Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/5f53ee-fb00-4df4-9764-06da2bb06071/1/XrmbTB36f6No7HgE2Qb2I31Dcv8.roa
File: XrmbTB36f6No7HgE2Qb2I31Dcv8.roa (raw, json)
Hash identifier: HGfAozR7O/ZB1GS1OfPuLa6dsGtZ660AMEUXLcdHqKM=
Subject key identifier: 5E:B9:9B:4C:1D:FA:7F:A3:68:EC:78:04:D9:06:F6:23:7D:43:72:FF
Certificate issuer: /CN=7938dfb9eb924079bb706cb616eda572864a9e13
Certificate serial: 0194221FAC18B8A1FCC2477ED9B1FA20AE2B
Authority key identifier: 79:38:DF:B9:EB:92:40:79:BB:70:6C:B6:16:ED:A5:72:86:4A:9E:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eTjfueuSQHm7cGy2Fu2lcoZKnhM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/5f53ee-fb00-4df4-9764-06da2bb06071/1/XrmbTB36f6No7HgE2Qb2I31Dcv8.roa
Signing time: Wed 01 Jan 2025 13:48:08 +0000
ROA not before: Wed 01 Jan 2025 13:48:08 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 60786
IP address blocks: 185.51.42.0/24 maxlen: 24
185.51.43.0/24 maxlen: 24
2a04:c147::/34 maxlen: 34
2a04:c147:4000::/34 maxlen: 34
2a04:c147:8000::/34 maxlen: 34
2a04:c147:c000::/34 maxlen: 34
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:1f:ac:18:b8:a1:fc:c2:47:7e:d9:b1:fa:20:ae:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7938dfb9eb924079bb706cb616eda572864a9e13
Validity
Not Before: Jan 1 13:48:08 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=5eb99b4c1dfa7fa368ec7804d906f6237d4372ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:61:83:75:60:a1:52:f3:35:cb:91:8c:be:f7:
4d:cd:db:56:1a:66:ce:ae:53:52:0f:e1:c3:e6:38:
1e:c4:e5:fa:38:23:8f:15:f8:ff:69:75:f1:fb:8e:
a7:43:ac:c4:8a:f0:f5:c1:c7:be:87:14:52:6a:63:
1c:ab:23:5f:49:d7:c2:05:de:92:00:1b:77:e4:96:
5f:f8:06:0c:eb:de:10:df:44:60:09:16:e3:2c:b5:
59:9d:86:1b:88:04:a8:bb:67:81:21:d6:2d:34:f2:
51:ca:92:ba:33:35:e6:04:d3:65:a5:81:74:ea:e4:
e0:b7:3f:9c:57:84:7c:fe:9e:d2:54:f1:5b:cc:07:
93:8f:09:17:7c:3e:06:7b:cd:f0:e7:32:ee:72:5c:
7a:ce:fc:5f:6a:8b:fc:5b:87:15:05:1e:78:f7:0c:
ca:de:b2:30:74:c2:65:02:8c:d6:ad:b9:52:7a:70:
14:63:a5:06:7f:3b:74:1c:08:9e:6b:5d:bf:02:5d:
c2:57:c9:f9:65:d3:cb:f0:f1:03:f7:0b:2b:8b:c8:
75:68:0d:a4:d8:1a:ac:30:fc:c6:19:55:72:ff:a8:
a5:b8:c9:38:a3:d3:d8:d7:a5:3e:4b:fc:db:aa:1c:
3e:d0:ee:6f:cb:cf:2b:01:f9:34:9b:2e:e7:1f:0d:
c6:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:B9:9B:4C:1D:FA:7F:A3:68:EC:78:04:D9:06:F6:23:7D:43:72:FF
X509v3 Authority Key Identifier:
keyid:79:38:DF:B9:EB:92:40:79:BB:70:6C:B6:16:ED:A5:72:86:4A:9E:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eTjfueuSQHm7cGy2Fu2lcoZKnhM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/5f53ee-fb00-4df4-9764-06da2bb06071/1/XrmbTB36f6No7HgE2Qb2I31Dcv8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/5f53ee-fb00-4df4-9764-06da2bb06071/1/eTjfueuSQHm7cGy2Fu2lcoZKnhM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.51.42.0/23
IPv6:
2a04:c147::/32
Signature Algorithm: sha256WithRSAEncryption
b4:a3:be:28:65:ff:b4:21:89:95:2d:a1:86:b3:fc:9f:c2:7f:
de:2d:e4:a9:ef:14:45:b1:92:1c:a7:f0:90:15:2e:18:50:e2:
b6:1f:60:26:6a:2f:8a:31:d5:6c:e3:cc:ea:65:7d:0f:9f:16:
f1:bd:f4:46:e0:7a:a1:1a:b8:db:20:ef:bc:83:06:31:cf:ca:
19:f5:61:9e:3b:c2:60:49:c9:41:6a:08:af:d8:78:2a:53:69:
25:c5:95:bf:76:3b:52:b1:fd:83:57:65:ab:e0:2d:c9:7b:f6:
fd:5a:6f:34:e9:1b:a7:d7:23:59:61:6c:2c:a1:db:0c:3d:4f:
51:ea:08:6e:0d:7a:9f:a4:61:59:3e:45:67:52:02:a2:50:e6:
3f:c5:cd:6a:4c:64:22:56:29:e1:ab:45:cc:f9:ec:e9:63:8b:
23:fa:3b:7c:f1:0f:a9:30:42:ef:49:df:5f:94:79:f0:ae:51:
a0:80:a9:df:c5:34:6c:67:e3:0b:4a:71:bc:67:8a:be:88:2e:
ce:7f:75:5c:e2:99:c8:57:aa:66:f7:bf:25:38:9f:51:26:a4:
7a:11:9a:5f:e2:96:6d:bc:6e:4e:09:23:9f:4e:6c:02:f7:a3:
b0:fd:20:1d:5b:2b:75:ce:77:d2:08:85:a2:b0:90:23:b8:c2:
d4:e9:eb:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 09:09:32 2025 by rpki-client