Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/863093-5ed6-43b2-bbda-14c6c5055f88/1/70DfSihtLn-MMeYnWYv7ZjpjEgM.roa
File: 70DfSihtLn-MMeYnWYv7ZjpjEgM.roa (raw, json)
Hash identifier: u78wuaLSg6GaDt+rxcnVBh35CQfMs4UrEtrKVLvgnzw=
Subject key identifier: EF:40:DF:4A:28:6D:2E:7F:8C:31:E6:27:59:8B:FB:66:3A:63:12:03
Certificate issuer: /CN=b262bf21de51385859416c4c608001e2025a5d25
Certificate serial: 019424B376AFD572A257FF1B931050D35EA5
Authority key identifier: B2:62:BF:21:DE:51:38:58:59:41:6C:4C:60:80:01:E2:02:5A:5D:25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/smK_Id5ROFhZQWxMYIAB4gJaXSU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/863093-5ed6-43b2-bbda-14c6c5055f88/1/70DfSihtLn-MMeYnWYv7ZjpjEgM.roa
Signing time: Thu 02 Jan 2025 01:48:48 +0000
ROA not before: Thu 02 Jan 2025 01:48:48 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 198722
IP address blocks: 185.19.150.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:b3:76:af:d5:72:a2:57:ff:1b:93:10:50:d3:5e:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b262bf21de51385859416c4c608001e2025a5d25
Validity
Not Before: Jan 2 01:48:48 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ef40df4a286d2e7f8c31e627598bfb663a631203
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:c5:cb:72:7f:b0:50:b7:26:27:34:9c:4c:93:
e9:ae:d7:fb:e8:59:f7:d7:a9:35:07:d2:81:bd:52:
38:1e:38:5b:03:df:5b:14:c0:10:8b:7e:57:09:6d:
b2:de:45:3c:eb:f8:15:90:ce:5a:64:6c:a8:17:54:
64:a6:62:f9:9f:53:d5:d3:aa:d8:6f:3e:03:d3:44:
22:e5:6e:df:0e:52:98:7b:7a:b4:8b:d4:fc:c0:99:
24:df:25:c4:b1:1a:78:a1:d7:e3:7d:4f:5f:62:8b:
f9:a6:70:37:5c:67:59:9b:ec:5c:08:f0:86:eb:49:
b4:7a:7c:7f:11:c6:1c:84:fa:6a:8e:4f:35:0e:39:
cf:7d:24:77:71:08:2c:2e:d3:52:3d:02:1c:ce:50:
b9:a8:8c:19:db:2f:23:83:2f:11:99:79:f0:89:68:
6e:c7:f2:64:96:d9:1c:4a:0f:8e:dc:a4:52:24:3a:
82:0e:a4:e5:23:f1:6b:04:cd:af:d7:0d:83:96:44:
00:6b:2b:0c:6a:8f:eb:37:17:33:a8:18:d9:de:1c:
89:0c:a6:36:80:25:64:1d:fb:31:2b:eb:fa:8b:63:
e8:dc:8d:35:ca:de:79:f8:c2:1c:ce:a5:8a:64:b5:
95:cf:d2:f1:03:8d:df:bf:9d:f4:08:4c:19:43:49:
7d:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:40:DF:4A:28:6D:2E:7F:8C:31:E6:27:59:8B:FB:66:3A:63:12:03
X509v3 Authority Key Identifier:
keyid:B2:62:BF:21:DE:51:38:58:59:41:6C:4C:60:80:01:E2:02:5A:5D:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/smK_Id5ROFhZQWxMYIAB4gJaXSU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/863093-5ed6-43b2-bbda-14c6c5055f88/1/70DfSihtLn-MMeYnWYv7ZjpjEgM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/863093-5ed6-43b2-bbda-14c6c5055f88/1/smK_Id5ROFhZQWxMYIAB4gJaXSU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.19.150.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:bb:f1:e2:43:87:e9:59:63:28:e9:27:61:85:fa:02:ca:6e:
0b:07:23:a5:67:29:68:ae:33:9c:d9:f8:62:75:7e:74:97:37:
4a:07:44:9e:48:1d:20:96:99:38:6c:40:c0:3e:87:da:fa:d6:
58:f2:f4:15:7b:72:d6:11:33:87:0a:d2:6a:a6:41:b3:48:8f:
91:f7:81:63:12:08:6d:43:54:eb:08:ec:97:d2:12:17:b8:d8:
1d:5d:0d:2f:5b:05:54:43:5a:45:d3:c7:df:9e:e6:cc:60:c1:
06:8a:8a:af:25:78:15:e4:c1:5d:cf:9f:bc:f2:42:61:a9:4d:
78:d1:49:f3:47:ff:35:af:1d:a9:42:2c:0b:c2:52:da:2f:17:
21:73:a9:fd:02:dc:2a:29:ee:77:d5:7c:22:91:f5:ed:47:39:
fc:23:82:1d:b2:ef:57:16:64:3d:4c:8c:d2:15:dc:8b:fb:8b:
bd:b6:77:77:36:60:9c:a6:5d:1e:7a:56:a1:f9:b0:ad:c1:6b:
fa:e8:f6:5c:97:31:7a:5a:08:e2:a5:88:8e:25:dc:48:bf:4c:
62:cf:06:49:c0:f8:d6:a6:dc:bd:14:4f:01:3d:9e:e2:35:b4:
3f:6b:21:b2:9f:16:18:9f:d7:ea:3e:31:a3:be:da:06:ff:6b:
3c:67:88:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 08:07:37 2025 by rpki-client