Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/028b9d-0461-44ea-b44b-48dd9291281c/1/iMPt7R_kGO3vwDDLmlY4PeG-3Bc.roa
File: iMPt7R_kGO3vwDDLmlY4PeG-3Bc.roa (raw, json)
Hash identifier: b7jdDd3N98hwdNCS24g0wJCsbw+fZ4oIp7WvRmtFyNw=
Subject key identifier: 88:C3:ED:ED:1F:E4:18:ED:EF:C0:30:CB:9A:56:38:3D:E1:BE:DC:17
Certificate issuer: /CN=0a1b5c044dcd48e1db7a619b44904a98435d85b8
Certificate serial: 01AAA999
Authority key identifier: 0A:1B:5C:04:4D:CD:48:E1:DB:7A:61:9B:44:90:4A:98:43:5D:85:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ChtcBE3NSOHbemGbRJBKmENdhbg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/028b9d-0461-44ea-b44b-48dd9291281c/1/iMPt7R_kGO3vwDDLmlY4PeG-3Bc.roa
Signing time: Sat 01 Jan 2022 15:55:27 +0000
ROA not before: Sat 01 Jan 2022 15:55:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203704
IP address blocks: 185.124.4.0/22 maxlen: 22
185.124.4.0/23 maxlen: 23
185.124.7.0/24 maxlen: 24
185.124.6.0/23 maxlen: 23
185.207.144.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 27961753 (0x1aaa999)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0a1b5c044dcd48e1db7a619b44904a98435d85b8
Validity
Not Before: Jan 1 15:55:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=88c3eded1fe418edefc030cb9a56383de1bedc17
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:ce:03:e0:87:89:01:3f:ed:33:12:fd:c3:96:
61:66:d7:ce:26:b1:d7:21:5d:18:80:a9:35:13:ce:
05:77:bc:e6:f1:8f:fa:ee:bb:b6:80:43:72:1d:06:
ac:38:e0:13:b6:47:ec:f6:c1:48:81:b5:37:de:4f:
4a:a2:60:f4:00:12:28:dc:50:04:a0:2c:db:6d:1e:
c4:ad:c5:d6:6c:12:c9:1b:55:ea:75:c6:7f:5e:5c:
ed:10:e6:61:aa:c8:c1:1e:8d:11:7d:d9:12:05:35:
c0:92:a3:0d:a9:02:a7:dc:0d:cd:a8:f1:8b:9e:ac:
35:fb:a0:a0:3d:61:96:3c:30:31:da:12:0b:b1:ce:
7e:ef:a2:1f:b8:b7:1b:82:9e:5d:33:51:78:9f:f6:
c1:50:d3:88:15:28:24:7e:30:a7:b8:59:bb:c1:74:
32:7a:f8:43:01:5b:0a:f9:3a:43:a3:67:12:7a:13:
71:52:f5:75:86:87:0a:26:1a:c4:21:af:90:1a:91:
08:5f:57:6d:d8:c0:a1:ea:da:0e:cc:c2:c1:80:01:
e2:6a:c3:91:59:64:9a:1e:18:c4:a6:20:06:43:13:
bd:98:d3:8a:02:54:e8:dd:67:a8:47:b0:03:ec:55:
0d:9c:9a:34:c3:dc:86:65:e2:98:cc:49:8b:2d:41:
ce:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:C3:ED:ED:1F:E4:18:ED:EF:C0:30:CB:9A:56:38:3D:E1:BE:DC:17
X509v3 Authority Key Identifier:
keyid:0A:1B:5C:04:4D:CD:48:E1:DB:7A:61:9B:44:90:4A:98:43:5D:85:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ChtcBE3NSOHbemGbRJBKmENdhbg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/028b9d-0461-44ea-b44b-48dd9291281c/1/iMPt7R_kGO3vwDDLmlY4PeG-3Bc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/028b9d-0461-44ea-b44b-48dd9291281c/1/ChtcBE3NSOHbemGbRJBKmENdhbg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.124.4.0/22
185.207.144.0/22
Signature Algorithm: sha256WithRSAEncryption
75:30:09:a2:1e:83:0d:0d:4d:94:0a:2b:d7:08:1e:8c:a4:9d:
3e:3e:da:00:ba:5a:c3:01:67:35:04:1e:53:36:9a:53:20:ba:
00:5d:1a:b3:79:70:a6:c2:10:9a:35:27:86:f5:da:30:fa:08:
c2:fb:a1:52:45:4d:91:b0:d6:43:32:b5:e9:af:1c:86:29:00:
e0:0f:8c:33:d9:3d:2a:73:94:ce:39:8f:3a:9c:4c:61:98:1f:
2f:8c:8f:e1:44:6d:4b:10:68:45:d5:f3:6d:60:f0:f5:41:e1:
b1:40:4d:e3:94:45:e6:ed:0f:7a:0a:38:31:c5:b0:b9:81:74:
1a:c3:f3:48:4c:de:50:b4:2d:f7:69:e6:a8:73:b6:93:74:0b:
b2:d3:9e:4b:21:4c:30:60:d3:00:ee:bb:c2:c1:0f:d3:d1:95:
5a:2b:37:80:91:b3:ee:b7:0b:71:f0:68:bf:9b:aa:4c:28:01:
39:01:d3:66:1b:76:c4:bc:94:4c:13:59:9d:f8:ad:d8:30:7e:
95:9c:e9:de:17:2b:d7:18:33:ce:58:07:4e:8a:7e:76:a6:a1:
52:54:70:d1:3e:a0:f9:08:d7:86:71:04:4f:6a:9b:b5:49:4b:
23:d0:d4:04:6d:56:1d:b4:73:66:e4:9f:10:7c:8a:b3:f6:91:
56:68:9c:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 01:47:52 2025 by rpki-client