Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/d4f83d-fb53-424f-851d-c0d062a75354/1/FfnLiGABH03HqlftjhZF678EGB8.roa
File: FfnLiGABH03HqlftjhZF678EGB8.roa (raw, json)
Hash identifier: nyehgET/wFyxH3T+eGoHm00VphaU2QrgGydROQ2sLfE=
Subject key identifier: 15:F9:CB:88:60:01:1F:4D:C7:AA:57:ED:8E:16:45:EB:BF:04:18:1F
Certificate issuer: /CN=e52d8b5cba7c2d2b8af046eb7f310105ac0c09ac
Certificate serial: 019426D9867ED83C3E80EE3A539F34DA4766
Authority key identifier: E5:2D:8B:5C:BA:7C:2D:2B:8A:F0:46:EB:7F:31:01:05:AC:0C:09:AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5S2LXLp8LSuK8EbrfzEBBawMCaw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/d4f83d-fb53-424f-851d-c0d062a75354/1/FfnLiGABH03HqlftjhZF678EGB8.roa
Signing time: Thu 02 Jan 2025 11:49:37 +0000
ROA not before: Thu 02 Jan 2025 11:49:37 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 206564
IP address blocks: 185.59.248.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:d9:86:7e:d8:3c:3e:80:ee:3a:53:9f:34:da:47:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e52d8b5cba7c2d2b8af046eb7f310105ac0c09ac
Validity
Not Before: Jan 2 11:49:37 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=15f9cb8860011f4dc7aa57ed8e1645ebbf04181f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:fe:60:0a:dd:64:37:3e:5c:89:d2:eb:fe:5f:
47:15:66:0d:ba:7e:e1:94:b7:f3:85:36:d1:1c:d1:
9a:27:2e:eb:be:56:f3:8d:0c:74:53:53:40:92:84:
d2:4f:02:14:86:62:61:73:c2:1b:fc:96:69:bc:a6:
b4:6b:28:8b:15:2b:da:05:ea:cd:6a:80:73:a5:04:
ac:4e:f8:be:45:65:db:e0:f9:00:fe:03:33:c2:80:
7b:49:0b:af:5b:d2:0b:a0:ef:93:cb:4a:48:e7:75:
a0:ac:9c:75:91:14:94:fd:00:ce:87:63:13:ef:7f:
b2:fb:ba:5a:d0:99:3d:fd:16:ab:e7:64:ac:55:af:
cf:5c:64:12:56:7c:27:81:3c:23:8c:36:89:02:f6:
e4:ae:97:f2:7f:9b:9e:af:39:d8:62:91:54:fc:0d:
0e:ef:be:72:ae:ef:66:13:60:f4:08:db:d9:0f:30:
1c:3f:b1:e6:ac:32:71:51:20:2b:71:39:c5:25:78:
bc:75:2a:02:c9:54:94:28:92:99:6a:6f:bc:47:9e:
57:4f:d0:e9:0d:7e:0e:03:22:d0:00:3d:30:eb:71:
77:5a:d0:d9:4b:08:39:db:06:8b:59:fc:a6:c1:c4:
e6:3b:58:f9:21:fc:fa:f2:05:33:fa:93:7f:f6:b5:
26:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:F9:CB:88:60:01:1F:4D:C7:AA:57:ED:8E:16:45:EB:BF:04:18:1F
X509v3 Authority Key Identifier:
keyid:E5:2D:8B:5C:BA:7C:2D:2B:8A:F0:46:EB:7F:31:01:05:AC:0C:09:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5S2LXLp8LSuK8EbrfzEBBawMCaw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/d4f83d-fb53-424f-851d-c0d062a75354/1/FfnLiGABH03HqlftjhZF678EGB8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/d4f83d-fb53-424f-851d-c0d062a75354/1/5S2LXLp8LSuK8EbrfzEBBawMCaw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.59.248.0/22
Signature Algorithm: sha256WithRSAEncryption
71:0d:e2:cb:e5:d9:ac:06:28:c3:e5:1d:17:fe:a3:4e:64:3c:
e5:81:7d:36:b9:33:e9:83:08:fb:31:fc:7a:c3:b9:ab:e3:96:
c8:33:7c:3c:53:47:ae:0d:70:70:5c:e6:c9:90:5a:3e:6c:d4:
31:9d:92:cd:99:dd:01:68:ec:c4:85:56:fe:18:04:82:14:93:
7c:96:e4:58:09:d2:f9:1c:97:e4:0a:e3:15:2b:9a:43:f1:8c:
fe:35:17:40:6c:03:ce:71:63:77:f0:c4:27:19:9f:e5:bb:4f:
a3:5d:ee:f2:8d:f8:4c:c7:42:c2:bd:46:88:e3:20:00:2f:7c:
62:5e:00:41:89:d5:29:b8:7c:89:7e:d9:ef:98:e1:ec:11:e2:
2e:10:1f:f5:6c:a5:87:65:77:11:ae:e6:44:01:2f:1f:19:8f:
cf:5d:3e:86:a6:87:ae:5b:7a:ee:53:6a:77:4e:96:f9:31:15:
6c:86:1c:75:c5:0b:f8:d9:f7:9e:23:79:d5:76:c2:02:bc:8a:
fb:be:fb:73:7c:57:d6:4e:83:1b:3e:87:d9:ee:b7:06:ba:d6:
4a:01:1d:13:a8:75:99:a4:eb:ca:6e:84:6b:1e:3f:bb:f7:e3:
d3:e7:39:74:73:bc:47:5e:3d:53:72:25:a6:a9:0f:16:13:90:
29:86:5f:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 10:06:46 2025 by rpki-client