Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/1d4cfc-8e5c-457c-9620-135c91ec199e/1/ublcR1AG8bTtIDegIl4XF5yKZ2U.roa
File: ublcR1AG8bTtIDegIl4XF5yKZ2U.roa (raw, json)
Hash identifier: EReps1m4UdW66UXSYxPeRRxVic46xc68n57xt40fmWk=
Subject key identifier: B9:B9:5C:47:50:06:F1:B4:ED:20:37:A0:22:5E:17:17:9C:8A:67:65
Certificate issuer: /CN=a0dbd5d1f86dd9dd66606a14d31d64cb0eaac83b
Certificate serial: 019423D7D196A1C84F15CAF5E00D0997DADB
Authority key identifier: A0:DB:D5:D1:F8:6D:D9:DD:66:60:6A:14:D3:1D:64:CB:0E:AA:C8:3B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oNvV0fht2d1mYGoU0x1kyw6qyDs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/1d4cfc-8e5c-457c-9620-135c91ec199e/1/ublcR1AG8bTtIDegIl4XF5yKZ2U.roa
Signing time: Wed 01 Jan 2025 21:48:53 +0000
ROA not before: Wed 01 Jan 2025 21:48:53 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 14618
IP address blocks: 185.200.210.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:d7:d1:96:a1:c8:4f:15:ca:f5:e0:0d:09:97:da:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0dbd5d1f86dd9dd66606a14d31d64cb0eaac83b
Validity
Not Before: Jan 1 21:48:53 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b9b95c475006f1b4ed2037a0225e17179c8a6765
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:13:17:24:a0:cb:b4:63:a9:e9:f1:29:99:81:
4e:c1:36:f5:20:93:32:67:6d:25:ca:4b:48:0e:48:
4e:9f:27:10:ff:ff:ba:08:28:7e:d9:f3:53:82:96:
14:78:d5:3a:d4:1f:16:b1:c1:a6:7a:97:0f:64:d2:
8b:22:ec:45:5b:c5:3e:f5:f1:d1:13:3e:59:99:96:
6f:fc:7e:78:6e:ee:54:46:50:9f:b2:9f:ba:d5:6d:
4f:49:b2:56:80:bf:dc:0d:83:70:07:d6:33:6a:4e:
1b:46:3f:50:db:3c:01:7f:4f:32:8b:ad:4b:8d:14:
df:1f:53:a2:69:74:77:40:8d:a7:54:bd:ae:b0:76:
34:a7:02:fd:18:60:ce:68:8c:ae:c1:14:fa:82:e3:
bc:7b:ef:2d:21:80:46:9c:9a:4a:0d:6c:fa:6a:1d:
65:7a:42:09:32:45:b3:de:44:6e:19:1e:d1:23:de:
0b:7a:70:e5:51:13:cb:03:c5:a9:e2:e4:85:7e:c6:
ab:48:e2:cf:8a:d3:5f:7f:c4:bc:ad:dd:d9:15:28:
24:6c:ba:fd:08:d8:cc:c6:2f:ee:96:54:85:ce:cf:
7c:ec:31:2c:ca:69:8c:aa:59:fa:e0:70:fc:5e:a5:
4b:a5:83:73:c3:68:6a:0e:f4:c8:3a:a1:2f:47:15:
25:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:B9:5C:47:50:06:F1:B4:ED:20:37:A0:22:5E:17:17:9C:8A:67:65
X509v3 Authority Key Identifier:
keyid:A0:DB:D5:D1:F8:6D:D9:DD:66:60:6A:14:D3:1D:64:CB:0E:AA:C8:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oNvV0fht2d1mYGoU0x1kyw6qyDs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/1d4cfc-8e5c-457c-9620-135c91ec199e/1/ublcR1AG8bTtIDegIl4XF5yKZ2U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/1d4cfc-8e5c-457c-9620-135c91ec199e/1/oNvV0fht2d1mYGoU0x1kyw6qyDs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.200.210.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:01:75:6a:4e:9e:12:1a:3e:97:39:e7:df:dd:d9:3c:e8:d2:
6b:fe:b6:f4:3e:c6:82:d8:2b:2d:71:fe:d3:54:3b:32:83:a1:
46:ab:f5:a0:ee:8b:21:f5:00:17:a0:c8:26:cf:2f:7a:1e:01:
fb:21:ec:0a:30:41:ae:03:d5:c0:75:01:81:0b:fe:94:6a:64:
5d:ba:05:94:57:4e:2e:0d:ba:dc:ba:5f:10:8f:87:03:83:4b:
8a:b7:8e:dc:2a:25:28:d9:04:c7:77:7a:64:4e:8a:1f:57:e0:
da:8a:84:be:94:2a:e8:81:79:02:da:ff:f5:a3:b6:30:2b:c1:
7f:c3:a4:d0:4f:47:70:f9:52:1d:b6:1c:bf:10:1e:49:d2:5e:
71:2c:3f:a0:d8:46:43:57:3c:3b:ff:93:65:2a:4d:33:12:a6:
36:51:90:0b:6f:57:ed:c6:d2:a3:b0:28:be:b6:7b:7a:29:61:
76:43:fa:1b:18:e6:f4:7e:5b:11:c6:0c:f2:ca:dd:ee:2e:3c:
c8:97:d9:cc:05:68:2d:c1:87:30:e4:45:9c:73:76:ea:02:cd:
8c:ef:b4:2a:29:99:52:63:f3:4d:d2:85:ba:34:28:68:1b:1b:
87:d9:2e:fd:bf:60:90:41:00:8e:e1:34:5c:f3:b4:ef:50:9b:
40:14:3d:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 23:30:08 2025 by rpki-client