Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/605f46-7d4c-46b8-baa5-539329bed46e/1/sudojg6HDCizETctxsBEtvD9ceA.roa
File: sudojg6HDCizETctxsBEtvD9ceA.roa (raw, json)
Hash identifier: WBqfbYsjDjIGknBmCSsGnzqS8ek9/ghen0y1LOmx5Ns=
Subject key identifier: B2:E7:68:8E:0E:87:0C:28:B3:11:37:2D:C6:C0:44:B6:F0:FD:71:E0
Certificate issuer: /CN=84a3cf114be4fa4c4ff76b218fad50e51739160d
Certificate serial: 01942369F59D434AE641AF77320825AEC24D
Authority key identifier: 84:A3:CF:11:4B:E4:FA:4C:4F:F7:6B:21:8F:AD:50:E5:17:39:16:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hKPPEUvk-kxP92shj61Q5Rc5Fg0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/605f46-7d4c-46b8-baa5-539329bed46e/1/sudojg6HDCizETctxsBEtvD9ceA.roa
Signing time: Wed 01 Jan 2025 19:48:54 +0000
ROA not before: Wed 01 Jan 2025 19:48:54 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 212140
IP address blocks: 185.205.71.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:69:f5:9d:43:4a:e6:41:af:77:32:08:25:ae:c2:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84a3cf114be4fa4c4ff76b218fad50e51739160d
Validity
Not Before: Jan 1 19:48:54 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b2e7688e0e870c28b311372dc6c044b6f0fd71e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:7c:3c:c5:d8:f3:7e:b4:ee:db:2e:19:81:93:
f4:53:fc:24:7f:e9:8f:d3:b1:0a:22:83:51:48:2a:
ca:21:5f:09:8d:10:99:e0:d7:a2:f8:90:f4:e7:e4:
5b:41:d1:d6:c0:5c:5d:15:5e:90:2e:67:66:43:70:
7b:2b:85:1f:3c:09:ae:6b:8b:fa:96:8d:28:08:ef:
38:dd:5f:bd:b9:77:fb:62:eb:69:a7:a2:46:7e:69:
8a:9b:ad:2a:b0:25:c8:85:a7:27:22:84:17:48:df:
b1:ca:30:63:ec:b7:8d:58:a9:eb:00:ea:5a:40:10:
1a:b0:a9:df:fa:6f:52:45:97:23:cb:07:cf:b2:6c:
5c:b9:36:90:37:3f:37:bf:38:51:a6:cf:be:cc:bb:
ac:18:ad:e5:92:27:4a:5d:e8:a8:1c:9a:d2:06:23:
e9:3d:3f:af:a2:db:bb:69:8e:14:d9:cd:4d:dd:a3:
77:4c:86:1d:3b:ca:99:fd:9c:75:0e:92:b5:1d:f8:
2f:50:36:d8:f7:f8:c8:ac:72:01:d9:b9:42:4c:76:
81:0e:19:87:bd:55:9a:90:ac:7b:70:02:1a:45:fc:
9b:bb:0d:56:21:41:d8:25:e5:74:62:04:29:b1:aa:
15:96:24:53:7c:dd:4f:df:36:91:31:96:62:6a:ab:
72:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:E7:68:8E:0E:87:0C:28:B3:11:37:2D:C6:C0:44:B6:F0:FD:71:E0
X509v3 Authority Key Identifier:
keyid:84:A3:CF:11:4B:E4:FA:4C:4F:F7:6B:21:8F:AD:50:E5:17:39:16:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hKPPEUvk-kxP92shj61Q5Rc5Fg0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/605f46-7d4c-46b8-baa5-539329bed46e/1/sudojg6HDCizETctxsBEtvD9ceA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/605f46-7d4c-46b8-baa5-539329bed46e/1/hKPPEUvk-kxP92shj61Q5Rc5Fg0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.205.71.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:d6:72:36:d9:5b:2d:5b:1c:82:90:b8:35:1e:36:66:ee:5e:
f0:14:87:fb:b3:38:e2:49:e4:49:aa:78:fc:a5:73:9f:51:8d:
4a:11:54:40:d9:c1:ed:e1:b8:da:36:fc:2d:6b:ce:47:04:14:
d7:27:b4:4a:2c:7c:b9:f6:d6:ea:3c:97:89:a7:f9:5a:e2:09:
d8:ce:4d:fb:f6:cd:65:78:ff:bb:f8:05:e4:b5:da:a5:fb:ba:
bf:ad:7d:c8:b8:84:38:ae:54:c8:dc:36:74:ad:91:89:22:de:
68:29:49:f3:78:66:b2:28:ed:4b:e8:b7:3d:5f:a9:f4:b9:7d:
22:33:2a:50:d8:97:37:e3:f3:c6:a3:19:23:28:f9:30:24:b7:
dc:55:ca:c6:4c:a1:92:03:aa:bd:b3:b4:a8:3f:c7:7f:6f:db:
c1:45:c6:ba:e4:d2:3e:f6:83:a6:22:5a:00:10:49:83:34:bf:
2e:d3:d8:6b:eb:e3:ef:f4:70:0e:46:ec:e8:5b:d9:a8:a3:01:
83:f9:7c:73:42:47:4f:a7:68:c1:75:02:df:3e:bc:d2:e1:94:
1c:f9:3e:c5:5a:ca:99:52:c7:80:5e:14:e0:9e:f2:d6:b7:d9:
98:c3:8b:1a:f3:25:bb:93:56:69:1b:d5:98:c0:6e:21:6a:0b:
d7:b6:b1:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 09:11:05 2025 by rpki-client