Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/9bb40d-3638-449e-ae25-d428f2349660/1/rIuFBAfmvp_-lxNjPhpoImYAjZk.roa
File: rIuFBAfmvp_-lxNjPhpoImYAjZk.roa (raw, json)
Hash identifier: UYHTUbb1Al1rBA78c79sngeNx1JvlEPhDvWJaFDSi+E=
Subject key identifier: AC:8B:85:04:07:E6:BE:9F:FE:97:13:63:3E:1A:68:22:66:00:8D:99
Certificate issuer: /CN=2a6edf23264b43821dae97d10bd364cb6bb7f234
Certificate serial: 01941F8C2303365F0E17F2A3A17387063E93
Authority key identifier: 2A:6E:DF:23:26:4B:43:82:1D:AE:97:D1:0B:D3:64:CB:6B:B7:F2:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Km7fIyZLQ4IdrpfRC9Nky2u38jQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/9bb40d-3638-449e-ae25-d428f2349660/1/rIuFBAfmvp_-lxNjPhpoImYAjZk.roa
Signing time: Wed 01 Jan 2025 01:47:45 +0000
ROA not before: Wed 01 Jan 2025 01:47:45 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 51178
IP address blocks: 185.18.124.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:8c:23:03:36:5f:0e:17:f2:a3:a1:73:87:06:3e:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a6edf23264b43821dae97d10bd364cb6bb7f234
Validity
Not Before: Jan 1 01:47:45 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ac8b850407e6be9ffe9713633e1a682266008d99
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:ae:17:22:00:0f:ef:3a:f3:cb:9b:a9:1a:d9:
f9:0a:bf:dc:37:b6:fe:76:a1:aa:a4:f5:72:41:d2:
b4:f4:10:e7:26:b6:50:57:3e:8e:11:ba:b4:15:ea:
c4:99:8e:73:53:cb:24:0b:e6:70:4b:65:88:51:e8:
4d:41:16:4f:be:5b:47:eb:3c:77:8c:1f:6e:62:8c:
44:9a:d5:fc:e8:7a:c5:4e:74:5c:1c:4c:80:61:3b:
9c:bd:d6:ff:7e:d5:c1:68:cf:06:62:fe:4d:39:cc:
99:1f:94:6b:f2:1c:b9:c6:f1:d1:1c:b8:2d:40:4d:
ec:8d:94:6c:59:79:23:b7:da:da:31:6d:fd:b2:90:
77:1a:4d:47:dc:15:34:c7:ed:87:0a:a3:c3:04:82:
33:23:b0:ed:4c:12:dc:06:5b:0f:f1:4a:7c:42:0f:
de:42:1e:c7:ab:57:2a:01:b2:32:09:08:59:67:04:
0b:1b:9d:63:aa:29:19:7f:ac:4e:55:86:40:e2:42:
83:bc:29:fb:3b:f4:df:4c:01:5a:5e:3b:ae:2d:c4:
cd:cb:f6:2e:d6:48:79:44:19:53:c3:b6:e0:8d:30:
f0:b7:d2:68:94:fe:ce:2c:6a:1f:62:86:7e:c1:d0:
e6:af:d5:a8:d1:0a:e5:dd:03:20:35:b0:bd:83:11:
21:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:8B:85:04:07:E6:BE:9F:FE:97:13:63:3E:1A:68:22:66:00:8D:99
X509v3 Authority Key Identifier:
keyid:2A:6E:DF:23:26:4B:43:82:1D:AE:97:D1:0B:D3:64:CB:6B:B7:F2:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Km7fIyZLQ4IdrpfRC9Nky2u38jQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/9bb40d-3638-449e-ae25-d428f2349660/1/rIuFBAfmvp_-lxNjPhpoImYAjZk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/9bb40d-3638-449e-ae25-d428f2349660/1/Km7fIyZLQ4IdrpfRC9Nky2u38jQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.18.124.0/22
Signature Algorithm: sha256WithRSAEncryption
3f:5a:ce:06:f3:05:06:60:bb:2a:33:20:84:8a:63:e2:16:0d:
00:81:51:2b:68:1d:13:b6:87:05:91:b0:b0:61:e2:77:7c:04:
6a:fc:79:51:88:26:2a:ad:a4:ab:67:c8:47:93:db:21:ba:6c:
8b:d4:3c:51:a8:9a:40:9a:50:96:25:b4:80:cd:8d:92:f5:12:
71:bf:3a:31:88:ae:75:ec:c7:52:44:71:41:8c:44:b5:53:b5:
48:2a:3e:1a:0d:af:ec:0a:7d:62:b6:9f:dc:3d:02:60:4d:e5:
cb:81:8b:5f:05:d1:8e:e7:b6:e0:5e:2d:ab:37:99:0e:f4:47:
15:64:aa:c9:56:a5:04:3f:7c:a0:f6:05:f4:07:79:7a:5b:92:
1e:67:76:9e:bc:0c:f8:83:f1:76:ec:95:72:80:92:0f:bb:ff:
2b:0d:a8:3e:f3:96:56:af:3a:67:89:94:a5:41:10:5b:e1:e3:
1a:ab:e7:2b:04:2c:93:be:b0:9e:b7:8d:40:bd:56:23:7e:89:
e1:9a:5e:44:35:99:36:35:6c:52:55:5e:53:6b:2b:45:34:b4:
05:cf:9e:61:2e:38:86:7f:24:9b:21:39:17:57:2a:de:3b:ef:
05:95:05:56:60:35:1b:43:fb:19:a1:96:1a:ad:cc:2c:22:53:
6f:6f:55:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 12:01:18 2025 by rpki-client