Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/f7977e-ad30-4cb7-8ed3-29f4cd0ba804/1/RAwW8IE1n9sVekuiCyEikAL5HtE.roa
File: RAwW8IE1n9sVekuiCyEikAL5HtE.roa (raw, json)
Hash identifier: R2iI0k0l7koAhrOpg0u96qvpaz2J9avElrVz1cFdebo=
Subject key identifier: 44:0C:16:F0:81:35:9F:DB:15:7A:4B:A2:0B:21:22:90:02:F9:1E:D1
Certificate issuer: /CN=13cd87027d7d3a3b9f7c4ba4495e49e21ad5a4bb
Certificate serial: 01941FFA3B1CBDD8CF6381373FF1A7911820
Authority key identifier: 13:CD:87:02:7D:7D:3A:3B:9F:7C:4B:A4:49:5E:49:E2:1A:D5:A4:BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/E82HAn19OjuffEukSV5J4hrVpLs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/f7977e-ad30-4cb7-8ed3-29f4cd0ba804/1/RAwW8IE1n9sVekuiCyEikAL5HtE.roa
Signing time: Wed 01 Jan 2025 03:48:00 +0000
ROA not before: Wed 01 Jan 2025 03:48:00 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 211756
IP address blocks: 185.242.178.0/24 maxlen: 24
2a10:98c0::/29 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:fa:3b:1c:bd:d8:cf:63:81:37:3f:f1:a7:91:18:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=13cd87027d7d3a3b9f7c4ba4495e49e21ad5a4bb
Validity
Not Before: Jan 1 03:48:00 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=440c16f081359fdb157a4ba20b21229002f91ed1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:6e:d2:d6:c9:02:18:ee:2b:13:bd:87:5c:cf:
86:5a:9d:39:9d:c4:7a:bf:c7:f1:82:73:3d:4a:f7:
78:34:4b:aa:54:df:8f:66:f5:4f:7f:ed:a5:fd:f9:
14:c1:12:e3:66:88:20:76:c4:fb:a9:4e:13:da:97:
8c:51:3c:81:c3:aa:52:db:cf:d5:7c:d6:85:b7:8a:
5c:d1:35:d3:4e:a8:1f:2f:0e:93:86:60:66:8b:f3:
82:ba:1f:2c:87:32:9f:05:76:73:96:07:95:ea:3a:
32:f3:57:48:a0:23:55:67:a6:3a:01:52:68:47:fe:
ac:2c:3f:4a:1b:20:88:fb:0d:19:ca:45:e1:d4:0c:
9b:bc:0f:c1:70:6d:33:d3:6c:99:9f:41:fe:ee:0e:
ff:de:a7:af:1a:62:a8:1f:98:98:27:05:e8:ca:ca:
72:27:db:d7:5c:f9:b8:f4:c1:ee:35:2d:d7:a0:7e:
12:70:67:07:e8:e0:54:9f:c7:66:68:79:ce:bf:8d:
e1:0b:8d:03:a3:33:e1:48:e3:2f:3f:5a:b1:3d:ba:
24:6d:95:3b:b5:92:33:f7:dd:de:95:94:9d:b5:a7:
c5:1b:31:82:9b:84:f2:86:56:25:45:77:18:73:53:
d5:fc:cc:3e:1e:2b:87:83:43:9f:95:bc:d5:62:d5:
b4:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:0C:16:F0:81:35:9F:DB:15:7A:4B:A2:0B:21:22:90:02:F9:1E:D1
X509v3 Authority Key Identifier:
keyid:13:CD:87:02:7D:7D:3A:3B:9F:7C:4B:A4:49:5E:49:E2:1A:D5:A4:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/E82HAn19OjuffEukSV5J4hrVpLs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/f7977e-ad30-4cb7-8ed3-29f4cd0ba804/1/RAwW8IE1n9sVekuiCyEikAL5HtE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/f7977e-ad30-4cb7-8ed3-29f4cd0ba804/1/E82HAn19OjuffEukSV5J4hrVpLs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.242.178.0/24
IPv6:
2a10:98c0::/29
Signature Algorithm: sha256WithRSAEncryption
4b:97:be:ea:c1:d1:7f:20:0b:85:85:69:23:8e:b3:90:59:fe:
2d:62:8e:9b:f9:29:89:fb:0d:41:e4:0a:f2:3b:cf:34:18:ff:
dc:14:a9:74:a7:0e:5e:bf:5e:93:19:29:14:af:e0:54:f1:16:
98:87:31:f3:c7:ee:73:2f:3b:80:6f:3a:64:16:3d:1c:5b:55:
a6:6b:34:76:f6:09:c6:85:1d:ea:81:b0:55:db:2b:b9:66:49:
a4:67:7c:a5:c8:b9:51:74:9e:82:b7:41:51:81:b0:d9:d5:75:
04:d7:bc:46:6f:8a:8d:8a:0a:9d:77:a6:47:98:58:b0:26:93:
a7:c4:d8:b2:6a:83:b0:e4:98:b9:24:02:f0:06:5c:a3:a4:a3:
cc:9c:b3:70:d9:cc:ee:30:b2:9c:89:1c:0b:24:60:73:2c:a6:
2e:fb:84:89:e0:17:32:f0:33:8b:fd:bc:20:03:b9:5a:f8:8a:
b7:59:82:98:fa:4a:05:bc:b7:14:6f:46:a0:f6:26:3c:78:89:
38:33:90:e7:43:f9:8e:fe:2f:4c:e8:91:42:94:24:3f:a9:ca:
08:05:ee:5b:0c:4a:2e:31:94:28:58:6a:00:b2:6c:47:bd:bd:
dc:2c:89:e5:61:a6:d5:f9:1e:e7:b9:1b:1d:ec:38:21:25:dd:
56:25:b3:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 08:28:22 2025 by rpki-client