Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/824f78-dee2-47bc-af2f-38cb6e416f3a/1/KGq31INQu5SAOAIDAQy7fwrImP8.roa
File: KGq31INQu5SAOAIDAQy7fwrImP8.roa (raw, json)
Hash identifier: idbJ2XzD5KnMUfK7YQiS3CXUNtHjVlvAFbPFXjOhyqM=
Subject key identifier: 28:6A:B7:D4:83:50:BB:94:80:38:02:03:01:0C:BB:7F:0A:C8:98:FF
Certificate issuer: /CN=c87b594e5e6713a5b80a5481a5ce71e652d84573
Certificate serial: 01856F6FF93390382A25A4F82D1AF744364E
Authority key identifier: C8:7B:59:4E:5E:67:13:A5:B8:0A:54:81:A5:CE:71:E6:52:D8:45:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yHtZTl5nE6W4ClSBpc5x5lLYRXM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/824f78-dee2-47bc-af2f-38cb6e416f3a/1/KGq31INQu5SAOAIDAQy7fwrImP8.roa
Signing time: Sun 01 Jan 2023 22:24:47 +0000
ROA not before: Sun 01 Jan 2023 22:24:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49022
IP address blocks: 185.190.25.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:6f:f9:33:90:38:2a:25:a4:f8:2d:1a:f7:44:36:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c87b594e5e6713a5b80a5481a5ce71e652d84573
Validity
Not Before: Jan 1 22:24:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=286ab7d48350bb9480380203010cbb7f0ac898ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:8c:46:d2:b6:0a:f7:bf:f7:6e:58:a0:88:bb:
24:83:8a:f5:f0:f5:f2:28:d6:90:1c:c4:d6:81:0b:
35:2b:62:08:4c:e5:ed:92:9f:fe:cc:26:c2:f1:5d:
91:8b:a5:cc:2a:62:29:1c:ea:ff:b7:f0:63:6d:87:
c9:30:d8:3b:0f:c6:e4:22:a5:d5:67:6b:19:61:c7:
fe:91:1c:c1:ae:49:db:ac:f2:80:14:36:c2:e1:53:
84:b3:2c:83:95:cd:66:ff:4d:35:d0:ee:3a:c4:7f:
8d:c1:e8:70:bd:27:fa:04:7a:d4:55:b3:f1:6b:27:
f4:a4:a2:72:e0:8e:51:58:4b:1d:af:0e:6b:bb:71:
3c:bf:5e:f1:c6:db:77:bd:0b:84:a0:da:ea:4a:ef:
5c:e2:7a:6a:e2:b4:6c:f8:60:9a:40:77:31:9d:19:
af:41:75:5f:53:8d:80:45:37:56:0c:e8:d7:c0:47:
5a:07:12:dc:3c:f0:5e:4f:2b:b2:5c:9a:a8:e9:64:
5f:fd:b3:47:c3:21:70:56:9c:ab:f0:fd:5e:98:2a:
06:e0:d1:64:4d:6c:70:52:ff:f3:74:6e:01:d8:df:
a8:1b:4b:7a:be:36:3c:d0:16:cb:97:0c:82:d4:96:
8a:dd:c2:10:b6:a2:fd:10:89:6f:db:cf:00:4a:6c:
c1:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:6A:B7:D4:83:50:BB:94:80:38:02:03:01:0C:BB:7F:0A:C8:98:FF
X509v3 Authority Key Identifier:
keyid:C8:7B:59:4E:5E:67:13:A5:B8:0A:54:81:A5:CE:71:E6:52:D8:45:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yHtZTl5nE6W4ClSBpc5x5lLYRXM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/824f78-dee2-47bc-af2f-38cb6e416f3a/1/KGq31INQu5SAOAIDAQy7fwrImP8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/824f78-dee2-47bc-af2f-38cb6e416f3a/1/yHtZTl5nE6W4ClSBpc5x5lLYRXM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.190.25.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:60:28:f1:4f:d6:23:32:df:25:cc:07:62:94:81:f6:25:24:
65:ac:95:fd:9c:19:50:e9:96:b8:c5:43:c6:c3:2f:85:de:f1:
dd:1d:90:08:13:e5:63:de:14:76:04:5d:49:03:f1:42:1e:5a:
b8:f2:19:e2:21:7b:d5:29:c8:3b:14:fe:10:41:4e:6e:59:b1:
c8:cb:13:b0:b3:4c:8f:a9:23:c8:75:d8:45:d4:e7:82:b1:2d:
d5:3d:02:a0:1b:02:5d:dd:03:58:f9:a4:cc:ef:9e:45:90:74:
fc:b4:13:47:cb:5b:b6:09:af:36:ef:32:5c:21:04:3c:a7:01:
b5:8a:aa:85:c7:8f:22:7d:54:74:4e:d2:a3:c3:d2:78:25:c0:
0e:32:2d:22:5c:2d:17:86:88:01:4b:e2:4c:7f:b5:72:c4:b2:
dc:99:92:e0:d1:34:fd:b7:bd:99:a5:75:50:7e:09:43:8b:ca:
bb:a7:3c:04:89:57:1c:26:23:11:b1:7e:13:62:b6:8e:3e:0c:
1c:ac:bd:9f:2c:c6:6f:c7:08:8a:cb:40:ae:ba:23:4c:98:4f:
da:a6:76:f1:57:14:77:5b:88:9b:00:69:82:b9:65:db:99:12:
d2:c9:34:42:76:af:98:0c:48:b8:1f:15:4c:af:77:99:df:62:
5b:8c:3c:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:44:39 2025 by rpki-client