Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/fd8116-5e98-45ef-af74-073a5db0efb5/1/uAFxYF4j1WjzEir1q_ppYn5ONVw.roa
File: uAFxYF4j1WjzEir1q_ppYn5ONVw.roa (raw, json)
Hash identifier: F4KXPif5dPc1ItKXpEL/Yr73q0hiilxiS6Ngz185AOU=
Subject key identifier: B8:01:71:60:5E:23:D5:68:F3:12:2A:F5:AB:FA:69:62:7E:4E:35:5C
Certificate issuer: /CN=63e24977993c15bcc134b174937f41b2129f56d1
Certificate serial: 01942068341645F4B7D699187A3323F69066
Authority key identifier: 63:E2:49:77:99:3C:15:BC:C1:34:B1:74:93:7F:41:B2:12:9F:56:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-JJd5k8FbzBNLF0k39BshKfVtE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/fd8116-5e98-45ef-af74-073a5db0efb5/1/uAFxYF4j1WjzEir1q_ppYn5ONVw.roa
Signing time: Wed 01 Jan 2025 05:48:07 +0000
ROA not before: Wed 01 Jan 2025 05:48:07 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 210771
IP address blocks: 185.208.144.0/24 maxlen: 24
185.208.147.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:68:34:16:45:f4:b7:d6:99:18:7a:33:23:f6:90:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e24977993c15bcc134b174937f41b2129f56d1
Validity
Not Before: Jan 1 05:48:07 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b80171605e23d568f3122af5abfa69627e4e355c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:62:d8:bf:7a:c3:da:2b:d6:8c:a7:3c:95:9f:
f3:f5:ef:0f:73:12:a1:82:a7:36:d7:67:f3:20:39:
69:87:de:2e:54:12:0e:57:7f:ad:33:97:71:a8:02:
ca:a0:ac:6f:84:68:ec:03:fe:4d:77:6c:5a:cc:1a:
04:57:4b:cb:af:88:3d:87:d9:f5:fd:a1:58:3c:32:
72:61:e3:7d:14:67:45:6d:d4:0a:50:be:a5:e0:71:
4e:ec:43:e1:bd:db:55:ad:9a:4a:fe:7d:54:2d:47:
b3:00:3b:8a:9d:12:40:4f:36:94:2e:02:13:00:c2:
95:f8:f3:d0:df:b1:9e:a4:5c:b1:8c:c3:fb:96:6d:
21:53:0b:8a:da:df:b7:72:79:d9:88:72:66:87:c5:
8f:34:09:77:bc:a5:09:68:a0:4b:23:7e:d6:64:ea:
54:7f:37:89:43:73:d2:6b:68:0a:83:56:5e:aa:13:
71:2e:15:5b:2d:72:cb:9f:b5:d3:7f:44:f3:c7:44:
53:98:2b:97:a8:27:b8:8e:83:c1:71:25:b8:b1:4d:
1d:ea:52:43:ee:24:88:71:ec:37:d9:02:a7:96:83:
22:81:9c:d1:06:fd:e7:93:f6:35:80:c2:99:ed:fe:
e3:f0:4b:c9:78:41:da:ef:24:9c:c5:29:02:41:7c:
b6:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:01:71:60:5E:23:D5:68:F3:12:2A:F5:AB:FA:69:62:7E:4E:35:5C
X509v3 Authority Key Identifier:
keyid:63:E2:49:77:99:3C:15:BC:C1:34:B1:74:93:7F:41:B2:12:9F:56:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-JJd5k8FbzBNLF0k39BshKfVtE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/fd8116-5e98-45ef-af74-073a5db0efb5/1/uAFxYF4j1WjzEir1q_ppYn5ONVw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/fd8116-5e98-45ef-af74-073a5db0efb5/1/Y-JJd5k8FbzBNLF0k39BshKfVtE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.208.144.0/24
185.208.147.0/24
Signature Algorithm: sha256WithRSAEncryption
4f:9d:b8:43:b0:5a:26:29:eb:a5:f7:77:27:aa:7e:f8:38:6e:
6c:1f:b6:ec:21:32:e8:d5:c8:30:af:01:24:5a:89:8e:cb:4e:
96:c2:7e:c4:3d:97:06:55:64:1b:e0:51:71:c9:13:fd:a3:b3:
8f:2b:b5:15:63:ce:41:a1:b8:e7:6f:d5:f3:b8:c5:9d:c6:3b:
24:81:65:b4:9e:bd:5f:b7:0f:d8:a7:a5:28:85:14:a3:a0:4f:
94:05:71:9c:65:1c:70:cf:fe:9f:0a:75:c8:eb:25:fc:34:03:
37:ef:60:88:b1:40:b1:fa:ad:af:08:35:8c:55:3d:7d:e7:0a:
f9:ed:b3:4e:7c:3c:51:a5:7b:c2:ad:38:0a:d4:86:b3:8d:86:
82:77:f5:f9:2f:52:00:36:a5:dc:5f:5c:cc:bf:ed:41:bb:1a:
3f:f6:7a:d1:f5:f7:dd:e6:bb:ba:a5:2f:0e:f0:cd:fe:1f:27:
44:67:a9:e7:1e:18:de:db:0c:7a:32:b0:f5:45:62:ce:ab:02:
7a:fc:25:7f:80:7e:da:36:29:59:a1:79:6d:c5:86:c3:a4:03:
23:6b:eb:9e:3c:f9:ad:f3:6e:d0:fe:e9:ed:da:e2:f0:51:14:
40:06:9b:7b:f6:c6:0f:6a:c6:27:10:4f:a1:3f:9e:49:6b:a0:
40:c3:f8:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 03:03:29 2025 by rpki-client