Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/b769e3-e215-44a5-8a2e-0e9df99d9339/1/lTJh8IlgtKxtTsHbl0PqQi9XedY.roa
File: lTJh8IlgtKxtTsHbl0PqQi9XedY.roa (raw, json)
Hash identifier: WDZ9b3f2N4SwaPm559/K0k771yOilnYto8OW0s+oHSA=
Subject key identifier: 95:32:61:F0:89:60:B4:AC:6D:4E:C1:DB:97:43:EA:42:2F:57:79:D6
Certificate issuer: /CN=6837a2fa4b78773a66200fea4c58507a92f31203
Certificate serial: 019424B3B2AA00B35ABC677406739E525272
Authority key identifier: 68:37:A2:FA:4B:78:77:3A:66:20:0F:EA:4C:58:50:7A:92:F3:12:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aDei-kt4dzpmIA_qTFhQepLzEgM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/b769e3-e215-44a5-8a2e-0e9df99d9339/1/lTJh8IlgtKxtTsHbl0PqQi9XedY.roa
Signing time: Thu 02 Jan 2025 01:49:03 +0000
ROA not before: Thu 02 Jan 2025 01:49:03 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 25400
IP address blocks: 185.246.80.0/22 maxlen: 22
185.246.81.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:b3:b2:aa:00:b3:5a:bc:67:74:06:73:9e:52:52:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6837a2fa4b78773a66200fea4c58507a92f31203
Validity
Not Before: Jan 2 01:49:03 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=953261f08960b4ac6d4ec1db9743ea422f5779d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:ce:5c:40:05:aa:78:13:4d:5f:31:b0:bf:1f:
6f:89:94:71:e6:61:f1:0e:b1:98:ad:7a:87:12:a0:
8f:2f:dd:cf:bc:fb:b2:d3:e3:3f:f3:12:da:9d:cd:
90:6a:56:49:4a:92:79:5b:f9:cd:0d:36:70:c6:f4:
f1:41:ee:a7:86:19:af:27:e0:cf:d3:4b:83:2b:56:
75:0e:f3:29:5d:2b:85:0e:5d:a5:ba:3d:99:dd:0a:
60:bb:20:d9:52:ac:00:ea:f4:31:df:f6:42:14:4c:
eb:9c:e3:2c:36:95:c2:d9:a5:c8:5a:10:3e:81:5e:
18:39:ec:07:87:ad:8e:59:f3:58:b0:89:ce:8d:e7:
5f:d5:f7:f1:98:fb:d5:c2:bf:b4:29:13:74:ce:10:
8b:e5:01:17:9c:38:6c:4f:0b:06:76:33:95:14:83:
8c:89:c1:1f:b5:4a:85:12:10:d3:c7:1b:2f:66:20:
40:77:6d:36:21:b4:1e:ae:5f:8c:1e:64:78:40:86:
f4:bc:bc:b7:6b:c0:1e:20:f4:a7:65:0c:f0:3a:7d:
a1:fb:2c:63:35:5a:b2:20:cd:c9:29:02:f6:02:e7:
1c:b2:73:67:5c:fc:c9:89:81:57:28:27:70:32:fc:
0e:09:79:ba:7d:d3:fe:d4:b3:11:82:85:09:27:dc:
fa:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:32:61:F0:89:60:B4:AC:6D:4E:C1:DB:97:43:EA:42:2F:57:79:D6
X509v3 Authority Key Identifier:
keyid:68:37:A2:FA:4B:78:77:3A:66:20:0F:EA:4C:58:50:7A:92:F3:12:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aDei-kt4dzpmIA_qTFhQepLzEgM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/b769e3-e215-44a5-8a2e-0e9df99d9339/1/lTJh8IlgtKxtTsHbl0PqQi9XedY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/b769e3-e215-44a5-8a2e-0e9df99d9339/1/aDei-kt4dzpmIA_qTFhQepLzEgM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.246.80.0/22
Signature Algorithm: sha256WithRSAEncryption
99:cb:c3:f5:cb:4e:64:66:c8:2e:1e:d9:ce:60:af:25:7c:b2:
8d:39:af:db:27:a5:82:d8:79:98:15:8e:6c:47:39:ff:23:3b:
16:0f:46:15:b3:25:d7:54:d7:57:f3:a0:80:52:8c:ba:01:46:
72:7e:22:52:8c:ec:e7:6c:29:f8:28:ea:8d:f5:60:ac:52:ae:
75:aa:5c:f2:28:48:33:74:84:59:cd:57:a0:f0:5c:19:df:16:
e8:3f:81:87:f9:b7:db:a4:2a:8d:ca:6d:7c:5b:30:87:4f:ca:
61:3d:d6:eb:cd:4e:03:62:94:07:5c:df:b4:c4:5b:ea:ca:5c:
bd:96:2d:11:bf:2a:ec:23:e4:ad:88:79:8f:50:28:d3:95:a3:
e4:b4:b6:bc:da:04:8e:c4:0b:39:f8:cd:71:d8:b9:d0:4e:70:
bd:eb:0a:1c:56:f5:92:52:64:c9:f7:dd:b7:3b:8d:74:59:7a:
6a:cc:e5:4c:6f:e2:9a:d0:9b:68:26:4c:2d:b7:37:cc:9c:26:
49:ee:27:0c:e8:28:a5:10:50:c3:93:75:c4:06:b4:ee:16:44:
ad:ef:59:ff:01:bb:a4:26:cc:63:8b:82:b3:56:8b:2f:26:24:
5a:1a:2f:20:f2:bb:14:db:2e:5b:7b:41:b4:f8:72:78:c5:bb:
1d:a8:de:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 07:52:11 2025 by rpki-client