Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/a65522-f7c5-487b-b7b8-2e4614141aa4/1/iSrIgRlu5YD7Koa8bEOEIApsG1I.roa
File: iSrIgRlu5YD7Koa8bEOEIApsG1I.roa (raw, json)
Hash identifier: 1rQNsMYOVuSbFnE+oDLQ6neckAWKt+MSYxXbU0fBqpY=
Subject key identifier: 89:2A:C8:81:19:6E:E5:80:FB:2A:86:BC:6C:43:84:20:0A:6C:1B:52
Certificate issuer: /CN=7f188adab5b552081ecac821c9b090394873b315
Certificate serial: 019420D5D2735A0F466A7A7F723C8645B7EC
Authority key identifier: 7F:18:8A:DA:B5:B5:52:08:1E:CA:C8:21:C9:B0:90:39:48:73:B3:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fxiK2rW1UggeysghybCQOUhzsxU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/a65522-f7c5-487b-b7b8-2e4614141aa4/1/iSrIgRlu5YD7Koa8bEOEIApsG1I.roa
Signing time: Wed 01 Jan 2025 07:47:51 +0000
ROA not before: Wed 01 Jan 2025 07:47:51 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 211354
IP address blocks: 185.194.14.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:d5:d2:73:5a:0f:46:6a:7a:7f:72:3c:86:45:b7:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7f188adab5b552081ecac821c9b090394873b315
Validity
Not Before: Jan 1 07:47:51 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=892ac881196ee580fb2a86bc6c4384200a6c1b52
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:c6:e6:81:5e:f7:f2:fd:5c:e2:c3:ca:e6:f2:
1d:76:ec:57:8d:67:43:d7:5d:52:c9:bc:81:5d:89:
d8:1e:8d:56:44:ab:ba:24:64:69:2c:a3:3d:e2:bf:
58:d5:6f:8b:4f:41:a6:ac:1e:66:a9:e6:1e:0c:6d:
42:4a:e7:c5:ab:8f:9e:ae:fa:0f:38:a1:d6:1e:2b:
e6:b8:f6:90:86:5a:6a:ff:d7:fe:5e:72:f8:dc:b7:
31:27:cb:17:d8:9a:51:29:67:60:a9:a1:bc:78:4e:
e7:25:7a:66:b8:15:af:05:fd:d5:f2:a8:7f:18:99:
4a:9e:e4:92:2f:0d:0e:86:1b:a0:3e:63:4b:b8:ac:
91:2d:c8:f5:aa:0d:92:d0:22:40:f8:c9:15:c5:f7:
23:27:7b:d1:75:3c:d2:0c:95:9f:21:47:ae:d2:11:
53:82:25:c2:4b:e4:b7:cb:3f:8c:90:53:51:48:9c:
26:e3:09:0f:d4:68:9d:6b:bf:db:c1:14:c2:b2:14:
f9:b8:53:1e:f1:27:8d:28:8a:62:2e:38:17:10:fc:
06:b0:e8:8c:c0:96:b7:1a:d3:18:d2:e0:10:e3:07:
3a:34:e4:a7:99:d3:43:f9:2d:f5:76:2f:4c:ab:8c:
f2:b4:9a:d5:62:e1:5c:80:8b:c2:eb:85:2b:e5:63:
fa:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:2A:C8:81:19:6E:E5:80:FB:2A:86:BC:6C:43:84:20:0A:6C:1B:52
X509v3 Authority Key Identifier:
keyid:7F:18:8A:DA:B5:B5:52:08:1E:CA:C8:21:C9:B0:90:39:48:73:B3:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fxiK2rW1UggeysghybCQOUhzsxU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/a65522-f7c5-487b-b7b8-2e4614141aa4/1/iSrIgRlu5YD7Koa8bEOEIApsG1I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/a65522-f7c5-487b-b7b8-2e4614141aa4/1/fxiK2rW1UggeysghybCQOUhzsxU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.194.14.0/24
Signature Algorithm: sha256WithRSAEncryption
51:f8:85:19:4d:6d:27:e7:d7:36:0d:67:e8:af:e1:f1:4f:78:
45:6d:11:1f:a8:ff:9e:96:eb:8f:34:c4:84:b2:db:c5:5d:b2:
2d:4c:a0:d9:ae:cb:58:10:62:1d:c8:17:3f:1e:ee:83:29:b2:
ea:5d:fa:81:03:57:f3:1b:91:cf:c3:ea:d0:2b:8d:8a:1b:4a:
53:b0:1b:7c:7b:26:00:27:77:6a:02:2b:8a:96:89:d6:ce:da:
85:53:ab:b2:f6:5a:76:f5:8b:ef:ef:eb:f0:30:06:2b:35:a7:
a1:05:46:34:70:bf:88:40:28:03:a4:5c:d9:4d:fd:9a:16:fe:
6e:9a:4d:07:d2:33:d7:cb:ea:2b:21:db:dc:49:3b:29:20:35:
c1:dc:eb:f6:87:31:bc:31:17:17:08:79:bf:e6:c9:38:18:45:
9d:36:45:ee:ba:49:eb:bb:70:4a:4d:73:f1:14:9c:a9:fe:f3:
07:bc:42:17:e1:87:66:22:2f:6c:ac:12:ff:d6:58:b8:9e:99:
2e:6b:5c:91:4d:d1:e0:a3:a1:7b:8c:d2:c9:5d:88:73:9b:2e:
34:84:ec:49:ec:c0:66:0d:49:f0:7c:fe:17:0e:26:73:9e:1f:
27:1e:60:2c:92:d7:f3:60:4d:74:0c:c2:90:68:c2:9c:18:57:
ff:0a:3d:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 09:42:36 2025 by rpki-client