Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/4fc780-b296-40b7-9508-9f8e6a184374/1/ahq3UrSwaIQvDkIrorl5O5ztGvQ.roa
File: ahq3UrSwaIQvDkIrorl5O5ztGvQ.roa (raw, json)
Hash identifier: rt6AciC29jxzpxpxz0n9wcvl0rWHWyCvo8/vyh12WeY=
Subject key identifier: 6A:1A:B7:52:B4:B0:68:84:2F:0E:42:2B:A2:B9:79:3B:9C:ED:1A:F4
Certificate issuer: /CN=cd919eb5c2108360155de7fb4f216a055ae31f09
Certificate serial: 0194266B79E4F45A0A15F8C248CCA865F56F
Authority key identifier: CD:91:9E:B5:C2:10:83:60:15:5D:E7:FB:4F:21:6A:05:5A:E3:1F:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zZGetcIQg2AVXef7TyFqBVrjHwk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/4fc780-b296-40b7-9508-9f8e6a184374/1/ahq3UrSwaIQvDkIrorl5O5ztGvQ.roa
Signing time: Thu 02 Jan 2025 09:49:25 +0000
ROA not before: Thu 02 Jan 2025 09:49:25 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 39180
IP address blocks: 185.191.200.0/24 maxlen: 24
185.191.201.0/24 maxlen: 24
185.191.202.0/24 maxlen: 24
185.191.203.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:6b:79:e4:f4:5a:0a:15:f8:c2:48:cc:a8:65:f5:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd919eb5c2108360155de7fb4f216a055ae31f09
Validity
Not Before: Jan 2 09:49:25 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=6a1ab752b4b068842f0e422ba2b9793b9ced1af4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:eb:fb:1a:ba:b2:77:e3:e0:f5:bb:5b:56:72:
8d:93:80:4b:1b:18:f6:4a:c1:7c:fb:6a:d0:d9:f3:
2d:0a:4a:ff:c0:2e:ef:a8:1d:a7:96:20:ef:c3:52:
0f:28:2a:96:4d:08:f7:62:07:12:fa:44:7f:1a:c6:
9b:7e:42:7c:79:0f:fc:7f:a0:f6:d8:88:57:2f:71:
b0:a4:3c:89:5b:f1:24:2d:ee:87:14:2d:81:0f:29:
31:b7:38:be:57:63:47:d5:d6:27:66:b5:fd:31:40:
32:e2:a5:7a:87:de:ab:19:ab:57:df:ae:15:d2:16:
b8:47:8e:d6:d4:cd:03:05:ff:4c:25:c8:23:cb:f8:
2a:01:a3:25:2b:12:a1:32:42:61:05:67:d3:c6:f8:
1e:f3:51:0d:8d:80:93:b8:61:06:22:a7:14:26:e2:
df:97:b8:e1:59:e4:e2:c5:9f:e6:5e:cf:ce:18:71:
79:f7:b6:15:f4:cd:ac:ab:24:21:9c:54:e4:9d:f3:
9d:2f:ee:d2:2f:83:d3:9b:e0:38:c7:fd:05:49:f1:
9f:90:4a:03:86:5f:99:29:2e:fe:24:e1:02:d5:0a:
c1:91:40:ba:a7:7a:14:e5:81:73:92:27:a9:9e:e7:
3a:ec:9b:e2:6b:df:96:8b:3f:7f:6d:70:98:7f:da:
cc:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:1A:B7:52:B4:B0:68:84:2F:0E:42:2B:A2:B9:79:3B:9C:ED:1A:F4
X509v3 Authority Key Identifier:
keyid:CD:91:9E:B5:C2:10:83:60:15:5D:E7:FB:4F:21:6A:05:5A:E3:1F:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zZGetcIQg2AVXef7TyFqBVrjHwk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/4fc780-b296-40b7-9508-9f8e6a184374/1/ahq3UrSwaIQvDkIrorl5O5ztGvQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/4fc780-b296-40b7-9508-9f8e6a184374/1/zZGetcIQg2AVXef7TyFqBVrjHwk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.191.200.0/22
Signature Algorithm: sha256WithRSAEncryption
21:35:7e:60:df:64:cf:6f:92:af:77:57:43:85:03:3b:24:e5:
4d:0e:90:06:a1:2d:99:2b:99:7d:1d:83:88:4c:50:e8:e8:f1:
17:72:e0:6b:36:7a:06:74:cc:ea:c0:a9:66:f8:d3:7a:94:eb:
69:16:0d:e9:52:fc:16:2d:43:70:ab:43:28:14:6f:b5:0e:d6:
40:c8:3f:98:a5:4e:86:84:df:3d:d6:89:ef:53:cd:a0:ac:f3:
6a:d9:5d:5a:ac:50:4c:61:ad:d0:f3:0a:fd:fd:66:8a:59:32:
c1:91:34:30:12:20:b6:b2:65:b5:6b:3a:64:5c:8f:3a:09:4b:
27:d8:e7:16:5e:a7:db:87:1a:63:af:8c:f8:59:70:b6:61:a9:
2f:96:28:4e:f9:19:2a:ca:b1:9b:38:24:55:11:b1:5f:40:d5:
d7:b9:5e:c1:bd:53:86:0f:01:24:01:da:b1:95:2a:52:89:e8:
c5:e0:75:86:7c:5d:f4:10:43:bd:de:23:71:07:aa:87:48:cf:
d6:59:60:41:24:2a:0b:e7:09:eb:90:11:71:f8:f0:0d:88:f1:
c1:c7:da:ec:47:ba:9d:ae:ed:91:06:e3:29:80:0c:0a:cc:05:
89:5c:c4:f0:1f:82:af:8f:fc:8b:e7:8e:e3:bf:52:eb:87:fa:
02:ca:6f:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 04:51:09 2025 by rpki-client