Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/2d783a-1cbc-40d4-b011-e085275aa364/1/nrPgzgHDDtDxynx0QD9e2VIxNS4.roa
File: nrPgzgHDDtDxynx0QD9e2VIxNS4.roa (raw, json)
Hash identifier: zbB58fN/lRPGxPAWWtZWRRqfZ8FZqb3qnG/xrDyogwY=
Subject key identifier: 9E:B3:E0:CE:01:C3:0E:D0:F1:CA:7C:74:40:3F:5E:D9:52:31:35:2E
Certificate issuer: /CN=034b0eed2c5a787ad87fb49f04d3fdf3d0f49d4c
Certificate serial: 01942444DF52A2C92DC4BAD7CBD9EEB16C48
Authority key identifier: 03:4B:0E:ED:2C:5A:78:7A:D8:7F:B4:9F:04:D3:FD:F3:D0:F4:9D:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A0sO7SxaeHrYf7SfBNP989D0nUw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/2d783a-1cbc-40d4-b011-e085275aa364/1/nrPgzgHDDtDxynx0QD9e2VIxNS4.roa
Signing time: Wed 01 Jan 2025 23:48:00 +0000
ROA not before: Wed 01 Jan 2025 23:48:00 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 60514
IP address blocks: 185.57.47.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:44:df:52:a2:c9:2d:c4:ba:d7:cb:d9:ee:b1:6c:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=034b0eed2c5a787ad87fb49f04d3fdf3d0f49d4c
Validity
Not Before: Jan 1 23:48:00 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=9eb3e0ce01c30ed0f1ca7c74403f5ed95231352e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:f5:34:aa:64:4a:a5:ae:c4:3e:c4:47:08:e4:
03:0e:29:bc:92:72:bd:6b:67:e9:52:94:d7:38:65:
64:eb:3a:59:9a:70:c0:a3:4b:f8:d5:95:71:86:d4:
e0:47:ff:00:38:57:73:17:00:66:d1:77:df:ef:e4:
5c:10:d8:1c:4a:fe:e9:5e:18:3c:24:98:8f:49:2c:
3d:d1:4d:a6:42:37:47:55:93:93:00:4a:73:c9:22:
4b:4f:b7:74:09:47:0c:6f:4e:9e:fe:58:e3:3a:11:
ec:47:8e:f9:83:af:91:00:14:55:66:1c:d9:ea:f0:
3b:33:fd:0c:67:c1:47:7d:74:a0:3c:7f:70:bf:28:
27:59:a4:64:60:99:34:b6:77:9b:db:39:92:30:a4:
8a:7a:8b:90:b8:19:61:d3:f8:85:97:03:dc:d2:b6:
a1:5c:af:98:7f:b0:83:8c:cb:29:7d:c1:6f:cd:4e:
e0:ba:53:34:12:8c:11:57:2e:c4:9a:81:2e:32:ed:
ab:85:b8:18:9f:ef:74:21:d4:48:a4:c3:10:84:28:
4c:02:07:b3:cf:23:c4:10:7a:ac:71:f2:6f:07:e9:
62:4e:78:17:7e:b9:69:b5:64:f3:3c:39:50:27:1f:
a6:ff:d6:3e:dd:20:b4:28:64:79:c6:8c:15:01:9a:
10:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:B3:E0:CE:01:C3:0E:D0:F1:CA:7C:74:40:3F:5E:D9:52:31:35:2E
X509v3 Authority Key Identifier:
keyid:03:4B:0E:ED:2C:5A:78:7A:D8:7F:B4:9F:04:D3:FD:F3:D0:F4:9D:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A0sO7SxaeHrYf7SfBNP989D0nUw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/2d783a-1cbc-40d4-b011-e085275aa364/1/nrPgzgHDDtDxynx0QD9e2VIxNS4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/2d783a-1cbc-40d4-b011-e085275aa364/1/A0sO7SxaeHrYf7SfBNP989D0nUw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.57.47.0/24
Signature Algorithm: sha256WithRSAEncryption
80:91:79:5d:89:a5:3b:03:33:74:f3:15:c8:0a:eb:47:2e:25:
e1:38:c8:2b:9d:d3:ca:d8:00:c6:11:30:d9:39:1d:76:5b:46:
af:54:6f:e7:6b:df:b9:7d:5f:df:60:b1:bb:0e:dc:48:39:5d:
90:6f:5e:50:7e:b9:c5:db:ce:c6:80:f4:9e:fc:0c:81:8c:23:
84:97:0b:e4:6c:ca:4a:8d:e9:d2:bb:4f:1c:9e:94:01:b0:a7:
1f:76:a5:23:21:57:6f:73:ac:8f:8f:0a:39:c8:23:5c:15:05:
a3:68:df:c4:70:9f:1a:2a:bb:2c:4c:3d:22:bd:18:26:12:80:
53:a8:34:d0:59:41:56:ed:28:53:12:8e:44:bc:ae:20:3d:9b:
c8:0d:26:b7:bc:3b:df:39:2f:d7:a8:da:3e:16:dc:fc:30:af:
4b:88:be:0d:e7:34:30:3c:38:61:f9:6a:d0:aa:3b:02:9b:8b:
a9:95:5b:af:f3:f1:96:43:87:b7:7b:96:70:9c:36:43:04:e7:
77:e6:c6:9b:29:10:35:47:03:b2:f8:45:ed:81:66:1d:7b:a5:
f7:de:7f:1e:7d:98:69:36:da:ea:61:6a:40:9e:ba:09:62:18:
cb:b9:bc:dc:9b:61:96:a2:94:c5:fc:f7:55:80:00:92:6a:fe:
73:20:c1:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 00:23:28 2025 by rpki-client