Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/f0f5e3-6050-4e2d-a4ea-a4ea0a63f766/1/IVs_hi0L8DU-XvjpZ3j52FBoeuA.roa
File: IVs_hi0L8DU-XvjpZ3j52FBoeuA.roa (raw, json)
Hash identifier: gjbii66qiZGzea5anGixtq9DuuHhboIpMcO6QPFsj6s=
Subject key identifier: 21:5B:3F:86:2D:0B:F0:35:3E:5E:F8:E9:67:78:F9:D8:50:68:7A:E0
Certificate issuer: /CN=a5c6373eab19cf43dd2f43111398383ee2bad030
Certificate serial: 019422FBA0F451BD799C68CD9522829ABA45
Authority key identifier: A5:C6:37:3E:AB:19:CF:43:DD:2F:43:11:13:98:38:3E:E2:BA:D0:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pcY3PqsZz0PdL0MRE5g4PuK60DA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/f0f5e3-6050-4e2d-a4ea-a4ea0a63f766/1/IVs_hi0L8DU-XvjpZ3j52FBoeuA.roa
Signing time: Wed 01 Jan 2025 17:48:23 +0000
ROA not before: Wed 01 Jan 2025 17:48:23 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 400040
IP address blocks: 185.228.0.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:fb:a0:f4:51:bd:79:9c:68:cd:95:22:82:9a:ba:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a5c6373eab19cf43dd2f43111398383ee2bad030
Validity
Not Before: Jan 1 17:48:23 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=215b3f862d0bf0353e5ef8e96778f9d850687ae0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:3a:05:e8:8d:6b:63:67:34:05:ef:3d:03:82:
43:03:32:58:4b:24:b5:f4:be:a9:48:1c:3c:b3:f0:
a0:b2:0a:a4:2e:ec:a7:e0:6d:84:a1:84:e0:10:e0:
d9:e3:b7:18:ec:f2:7f:4f:04:6a:19:4f:69:5c:f7:
e6:24:e6:84:08:db:d9:53:89:ff:6c:4a:40:0f:e1:
0b:94:70:e6:5b:e2:66:1f:27:3d:34:4e:a7:bf:4c:
60:38:ff:6c:6c:9a:d0:18:85:8d:ce:b5:4c:f6:f9:
a6:da:b8:d4:32:35:6e:c5:ee:98:89:e2:d8:2d:93:
a3:2d:93:de:e4:00:57:eb:f4:6f:e2:a4:2f:a4:9f:
0a:c0:03:50:1f:ee:fb:a1:fd:98:96:65:62:26:c4:
82:f9:64:13:a7:64:cf:35:33:19:7e:c7:24:1c:e5:
61:d1:44:0e:8b:4f:4c:5e:62:46:2d:7d:15:98:77:
20:a8:0f:f9:04:31:83:d5:b7:2c:6a:82:b8:04:68:
a1:f1:08:38:43:61:60:01:56:d7:4c:86:85:e4:c5:
a8:80:de:1e:d2:e8:b3:a0:ea:b5:e7:4b:aa:e7:c1:
61:d4:74:7d:6f:d2:5e:ea:85:0c:7a:bd:bb:43:e5:
d7:d3:76:f9:5f:58:dd:0a:5c:7e:d3:ea:c5:6b:9a:
9f:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:5B:3F:86:2D:0B:F0:35:3E:5E:F8:E9:67:78:F9:D8:50:68:7A:E0
X509v3 Authority Key Identifier:
keyid:A5:C6:37:3E:AB:19:CF:43:DD:2F:43:11:13:98:38:3E:E2:BA:D0:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pcY3PqsZz0PdL0MRE5g4PuK60DA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/f0f5e3-6050-4e2d-a4ea-a4ea0a63f766/1/IVs_hi0L8DU-XvjpZ3j52FBoeuA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/f0f5e3-6050-4e2d-a4ea-a4ea0a63f766/1/pcY3PqsZz0PdL0MRE5g4PuK60DA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.228.0.0/24
Signature Algorithm: sha256WithRSAEncryption
08:7d:8b:bb:16:a1:e1:50:77:c7:c8:ac:16:05:cc:48:2a:9c:
bf:21:4f:f5:dd:36:73:bc:df:40:56:3b:62:c9:8e:37:c1:8f:
38:36:f1:e5:57:1d:f9:a4:b3:47:b3:07:09:46:61:b8:1a:7a:
0f:ab:cd:c3:03:6f:32:81:00:20:5e:5a:85:ff:7d:3f:75:85:
0b:ce:53:2f:4d:9d:da:af:e5:e1:fd:cd:35:a6:7a:a4:88:e2:
45:f1:3c:0d:15:41:ce:89:5a:99:70:bf:ef:73:47:59:75:51:
41:e5:ce:fd:41:15:b7:49:72:58:d7:99:04:97:76:28:34:37:
4d:0e:60:83:9f:3f:63:63:57:3d:52:e2:bb:7b:2e:1a:a0:72:
94:a6:41:59:c7:86:51:01:93:34:a5:3a:47:95:40:a6:1d:20:
d3:24:4d:77:6b:26:99:92:45:c4:72:b3:cc:8d:46:f0:ff:50:
a2:ef:fe:0c:04:ff:87:fc:25:aa:4e:39:d0:3b:0e:ac:4e:fe:
0a:8d:de:96:d1:05:b5:ba:42:b0:9e:3c:f4:46:fa:f7:d2:d1:
03:40:f0:b4:90:3d:0f:02:28:f5:94:79:01:fc:93:f4:e1:48:
9f:5b:38:62:4f:5f:ea:4c:09:c1:bd:9f:a2:b5:91:2a:f0:96:
f2:55:48:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 07:11:08 2025 by rpki-client