Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/foJ4QycSZoLeX5HBGEgGb3_VDbc.roa
File: foJ4QycSZoLeX5HBGEgGb3_VDbc.roa (raw, json)
Hash identifier: 6GL5/gRhjE26Cz785WY71i1EcVPF5j3FDcpppmWBIT8=
Subject key identifier: 7E:82:78:43:27:12:66:82:DE:5F:91:C1:18:48:06:6F:7F:D5:0D:B7
Certificate issuer: /CN=f339343cc6d51ddb8e3638299a1bb495f4580921
Certificate serial: 019421B2403364ED8F921348C6D07AE73AA0
Authority key identifier: F3:39:34:3C:C6:D5:1D:DB:8E:36:38:29:9A:1B:B4:95:F4:58:09:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8zk0PMbVHduONjgpmhu0lfRYCSE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/foJ4QycSZoLeX5HBGEgGb3_VDbc.roa
Signing time: Wed 01 Jan 2025 11:48:37 +0000
ROA not before: Wed 01 Jan 2025 11:48:37 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 205241
IP address blocks: 185.219.56.0/22 maxlen: 24
2a0b:e140::/29 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:b2:40:33:64:ed:8f:92:13:48:c6:d0:7a:e7:3a:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f339343cc6d51ddb8e3638299a1bb495f4580921
Validity
Not Before: Jan 1 11:48:37 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=7e82784327126682de5f91c11848066f7fd50db7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:68:54:95:4b:c8:10:0f:83:78:e1:96:60:13:
95:c9:bf:4b:91:c6:22:f3:d1:b8:78:a8:b8:b8:df:
af:15:ba:02:66:3e:c8:c4:dd:4d:df:73:35:4f:c8:
d3:65:7c:46:a2:89:22:af:26:70:db:d8:3d:c9:e8:
58:86:4a:0c:43:a8:6f:82:30:79:72:e5:da:6c:81:
ff:40:5d:ed:c5:11:82:82:e1:a0:9c:20:10:44:e4:
d9:67:11:8a:70:34:c7:bd:67:e6:89:37:8c:29:66:
82:40:25:df:80:25:17:b9:5c:5e:bf:fd:b0:5c:7d:
22:99:3d:ce:c1:c5:7c:87:9b:f3:22:f7:a1:54:08:
30:55:99:97:b6:c2:a0:a9:26:70:4f:ee:0d:c5:82:
dc:0d:d1:cf:0e:18:0a:33:f2:6e:21:22:a4:ac:02:
a6:1d:f5:4a:9d:e5:14:91:c7:c4:19:d3:17:a2:9e:
71:9b:5a:42:e3:0c:96:74:18:c7:78:18:a4:5b:4d:
76:be:aa:dc:2e:a3:bd:66:29:72:0b:be:9e:50:68:
c2:94:b4:61:cf:f3:8c:e9:d3:58:af:b6:39:39:56:
d9:47:01:8c:5a:a9:3e:8a:5c:53:81:21:2e:3b:4e:
91:98:88:86:b6:5e:8c:e8:f4:e5:f1:ab:e6:82:ba:
f7:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:82:78:43:27:12:66:82:DE:5F:91:C1:18:48:06:6F:7F:D5:0D:B7
X509v3 Authority Key Identifier:
keyid:F3:39:34:3C:C6:D5:1D:DB:8E:36:38:29:9A:1B:B4:95:F4:58:09:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8zk0PMbVHduONjgpmhu0lfRYCSE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/foJ4QycSZoLeX5HBGEgGb3_VDbc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.219.56.0/22
IPv6:
2a0b:e140::/29
Signature Algorithm: sha256WithRSAEncryption
86:7d:e5:3e:b4:79:67:ba:2a:61:56:e0:ce:c5:b0:3c:d8:6c:
37:11:da:e2:ae:6b:fe:c6:9f:fb:0b:de:50:b7:ba:42:37:fc:
53:67:5b:97:42:90:4e:3f:d7:3c:3b:d1:bd:ea:f0:8d:d0:96:
31:1d:84:03:3f:36:1e:66:c5:b8:56:27:1b:9a:32:0a:8e:0b:
57:be:c0:92:9e:6a:4d:c5:9e:2d:b2:a0:57:77:14:db:da:bd:
17:88:80:f7:f4:21:3f:d7:16:b6:26:4c:06:39:d0:a7:3e:8c:
bb:9a:98:32:57:66:5b:e2:90:07:91:db:96:dc:c0:12:34:dc:
1a:bf:72:1a:aa:d0:aa:cc:07:fc:95:6c:f4:7d:99:f5:68:c5:
24:89:51:29:63:54:96:ad:92:ab:a5:e9:24:66:47:24:99:64:
2e:aa:98:d5:16:ac:dc:c2:f8:19:d4:c1:54:bd:80:50:09:2a:
12:e6:14:79:bd:a2:e9:09:d6:98:71:ea:85:d1:6b:5b:8c:c0:
69:d9:ec:7e:4e:6b:83:d7:23:a5:ec:b7:d2:57:54:8e:91:6d:
d5:74:00:4e:d8:cf:7b:54:e8:ad:dc:c1:44:3f:6f:af:59:5c:
5a:36:c8:5a:09:be:2c:c9:75:14:59:19:f3:10:eb:25:e4:d9:
79:34:4a:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 05:49:06 2025 by rpki-client