Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/027aae-4922-42a9-a4c9-38f80d6961ec/1/sCibVmGvlfhOnP7xuISl7fg77mg.roa
File: sCibVmGvlfhOnP7xuISl7fg77mg.roa (raw, json)
Hash identifier: zU3gdGka1CEw6yQdMuB6aUaLsTOoMwjYj0HnH6sxIvc=
Subject key identifier: B0:28:9B:56:61:AF:95:F8:4E:9C:FE:F1:B8:84:A5:ED:F8:3B:EE:68
Certificate issuer: /CN=ce704858b643266f7c7107721c98f2ba93dd5265
Certificate serial: 01942823C531824CECCA93FA2767E9E47049
Authority key identifier: CE:70:48:58:B6:43:26:6F:7C:71:07:72:1C:98:F2:BA:93:DD:52:65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/znBIWLZDJm98cQdyHJjyupPdUmU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/027aae-4922-42a9-a4c9-38f80d6961ec/1/sCibVmGvlfhOnP7xuISl7fg77mg.roa
Signing time: Thu 02 Jan 2025 17:50:20 +0000
ROA not before: Thu 02 Jan 2025 17:50:20 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 49981
IP address blocks: 185.200.12.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:28:23:c5:31:82:4c:ec:ca:93:fa:27:67:e9:e4:70:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ce704858b643266f7c7107721c98f2ba93dd5265
Validity
Not Before: Jan 2 17:50:20 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b0289b5661af95f84e9cfef1b884a5edf83bee68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:f0:81:cb:11:37:09:4f:86:22:25:0e:4e:36:
68:43:8c:f2:4c:54:31:22:d5:c0:52:61:88:69:b9:
2d:d0:20:1b:17:60:9c:56:da:a0:fd:60:6f:3f:60:
1c:f5:90:c7:04:a7:83:c5:a6:92:df:9e:6f:ab:0d:
ab:ae:b1:86:a8:e1:e8:1f:9e:a0:aa:c1:a3:df:8d:
ea:3a:1d:a9:80:9b:f6:32:83:5d:4b:6b:f1:ad:69:
f9:36:f0:af:8c:60:05:94:43:0a:fb:ed:6a:0e:1e:
95:2c:20:e8:de:ea:ad:01:2d:63:16:84:7a:60:d0:
9a:5d:44:bb:b3:3c:43:84:dd:1e:22:fc:bc:6f:9b:
5b:93:fb:7f:c0:09:76:78:fd:7f:f3:fe:47:dd:e1:
47:c2:d1:ff:46:50:bf:8c:3c:6e:68:22:1c:52:16:
e9:4e:fd:11:42:4e:d5:09:e8:09:fb:3e:2d:af:cb:
cd:ee:f2:29:de:76:5a:7f:3d:fc:eb:85:2f:d5:47:
05:79:14:84:05:5d:64:90:9a:a7:5f:79:7b:58:92:
d0:d8:e4:78:8a:2c:f0:55:dd:41:4a:1c:39:7c:3b:
9b:e2:88:ac:e6:d5:7d:1b:24:8d:8a:5f:d9:6b:4c:
9a:a7:5a:09:41:27:f4:39:70:c8:89:eb:54:f1:ce:
ed:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:28:9B:56:61:AF:95:F8:4E:9C:FE:F1:B8:84:A5:ED:F8:3B:EE:68
X509v3 Authority Key Identifier:
keyid:CE:70:48:58:B6:43:26:6F:7C:71:07:72:1C:98:F2:BA:93:DD:52:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/znBIWLZDJm98cQdyHJjyupPdUmU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/027aae-4922-42a9-a4c9-38f80d6961ec/1/sCibVmGvlfhOnP7xuISl7fg77mg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/027aae-4922-42a9-a4c9-38f80d6961ec/1/znBIWLZDJm98cQdyHJjyupPdUmU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.200.12.0/24
Signature Algorithm: sha256WithRSAEncryption
bc:2d:e0:d5:5f:26:09:84:15:2a:9e:0e:38:b0:97:d4:af:e5:
a1:cb:dd:96:a3:31:1a:06:95:01:f2:64:59:8a:96:4d:76:6d:
f8:1b:66:68:07:13:38:7e:72:69:e7:40:0d:7f:6b:1c:3e:8e:
aa:03:11:9d:0d:42:2d:db:e1:51:8e:57:ab:14:9b:0a:cb:19:
44:36:09:4f:2a:b7:3c:21:ae:4a:68:0e:22:86:1d:c2:43:7d:
79:0f:bf:fc:f4:d2:f2:b3:13:f9:69:bd:50:77:89:c8:bf:1a:
da:8e:3f:f1:9f:48:ec:50:b3:ed:99:77:0c:6d:be:58:e5:70:
1d:87:2e:b6:36:2e:96:43:27:6d:e2:fd:d0:b7:39:58:93:96:
e0:d1:2e:b4:91:7e:17:49:8f:f9:b0:45:d0:d3:32:dd:e5:5c:
99:02:c1:c2:df:41:bf:be:59:21:d2:b2:a3:3b:9f:7e:1f:16:
14:2c:aa:dd:c2:9d:ca:06:c1:58:ea:a5:ed:57:61:47:1c:ff:
be:8e:5e:8a:fa:9c:53:a9:e0:58:6b:b8:2a:e6:25:85:7b:c2:
fa:f9:e2:bb:a0:cf:99:3d:46:6e:4d:43:12:24:68:0b:2e:28:
be:87:56:93:12:13:5d:ff:83:0c:5f:14:26:ea:14:7a:61:e9:
e6:9c:73:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:17:21 2025 by rpki-client