Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/5d1d57-fdea-4526-ae64-82a48dfe61bd/1/STn1Cu6iWDHQuKtxoyOrE6TvdN4.roa
File: STn1Cu6iWDHQuKtxoyOrE6TvdN4.roa (raw, json)
Hash identifier: kFvgBwMdZh5XHVxyJBp8LJIT9jLupibaFYCjTnGmfSk=
Subject key identifier: 49:39:F5:0A:EE:A2:58:31:D0:B8:AB:71:A3:23:AB:13:A4:EF:74:DE
Certificate issuer: /CN=a1b7fffa0278ed8655ebe6482a876dfc7c9de1bc
Certificate serial: 01856E1D36BB6AA25149BA78FB8B6994E8EA
Authority key identifier: A1:B7:FF:FA:02:78:ED:86:55:EB:E6:48:2A:87:6D:FC:7C:9D:E1:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/obf_-gJ47YZV6-ZIKodt_Hyd4bw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/5d1d57-fdea-4526-ae64-82a48dfe61bd/1/STn1Cu6iWDHQuKtxoyOrE6TvdN4.roa
Signing time: Sun 01 Jan 2023 16:14:46 +0000
ROA not before: Sun 01 Jan 2023 16:14:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 7018
IP address blocks: 185.218.224.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:1d:36:bb:6a:a2:51:49:ba:78:fb:8b:69:94:e8:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1b7fffa0278ed8655ebe6482a876dfc7c9de1bc
Validity
Not Before: Jan 1 16:14:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4939f50aeea25831d0b8ab71a323ab13a4ef74de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:f0:54:8e:4c:3a:f2:38:7d:c3:15:48:09:49:
c8:4d:ca:42:cb:4d:38:b0:33:68:41:b6:7b:88:bc:
5a:db:a1:68:58:da:c6:d5:29:c7:3e:b7:e2:62:5c:
fa:fb:8d:64:71:57:2b:1c:f2:79:38:04:0a:cb:bf:
e5:ed:56:ff:40:ed:df:9a:44:8b:26:fe:42:29:cb:
f8:bf:cb:bb:20:66:a2:6a:48:1b:fe:30:7b:90:3c:
a3:9e:70:58:18:5a:14:38:60:83:78:b6:49:98:e3:
c2:a9:ae:f8:cc:99:0f:e8:d7:58:07:79:a4:31:b5:
4a:54:1b:a2:75:fd:6d:8d:29:8f:9a:70:d6:9b:c9:
d6:06:bb:b3:6c:06:d8:5d:a3:39:0a:d8:73:99:69:
71:2c:16:03:94:b0:cb:d2:d8:ea:02:20:17:10:ac:
75:4a:54:0d:a5:59:f1:1b:1f:78:ec:bf:cb:d8:5c:
50:98:c2:b0:c7:d2:27:1c:f8:08:d1:c8:e0:7a:d9:
d6:81:b1:7c:f5:00:ec:1c:79:17:f0:90:3e:62:b7:
65:26:51:d4:07:03:8d:17:68:10:e8:4a:dd:fb:95:
a8:16:e5:69:0a:91:26:f5:df:70:79:82:ed:ee:05:
bf:94:3c:3f:e0:e8:2c:72:ef:f4:99:fa:8f:80:40:
f2:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:39:F5:0A:EE:A2:58:31:D0:B8:AB:71:A3:23:AB:13:A4:EF:74:DE
X509v3 Authority Key Identifier:
keyid:A1:B7:FF:FA:02:78:ED:86:55:EB:E6:48:2A:87:6D:FC:7C:9D:E1:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/obf_-gJ47YZV6-ZIKodt_Hyd4bw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/5d1d57-fdea-4526-ae64-82a48dfe61bd/1/STn1Cu6iWDHQuKtxoyOrE6TvdN4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/5d1d57-fdea-4526-ae64-82a48dfe61bd/1/obf_-gJ47YZV6-ZIKodt_Hyd4bw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.218.224.0/23
Signature Algorithm: sha256WithRSAEncryption
2a:a7:3f:2e:95:53:0c:5c:6c:91:1a:8e:e6:78:3f:f6:8b:1e:
02:b3:6a:30:e0:db:3f:36:3b:43:af:cc:9f:1f:6d:35:d7:2e:
a5:05:e9:27:5a:e2:54:ed:06:ab:89:27:dc:b5:8e:89:ed:a7:
aa:c2:98:37:cc:f2:97:6c:db:3a:2e:75:ae:95:1c:06:e8:5e:
7f:ca:e7:73:56:05:07:e2:00:62:23:4b:81:e0:46:58:ce:79:
e4:10:b1:b5:2b:a9:57:2d:69:04:58:0d:1f:ef:7e:e0:07:d4:
db:85:10:07:67:00:47:56:00:8c:4a:54:c9:4b:e4:e8:ee:b5:
9d:61:2b:40:3d:e1:80:af:62:2e:df:7f:24:2c:44:2b:30:35:
bb:5f:21:f9:2f:57:ef:2d:98:df:b8:b6:1d:5a:9b:d9:ef:67:
d1:a8:7b:7d:4c:ca:07:01:3a:5c:76:ef:c4:57:67:e7:1d:21:
97:b7:da:ef:e0:38:f8:3e:15:0e:a2:29:47:97:65:50:fa:b1:
04:c0:2d:c7:85:7a:f4:27:12:8f:7a:cc:2d:b8:04:16:10:09:
2b:ea:b9:cb:d3:87:6d:e6:37:57:fa:d1:be:38:64:79:0d:df:
d0:05:6e:92:3d:55:69:62:53:47:be:4b:4c:73:54:2f:dc:a3:
76:e0:95:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:41:33 2025 by rpki-client