a3:b9:fa:65:c5:0f:6f:85:
df:9a:57:ba:44:69:dd:6c:1a:40:0c:85:da:c6:d0:
6f:b6:a4:30:81:ee:f4:fa:f2:af:38:0e:ab:77:6c:
b7:6c:89:ac:bf:39:a9:fd:9e:53:f4:ae:ca:19:d3:
75:a9:49:a7:94:f3:78:b6:2a:f1:c7:a2:11:42:e3:
98:cf:09:1e:22:6d:80:74:8f:ce:b6:b0:c7:ea:36:
06:ea:57:70:aa:a5:04:b5:77:01:e9:98:62:06:f5:
f5:3f:0d:93:e2:81:8d:f2:28:e6:72:6e:55:2b:e2:
9d:1b:ef:f8:e0:6e:d3:0b:06:88:29:7f:fc:a3:8d:
b7:4d:c4:19:c0:8a:4b:1d:36:2c:d0:f3:f1:b8:c7:
cb:76:ce:54:12:c8:f1:fa:83:fd:9f:dd:4b:bd:94:
bb:0d:10:70:41:54:24:fc:63:3a:ab:4b:e2:ee:4c:
8a:65:09:ca:00:79:83:49:93:5a:d3:93:fa:6c:91:
f0:8c:bb:f5:e5:47:2a:28:c9:4b:db:bd:fe:2c:eb:
be:61:ed:52:52:7b:58:01:f1:5a:5d:57:fd:14:c0:
a5:50:61:8f:f8:9d:c5:e1:e1:a7:84:25:ec:94:ab:
1f:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:76:21:98:5E:9E:20:7D:F5:70:26:D2:8A:64:B0:1E:69:25:9E:43
X509v3 Authority Key Identifier:
keyid:4A:CF:AC:86:45:A3:C6:F1:00:42:DC:4A:74:D7:00:D9:D0:6A:F1:7A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ss-shkWjxvEAQtxKdNcA2dBq8Xo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/2c17cb-4742-44cf-891f-7bf8277d8a2f/1/inYhmF6eIH31cCbSimSwHmklnkM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/2c17cb-4742-44cf-891f-7bf8277d8a2f/1/Ss-shkWjxvEAQtxKdNcA2dBq8Xo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.180.142.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:fb:69:5e:0a:ad:14:9a:76:ca:17:24:ea:67:a3:d8:cd:2b:
21:26:d2:82:81:f3:c0:df:19:63:e6:d1:36:59:80:45:72:15:
b9:b9:e5:bd:41:1c:58:6a:9e:df:50:50:26:12:d2:7d:a7:91:
1c:1a:7d:fe:b5:d8:a1:be:c9:6a:ee:ad:f7:8e:54:35:0f:2a:
52:10:67:4c:af:d0:4a:11:a7:cc:3c:cd:93:2a:3b:90:cf:20:
c3:cd:6e:f2:55:5a:d1:cc:cb:fc:5a:9c:4b:bb:1c:a7:8c:92:
a3:d9:04:25:35:92:c0:90:ef:f7:4b:8c:17:6a:ae:2a:09:5c:
7f:18:5a:f2:bc:75:29:b8:ed:65:b7:16:98:09:f0:77:cb:33:
d9:14:5f:f1:3f:61:c6:2c:70:f6:b3:41:39:b0:aa:5a:61:3a:
67:09:9a:98:08:08:a1:13:da:f9:ea:a3:99:2f:2e:00:ff:34:
90:94:f3:58:b8:45:a5:fe:b3:4d:7f:92:7c:2d:b8:e9:10:65:
15:53:bc:1b:db:9e:c7:7b:30:1d:9c:e4:de:9c:c8:b5:fb:75:
a4:cc:e3:25:4d:9d:0a:c8:58:13:2d:eb:cc:a1:27:a3:df:08:
25:65:bf:13:5b:a0:a1:91:5c:28:ba:c1:fe:d7:97:14:2c:19:
77:45:96:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:15:57 2025 by rpki-client