Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/ArnvqH_9APbydTluA-QxbF5xW9A.roa
File: ArnvqH_9APbydTluA-QxbF5xW9A.roa (raw, json)
Hash identifier: Ps8GEKCmgrEqcTPanUpd02mOEXoWd5MO92gPCk81tjY=
Subject key identifier: 02:B9:EF:A8:7F:FD:00:F6:F2:75:39:6E:03:E4:31:6C:5E:71:5B:D0
Certificate issuer: /CN=8d1ac83ee3a3f968d66ad2fdf4616e7bb1e4d1d7
Certificate serial: 01945A84AB692B1E19C68D7E21356E36D6CA
Authority key identifier: 8D:1A:C8:3E:E3:A3:F9:68:D6:6A:D2:FD:F4:61:6E:7B:B1:E4:D1:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jRrIPuOj-WjWatL99GFue7Hk0dc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/ArnvqH_9APbydTluA-QxbF5xW9A.roa
Signing time: Sun 12 Jan 2025 12:37:11 +0000
ROA not before: Sun 12 Jan 2025 12:37:11 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 213795
IP address blocks: 185.164.175.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:5a:84:ab:69:2b:1e:19:c6:8d:7e:21:35:6e:36:d6:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d1ac83ee3a3f968d66ad2fdf4616e7bb1e4d1d7
Validity
Not Before: Jan 12 12:37:11 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=02b9efa87ffd00f6f275396e03e4316c5e715bd0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:62:45:5b:a1:24:54:4f:45:e2:63:3c:1f:a9:
80:af:f6:5d:83:ed:66:90:ad:c9:e2:97:80:92:4d:
2c:5d:1f:db:ef:c5:40:f3:56:0e:aa:75:0d:12:d6:
7d:77:95:25:98:a9:2e:b7:b4:b6:61:be:bd:1a:81:
6f:3b:e2:15:a5:2f:c6:07:0f:22:7b:13:dc:16:78:
a4:b1:e7:84:61:af:dd:ca:03:11:30:21:44:a7:07:
6b:72:cc:46:7b:d5:32:72:8a:40:94:da:42:10:ef:
e4:55:fd:eb:d4:ca:34:a7:7c:87:79:bc:de:f2:c0:
e8:a1:16:17:47:ed:dd:81:98:82:c4:a0:a1:a3:6f:
b5:86:57:6d:b9:72:81:5c:ad:0e:84:66:58:d2:4b:
41:69:95:1f:59:31:cb:91:fc:54:00:f5:0b:45:a9:
c3:4b:08:71:b7:10:6b:49:73:0c:4e:35:23:c1:a5:
ed:e8:71:b7:5c:7a:fd:ee:4d:bf:db:d5:83:38:b7:
5d:f0:5e:32:26:2b:f8:7c:f6:ca:0c:be:70:cd:5a:
3f:7f:1b:30:6b:eb:cf:00:f7:3b:e7:e6:63:5e:07:
40:a8:23:ac:fb:02:f0:d0:dd:d5:77:1f:e6:62:6e:
79:3a:75:79:bf:68:78:16:0f:da:5a:39:88:99:19:
be:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:B9:EF:A8:7F:FD:00:F6:F2:75:39:6E:03:E4:31:6C:5E:71:5B:D0
X509v3 Authority Key Identifier:
keyid:8D:1A:C8:3E:E3:A3:F9:68:D6:6A:D2:FD:F4:61:6E:7B:B1:E4:D1:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jRrIPuOj-WjWatL99GFue7Hk0dc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/ArnvqH_9APbydTluA-QxbF5xW9A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/jRrIPuOj-WjWatL99GFue7Hk0dc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.164.175.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:d2:31:10:bb:7b:6f:58:5e:74:eb:34:b1:74:c5:8b:08:b0:
2e:4a:97:d3:3d:8a:98:19:3d:c1:1d:63:00:4c:24:60:0b:91:
28:d1:2c:96:90:e5:b5:1c:db:e2:10:d4:3a:ad:ad:a5:b2:ef:
ac:c9:2c:83:9b:b9:23:ed:68:1f:83:53:d6:34:04:2d:3e:c6:
f3:af:da:e1:a5:c8:e8:64:d9:c0:8c:f7:73:c8:27:ae:a3:03:
ef:2d:85:a1:a8:54:cf:bc:4a:93:d9:d2:e4:a3:c3:51:4a:58:
aa:7c:78:3b:87:6c:43:7a:6e:dc:e6:7b:3f:22:ac:3b:81:db:
46:1c:ac:e0:00:d5:e9:35:1a:92:d7:37:9d:8a:67:0a:64:12:
e5:51:18:19:8d:7e:4b:bd:dd:85:f1:69:ef:a2:7b:ff:9d:0b:
11:c6:39:ed:b1:f0:98:c8:d1:ca:e2:a8:a6:5c:7e:b5:c0:ab:
97:56:bc:4a:e2:8f:b8:08:f1:f7:7f:0b:99:b2:0f:5e:2e:32:
f3:05:d2:ca:bc:8d:22:e2:f7:35:a3:a5:75:3e:1f:c6:19:a4:
dd:7a:b6:25:46:63:14:4b:d2:cd:5c:ee:e0:29:f4:b3:b1:55:
24:90:6b:9d:a9:20:4e:a5:f1:7b:95:85:22:ef:cd:74:1d:2c:
28:d9:7c:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 13:16:33 2025 by rpki-client