Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/8d7548-0753-40dc-8fbb-de21f5fee3db/1/rWTg50lIWr4eBCYZpN1g2rEsvwA.roa
File: rWTg50lIWr4eBCYZpN1g2rEsvwA.roa (raw, json)
Hash identifier: h6askj3XUZ9cNfHdvd89Te7uFDoO162bWotdGeS5FPk=
Subject key identifier: AD:64:E0:E7:49:48:5A:BE:1E:04:26:19:A4:DD:60:DA:B1:2C:BF:00
Certificate issuer: /CN=66e3ed06e88e5591d9096676951555c0dc535c19
Certificate serial: 0194228DF0986BCD9073504387F637EDE62A
Authority key identifier: 66:E3:ED:06:E8:8E:55:91:D9:09:66:76:95:15:55:C0:DC:53:5C:19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZuPtBuiOVZHZCWZ2lRVVwNxTXBk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/8d7548-0753-40dc-8fbb-de21f5fee3db/1/rWTg50lIWr4eBCYZpN1g2rEsvwA.roa
Signing time: Wed 01 Jan 2025 15:48:35 +0000
ROA not before: Wed 01 Jan 2025 15:48:35 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 207218
IP address blocks: 185.28.177.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:8d:f0:98:6b:cd:90:73:50:43:87:f6:37:ed:e6:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66e3ed06e88e5591d9096676951555c0dc535c19
Validity
Not Before: Jan 1 15:48:35 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ad64e0e749485abe1e042619a4dd60dab12cbf00
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:6a:39:dd:c3:91:8c:09:c3:45:ae:98:88:3d:
08:f8:95:7b:62:03:ea:d3:ae:57:3e:1f:91:71:7a:
ee:78:8a:cf:ad:80:1d:e2:a1:ab:95:21:99:73:56:
10:b1:de:32:2a:fb:ad:73:d3:e5:3c:6d:ad:78:55:
b6:9d:38:85:22:2d:9a:99:e9:77:21:a9:e8:39:33:
44:35:d2:e0:76:1a:4f:04:b3:2c:43:2f:26:47:c8:
5a:8f:85:4e:27:48:71:1e:28:36:0b:cd:7a:18:ba:
38:22:48:f6:90:d4:1f:71:94:0c:06:1c:0b:98:8f:
59:23:e9:ce:56:69:8e:e8:81:95:15:42:12:8e:8d:
96:2b:1e:6e:70:c4:8d:e3:60:27:ad:b4:50:99:cc:
49:be:76:e1:2d:12:59:b3:91:9c:2e:dd:06:9b:80:
6c:28:98:c0:6a:a6:5f:60:c5:a0:10:e8:25:20:8f:
11:2f:6b:c9:2e:f2:97:08:67:26:f4:22:68:55:e7:
9a:9b:b6:02:26:89:4c:02:3b:e9:0e:b2:b8:a1:8e:
37:0e:65:37:38:9b:a8:a5:15:87:d6:3d:c5:8f:5b:
ae:99:8f:92:ba:0a:dd:4f:85:1d:73:3a:fe:95:67:
11:6a:af:14:c7:f3:92:76:7f:48:6c:1e:b9:0d:43:
98:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:64:E0:E7:49:48:5A:BE:1E:04:26:19:A4:DD:60:DA:B1:2C:BF:00
X509v3 Authority Key Identifier:
keyid:66:E3:ED:06:E8:8E:55:91:D9:09:66:76:95:15:55:C0:DC:53:5C:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZuPtBuiOVZHZCWZ2lRVVwNxTXBk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/8d7548-0753-40dc-8fbb-de21f5fee3db/1/rWTg50lIWr4eBCYZpN1g2rEsvwA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/8d7548-0753-40dc-8fbb-de21f5fee3db/1/ZuPtBuiOVZHZCWZ2lRVVwNxTXBk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.28.177.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:e7:5d:01:3d:f6:9d:21:cd:fe:05:89:92:87:bf:64:55:6e:
06:b4:d4:6e:22:5b:99:7e:a9:f7:49:3c:1d:7e:fc:22:da:b5:
7e:91:61:d1:2a:be:c4:0c:0b:96:c9:0c:44:0b:a1:fc:67:d5:
1e:bc:a3:3b:56:91:e4:54:14:24:a7:5d:9e:a1:d4:18:16:7a:
93:84:96:5b:aa:86:fb:11:69:3a:56:0c:5e:23:21:24:d0:3b:
3d:d6:e9:d4:c6:1c:5e:07:31:cb:88:9a:85:6f:61:c6:f2:1b:
f2:08:45:f1:17:29:ea:f9:e6:d8:f3:00:0f:32:62:c9:cc:89:
6d:1d:57:29:4e:c0:a5:58:a1:a1:50:21:f4:da:d8:c4:b6:84:
7a:8f:38:11:4c:af:9c:f1:4b:45:2b:1d:24:6c:5c:43:4f:15:
30:95:94:1c:4f:83:3f:7a:5a:14:02:e5:1c:62:04:bd:ff:f9:
70:ee:03:63:bc:9f:0f:74:1d:eb:3d:c9:3b:37:c1:4a:c0:ea:
7f:3b:c5:a2:20:47:ae:42:12:93:15:a3:29:c7:45:48:c1:4a:
c5:2e:e8:e9:3b:08:ae:c0:a8:f5:e5:5f:77:c3:3b:4f:64:ca:
7a:dd:9f:d8:d3:1e:ca:88:f0:10:aa:72:e1:f1:6a:e3:07:4d:
91:2f:3f:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 04:06:29 2025 by rpki-client