Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/626eef-12d0-47fa-b633-641dd4288c40/1/K-1wTW4J6sLpv-6DuCiwUF12vdI.roa
File: K-1wTW4J6sLpv-6DuCiwUF12vdI.roa (raw, json)
Hash identifier: n2u+VQEAXcWUcGFe9BbTAMBCmji0TY4jRMY2BGuQA34=
Subject key identifier: 2B:ED:70:4D:6E:09:EA:C2:E9:BF:EE:83:B8:28:B0:50:5D:76:BD:D2
Certificate issuer: /CN=b19f07669e58ec32b9d9132e2ca6d19c2e949360
Certificate serial: 0194266B766DAB6586E231985DCA739E556D
Authority key identifier: B1:9F:07:66:9E:58:EC:32:B9:D9:13:2E:2C:A6:D1:9C:2E:94:93:60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sZ8HZp5Y7DK52RMuLKbRnC6Uk2A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/626eef-12d0-47fa-b633-641dd4288c40/1/K-1wTW4J6sLpv-6DuCiwUF12vdI.roa
Signing time: Thu 02 Jan 2025 09:49:24 +0000
ROA not before: Thu 02 Jan 2025 09:49:24 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 20473
IP address blocks: 185.141.252.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:6b:76:6d:ab:65:86:e2:31:98:5d:ca:73:9e:55:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b19f07669e58ec32b9d9132e2ca6d19c2e949360
Validity
Not Before: Jan 2 09:49:24 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=2bed704d6e09eac2e9bfee83b828b0505d76bdd2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:78:1d:88:07:98:d7:3f:a0:a0:88:65:2c:81:
17:f9:f7:ca:c3:3e:c5:f8:ff:47:96:7c:02:f2:f7:
66:eb:4b:58:02:6c:28:3c:0e:07:1a:bc:bf:f3:54:
2b:d5:65:33:76:2a:1f:71:88:4f:cb:f5:35:e9:4c:
f6:c7:a4:9a:dd:69:4a:be:87:50:04:95:a6:c8:6a:
c9:1f:4e:db:93:2b:63:3c:45:2f:4a:21:ee:ce:3f:
17:e2:90:6a:88:32:0e:49:d2:d4:92:e2:a0:f1:40:
c7:84:7b:f3:d2:90:5c:4c:2e:97:f0:9d:1f:6c:a2:
c5:2b:b0:15:87:c5:af:a9:74:fe:b7:00:b4:06:f8:
1f:f6:75:e9:1d:15:cc:9b:1f:cb:ed:c9:b6:2f:89:
e6:04:26:45:70:91:9d:c8:5e:2e:c0:67:e7:92:7a:
50:c9:44:63:bf:40:c7:42:68:51:81:1a:56:3d:5a:
ef:90:7a:23:a3:21:12:d6:a9:c0:d9:8d:14:ea:bd:
21:b5:9b:11:fd:51:2c:6b:05:7f:aa:b5:bf:eb:e8:
c8:8c:d2:da:3b:28:9f:6c:c9:cb:46:3d:37:dc:f2:
dd:6e:ba:a5:70:03:8b:8d:7e:fa:5a:b8:1d:9c:54:
63:51:a3:d3:fe:8e:1c:90:95:5b:0b:4e:6a:f9:b4:
ba:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:ED:70:4D:6E:09:EA:C2:E9:BF:EE:83:B8:28:B0:50:5D:76:BD:D2
X509v3 Authority Key Identifier:
keyid:B1:9F:07:66:9E:58:EC:32:B9:D9:13:2E:2C:A6:D1:9C:2E:94:93:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sZ8HZp5Y7DK52RMuLKbRnC6Uk2A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/626eef-12d0-47fa-b633-641dd4288c40/1/K-1wTW4J6sLpv-6DuCiwUF12vdI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/626eef-12d0-47fa-b633-641dd4288c40/1/sZ8HZp5Y7DK52RMuLKbRnC6Uk2A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.141.252.0/24
Signature Algorithm: sha256WithRSAEncryption
56:94:34:74:db:cd:98:47:d0:fc:41:86:a5:6f:38:67:ba:53:
19:11:04:5a:9b:b2:5c:a1:78:bb:f9:b9:42:47:cf:52:0b:d0:
76:b7:f9:67:20:85:56:f7:dd:e6:63:a6:35:02:d7:9d:d7:52:
5f:1e:ab:c0:8f:ea:2b:ce:e1:49:40:36:d8:b4:a7:0f:b0:3f:
4d:95:64:69:20:fc:13:91:4f:3a:3c:07:d1:b1:b0:c2:ad:af:
38:67:9a:ba:d7:d5:5a:67:e0:c8:b9:fc:18:eb:fc:80:06:cc:
22:c6:cb:fb:cb:9a:b5:2e:10:82:83:00:fe:41:5f:d0:e7:75:
6e:eb:c3:c6:34:46:0a:5e:2b:ea:8f:df:ec:21:2a:1c:40:c7:
ca:a1:73:be:7f:76:d4:2f:9a:1a:12:48:78:a0:8d:2e:cd:35:
3d:54:64:ea:73:9c:58:28:d6:35:1a:6e:ff:28:42:b8:fd:8c:
aa:56:d0:05:5f:3c:22:9b:fc:68:66:b8:e7:49:f5:8f:13:93:
42:5b:e7:87:ca:57:8d:5d:13:f3:bc:9d:e8:06:18:28:33:71:
1b:36:7f:93:a3:1a:64:1e:27:87:b9:dc:49:38:7b:cd:d0:29:
e5:72:c0:1a:f0:b0:1f:a8:bc:cf:4a:61:15:c7:f3:e3:46:56:
1a:0d:94:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 13:41:01 2025 by rpki-client