Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/a6ad9f-8d69-46ea-bd7c-32b150f8e61f/1/WzFh6H-BO6afN4nlJ7B7aS9JxMs.roa
File: WzFh6H-BO6afN4nlJ7B7aS9JxMs.roa (raw, json)
Hash identifier: IUrwu9zCT3YOaPN0NVoggZZgxe5IQMT/dAKI2eQDQ40=
Subject key identifier: 5B:31:61:E8:7F:81:3B:A6:9F:37:89:E5:27:B0:7B:69:2F:49:C4:CB
Certificate issuer: /CN=46eb3b3b579c90b4b996a7fe40f20503913a25cf
Certificate serial: 01856C53CC347878980B8912784FC1950DAA
Authority key identifier: 46:EB:3B:3B:57:9C:90:B4:B9:96:A7:FE:40:F2:05:03:91:3A:25:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Rus7O1eckLS5lqf-QPIFA5E6Jc8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/a6ad9f-8d69-46ea-bd7c-32b150f8e61f/1/WzFh6H-BO6afN4nlJ7B7aS9JxMs.roa
Signing time: Sun 01 Jan 2023 07:55:09 +0000
ROA not before: Sun 01 Jan 2023 07:55:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 28721
IP address blocks: 185.88.130.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:53:cc:34:78:78:98:0b:89:12:78:4f:c1:95:0d:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=46eb3b3b579c90b4b996a7fe40f20503913a25cf
Validity
Not Before: Jan 1 07:55:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5b3161e87f813ba69f3789e527b07b692f49c4cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:30:6d:7d:fb:5b:79:98:65:03:82:59:80:c0:
39:c7:c9:5c:93:b7:94:64:6e:80:ff:33:11:ca:0b:
5c:82:83:15:91:a4:d1:67:c5:b0:05:cb:6d:8c:9b:
e7:13:31:fa:3f:40:c1:ff:74:f3:03:3e:b1:f8:5e:
1b:33:5f:58:54:13:f9:3b:b0:fa:4f:9d:ea:0f:ed:
79:ad:0f:80:dd:48:73:62:7b:9c:e7:39:ce:40:50:
f9:22:0a:8f:8b:c4:b4:ce:1a:38:82:83:d5:aa:a2:
1a:cb:d4:bd:ad:a1:98:19:0d:dc:30:97:36:34:48:
7f:c7:a5:98:78:d5:62:6a:64:58:65:77:dd:69:88:
2a:6c:c6:b2:cf:c4:03:2d:c2:a0:18:e6:1b:2d:ef:
19:a2:1f:b1:c2:70:f6:07:12:6e:59:4a:3e:41:69:
c5:4a:df:1e:34:dd:90:c7:05:db:ac:60:bc:bd:74:
87:c2:4d:c5:c7:3e:aa:f2:4f:4e:77:c7:22:f1:27:
1c:81:cd:07:de:75:9d:a9:20:a1:f9:c4:33:fe:b9:
3a:bd:c4:b0:95:a0:f9:d4:ff:d2:94:29:4e:04:af:
2e:94:81:43:91:98:04:c6:fc:e2:77:5a:ba:26:dd:
07:61:ce:2a:32:3e:b6:ed:58:71:e1:b9:35:bc:e6:
11:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:31:61:E8:7F:81:3B:A6:9F:37:89:E5:27:B0:7B:69:2F:49:C4:CB
X509v3 Authority Key Identifier:
keyid:46:EB:3B:3B:57:9C:90:B4:B9:96:A7:FE:40:F2:05:03:91:3A:25:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Rus7O1eckLS5lqf-QPIFA5E6Jc8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/a6ad9f-8d69-46ea-bd7c-32b150f8e61f/1/WzFh6H-BO6afN4nlJ7B7aS9JxMs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/a6ad9f-8d69-46ea-bd7c-32b150f8e61f/1/Rus7O1eckLS5lqf-QPIFA5E6Jc8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.88.130.0/24
Signature Algorithm: sha256WithRSAEncryption
95:2f:4e:86:09:28:79:30:b4:98:2d:26:c7:1c:79:f7:da:57:
f5:f1:6e:3a:88:30:e1:2b:57:e2:b6:f3:c2:d6:a1:cc:aa:c8:
c9:98:90:2a:2b:a7:67:81:21:f3:f0:79:cf:3f:d5:fa:97:73:
92:1e:e2:2f:aa:db:69:6f:99:ab:6e:d3:b0:e0:71:22:1e:30:
e5:aa:40:b6:0d:81:68:6a:53:16:76:8f:a3:eb:0b:29:94:5e:
b6:73:9e:59:6b:1e:08:ec:f6:15:cd:46:3a:5a:ac:aa:02:b1:
14:3a:52:e6:65:8a:c1:84:f1:5f:6e:b5:00:0f:59:18:bf:c4:
80:a8:14:a6:a4:cd:66:13:8b:c7:82:79:5b:74:0b:e9:6c:66:
49:b0:f6:96:18:ec:c7:ba:d8:9d:09:84:e8:1e:b5:98:bc:4f:
10:a3:4f:fc:64:dc:5e:2a:c3:5c:af:e7:4e:30:4b:db:6c:08:
83:ed:5c:a1:8c:1a:f1:bd:e0:3b:20:63:b1:73:7e:0e:65:b7:
d5:63:e6:2f:f6:b1:52:da:0e:24:2d:45:26:04:12:0f:44:36:
6e:9e:27:12:2c:02:dd:86:7b:c0:57:ac:8b:6e:f9:06:dd:f7:
a8:f6:e4:c5:24:a0:63:1a:75:03:bd:fc:db:77:97:7d:f6:4f:
3e:0a:ba:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 05:08:43 2025 by rpki-client