Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/50f34c-338d-4fce-8193-ec16735a3382/1/p4F6VDWGlGgiZn3yBJi7M3fVpVg.roa
File: p4F6VDWGlGgiZn3yBJi7M3fVpVg.roa (raw, json)
Hash identifier: TIMfRy8SxAVXXi0h232Rvp4fEAYndvsGejpfbPavyrQ=
Subject key identifier: A7:81:7A:54:35:86:94:68:22:66:7D:F2:04:98:BB:33:77:D5:A5:58
Certificate issuer: /CN=a2d5c7ae7e45c00734efbcc913a1b1ea3e964b40
Certificate serial: 0194266BEDE7630A3CDD2CF00B6D5A7ED502
Authority key identifier: A2:D5:C7:AE:7E:45:C0:07:34:EF:BC:C9:13:A1:B1:EA:3E:96:4B:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/otXHrn5FwAc077zJE6Gx6j6WS0A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/50f34c-338d-4fce-8193-ec16735a3382/1/p4F6VDWGlGgiZn3yBJi7M3fVpVg.roa
Signing time: Thu 02 Jan 2025 09:49:54 +0000
ROA not before: Thu 02 Jan 2025 09:49:54 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 33915
IP address blocks: 185.117.208.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:6b:ed:e7:63:0a:3c:dd:2c:f0:0b:6d:5a:7e:d5:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a2d5c7ae7e45c00734efbcc913a1b1ea3e964b40
Validity
Not Before: Jan 2 09:49:54 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=a7817a543586946822667df20498bb3377d5a558
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:2d:d3:1f:50:31:7e:c4:4c:1d:c2:7f:52:be:
e7:27:3b:9c:51:91:f1:08:3a:03:08:d9:66:bb:ce:
3b:75:5b:e3:65:f1:8a:4a:87:c6:63:f9:47:f6:38:
48:fb:0e:43:a4:01:38:2d:26:83:53:cf:8b:c9:c5:
04:3e:6b:c1:ba:a3:95:df:57:42:e8:36:27:0c:9e:
d3:14:dd:45:7a:4b:70:32:e5:1a:1c:3a:b1:2e:3d:
89:51:6b:15:0b:14:d4:df:f6:63:57:7c:12:19:77:
8b:40:f4:0b:0d:27:18:84:86:f0:53:80:c7:ee:4d:
b4:29:e7:c0:50:88:04:d3:f6:6b:78:43:0f:97:59:
a8:eb:fc:70:3d:8b:9b:f8:da:80:38:0c:1b:a2:d5:
8a:ac:fa:66:9d:a9:24:16:3e:2e:80:58:22:ba:24:
53:f2:66:47:87:56:62:bd:c8:eb:29:76:2a:e8:c5:
c3:bb:07:fb:45:b3:50:16:77:65:b3:48:dc:eb:81:
63:dd:66:16:5e:b9:3b:de:cd:03:cf:78:08:e1:eb:
93:fe:ec:70:9d:77:3a:32:ea:24:de:2e:0f:f8:46:
b2:04:af:d4:33:15:c1:31:d0:ba:66:e4:fd:04:5a:
65:75:91:e3:e2:7e:a7:26:53:35:de:15:e3:2d:f1:
4c:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:81:7A:54:35:86:94:68:22:66:7D:F2:04:98:BB:33:77:D5:A5:58
X509v3 Authority Key Identifier:
keyid:A2:D5:C7:AE:7E:45:C0:07:34:EF:BC:C9:13:A1:B1:EA:3E:96:4B:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/otXHrn5FwAc077zJE6Gx6j6WS0A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/50f34c-338d-4fce-8193-ec16735a3382/1/p4F6VDWGlGgiZn3yBJi7M3fVpVg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/50f34c-338d-4fce-8193-ec16735a3382/1/otXHrn5FwAc077zJE6Gx6j6WS0A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.117.208.0/24
Signature Algorithm: sha256WithRSAEncryption
39:48:77:fa:2c:b2:b3:5c:b4:77:63:50:52:85:14:b7:6f:21:
5f:e4:80:45:40:95:53:cc:3f:20:5b:ca:40:fa:11:f9:8f:69:
86:53:e3:aa:20:72:3b:55:d0:ff:65:fa:b8:b4:f1:09:f9:29:
1c:39:f1:fe:87:cf:e4:bb:4e:9d:28:33:75:fb:81:51:7c:98:
07:cd:70:ec:f8:7b:21:c8:7b:79:8a:4c:e9:99:e8:b5:ab:4f:
12:4e:25:51:77:37:35:c7:b5:d5:5d:51:b4:be:58:87:c1:ce:
9b:52:ac:3c:92:71:eb:43:2e:c1:8d:03:c3:a4:63:92:0b:72:
13:2a:6c:f0:cf:da:cd:27:fb:48:ba:16:48:0d:8c:7e:9b:51:
88:d4:bc:4f:71:13:27:a3:6e:13:06:05:f1:be:a0:4e:f8:40:
fd:42:98:35:26:9c:2c:32:de:f2:01:16:db:08:a0:ec:fb:75:
68:3b:39:97:09:52:ed:10:8f:07:c6:31:24:20:98:7c:83:6f:
b3:b9:1e:30:28:61:dd:16:96:c7:4f:b0:d9:6a:a1:b7:e8:d9:
fa:c1:e3:d2:66:8e:79:d0:05:c6:97:ff:3a:1a:7b:99:df:73:
a3:76:37:33:62:6c:dc:83:d1:00:ec:4f:64:97:7c:33:7d:ac:
35:08:30:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 09:57:11 2025 by rpki-client