Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/2aa8d1-cb71-4904-a591-3449522710e7/1/L0dTKkQLJ3uzLHQGVfykgpUct-Y.roa
File: L0dTKkQLJ3uzLHQGVfykgpUct-Y.roa (raw, json)
Hash identifier: 5V6u+yE0dUBJcNB/BjBYWG3G1jW8CFnCJRPOVXm/+Pc=
Subject key identifier: 2F:47:53:2A:44:0B:27:7B:B3:2C:74:06:55:FC:A4:82:95:1C:B7:E6
Certificate issuer: /CN=46c98b2e4a3e060def45abc62c0e345faa80b5ec
Certificate serial: 0194214447193360937831384EBDC8A6354B
Authority key identifier: 46:C9:8B:2E:4A:3E:06:0D:EF:45:AB:C6:2C:0E:34:5F:AA:80:B5:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RsmLLko-Bg3vRavGLA40X6qAtew.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/2aa8d1-cb71-4904-a591-3449522710e7/1/L0dTKkQLJ3uzLHQGVfykgpUct-Y.roa
Signing time: Wed 01 Jan 2025 09:48:30 +0000
ROA not before: Wed 01 Jan 2025 09:48:30 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 56504
IP address blocks: 185.61.136.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:44:47:19:33:60:93:78:31:38:4e:bd:c8:a6:35:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=46c98b2e4a3e060def45abc62c0e345faa80b5ec
Validity
Not Before: Jan 1 09:48:30 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=2f47532a440b277bb32c740655fca482951cb7e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:32:2c:b2:83:77:6c:f4:f5:83:4e:0d:47:13:
e5:ac:f4:71:b3:05:c0:9e:a2:af:ae:c3:87:3b:35:
31:58:e3:f7:de:59:8d:c9:9b:58:ad:7f:54:97:82:
cb:45:32:0c:1c:d4:90:94:0e:70:a0:83:71:44:76:
72:da:c1:78:c0:12:87:c2:87:36:7a:80:19:4d:50:
58:fd:e5:6f:09:58:03:39:7f:43:1e:30:df:ea:88:
27:d2:a2:f8:b2:42:b1:e3:cd:44:0d:fc:fd:a8:86:
bf:44:3a:2e:ef:24:39:bd:f7:a1:19:90:a2:e4:2d:
67:2d:4f:9f:f8:ba:ee:a8:14:14:c5:0a:bc:49:50:
83:4e:d8:6f:4b:ac:78:3f:30:ff:a1:15:59:92:ec:
b2:61:ba:3d:60:14:19:22:42:fc:1b:d6:8a:cb:2c:
b2:d3:78:35:34:7e:de:48:00:17:69:ff:71:11:2d:
4b:c8:3d:af:96:ff:fe:67:59:2f:27:13:e0:3a:ca:
85:70:24:7b:13:24:08:62:24:ba:15:b3:75:09:ca:
c5:a7:1e:e7:fd:f0:1f:89:36:a3:be:94:e6:5e:39:
9e:9d:37:9c:85:ff:1c:99:95:9e:ab:68:b5:8e:e6:
30:26:f0:36:1a:ee:5b:16:5d:37:a8:be:8f:aa:0a:
d6:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:47:53:2A:44:0B:27:7B:B3:2C:74:06:55:FC:A4:82:95:1C:B7:E6
X509v3 Authority Key Identifier:
keyid:46:C9:8B:2E:4A:3E:06:0D:EF:45:AB:C6:2C:0E:34:5F:AA:80:B5:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RsmLLko-Bg3vRavGLA40X6qAtew.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/2aa8d1-cb71-4904-a591-3449522710e7/1/L0dTKkQLJ3uzLHQGVfykgpUct-Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/2aa8d1-cb71-4904-a591-3449522710e7/1/RsmLLko-Bg3vRavGLA40X6qAtew.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.61.136.0/24
Signature Algorithm: sha256WithRSAEncryption
c3:4d:ff:08:83:01:15:a3:54:09:64:cb:74:c2:46:57:2f:34:
1d:c2:c7:ec:27:29:85:46:89:ec:63:55:e7:cd:02:d9:20:80:
3b:96:b2:90:f4:02:43:ec:df:39:c2:df:01:7e:94:3a:da:85:
69:3c:a7:53:20:c0:2b:87:12:9e:ba:a0:ca:ca:21:28:67:00:
f0:8a:a3:6e:a4:e8:ec:36:aa:f3:06:81:d1:5a:8d:55:e1:46:
52:73:10:47:84:c4:d5:60:93:24:fc:0a:3d:7f:cf:a3:72:45:
e1:b2:d0:e8:dc:eb:6c:d2:b2:a6:c0:fd:06:b3:80:16:9f:a7:
b1:e6:0d:a0:b0:40:bc:39:9f:b3:4c:c2:bf:87:5f:80:6b:38:
8d:9f:ae:14:32:6f:69:73:8b:99:ff:5d:e3:15:d7:ec:ee:89:
64:8d:cf:80:9d:b7:16:fc:ac:9f:00:48:cf:71:52:c7:0f:4e:
13:f1:05:53:8d:5b:04:e8:68:03:f3:de:74:e0:04:99:ca:47:
11:e5:f3:ca:86:6e:09:21:a7:ba:31:aa:46:2d:f2:ef:33:a9:
7f:b3:55:11:e8:8a:b4:05:87:ce:e4:1f:01:b7:24:8a:06:e0:
f5:8d:48:2d:fe:c4:ab:1a:a5:ab:21:03:1e:5c:9f:eb:03:d8:
70:c1:ef:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 14:43:37 2025 by rpki-client