Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/f3d326-154e-412e-b344-7d22b7684479/1/M1itbXmnZylV5aQUWr69aXiCwXg.roa
File: M1itbXmnZylV5aQUWr69aXiCwXg.roa (raw, json)
Hash identifier: oXiWWV28pZSLXwASeR4LLqDCm3LTnJMuWV3NYCvwU8Q=
Subject key identifier: 33:58:AD:6D:79:A7:67:29:55:E5:A4:14:5A:BE:BD:69:78:82:C1:78
Certificate issuer: /CN=b9a8795037dd40f018373f47c59e04a212f5a055
Certificate serial: 019424B2869DC5B57B1A681EB4032728A0E5
Authority key identifier: B9:A8:79:50:37:DD:40:F0:18:37:3F:47:C5:9E:04:A2:12:F5:A0:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uah5UDfdQPAYNz9HxZ4EohL1oFU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/f3d326-154e-412e-b344-7d22b7684479/1/M1itbXmnZylV5aQUWr69aXiCwXg.roa
Signing time: Thu 02 Jan 2025 01:47:47 +0000
ROA not before: Thu 02 Jan 2025 01:47:47 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 209246
IP address blocks: 185.177.209.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:b2:86:9d:c5:b5:7b:1a:68:1e:b4:03:27:28:a0:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9a8795037dd40f018373f47c59e04a212f5a055
Validity
Not Before: Jan 2 01:47:47 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=3358ad6d79a7672955e5a4145abebd697882c178
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:46:ff:8c:98:ca:58:53:ef:eb:c0:f5:6b:99:
d1:e2:f3:a6:84:6b:45:3b:b0:d0:a4:98:20:19:18:
9c:18:29:44:86:f8:3a:bf:55:94:8e:4d:9f:03:f1:
47:6b:23:cb:8e:26:7e:b2:ca:6b:14:98:90:8f:a4:
0e:2b:df:6d:c7:2b:fb:aa:5d:a4:d4:52:3a:05:a8:
a6:2d:f9:15:ca:f9:2a:9b:b5:d6:be:22:c5:f7:4c:
9b:2d:dc:5a:c0:f3:34:32:c2:4d:13:5d:ef:b7:9f:
6f:43:28:1e:d8:c8:32:94:d1:f7:85:a9:a6:d7:e8:
8b:cd:f9:be:3b:22:75:81:70:c4:07:67:c8:5c:6e:
de:91:f6:70:88:fc:19:8f:de:2f:9d:f4:fe:f6:66:
73:0e:17:53:d4:05:e3:27:aa:60:f8:38:4c:b4:f8:
bb:a0:1e:a4:25:93:be:00:3b:28:f3:3e:00:95:22:
8d:de:89:9b:94:d2:75:20:0c:45:e4:c9:6d:87:78:
a9:bc:fb:5e:d8:28:7c:6a:67:c5:75:0e:d1:83:3a:
f9:d5:31:b4:4a:85:d0:20:40:4d:99:2a:97:3d:28:
54:df:ea:59:02:5e:7d:cb:43:96:79:40:db:9d:59:
f8:75:bd:74:12:d1:8b:11:7e:a5:0a:5d:2f:98:b1:
77:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:58:AD:6D:79:A7:67:29:55:E5:A4:14:5A:BE:BD:69:78:82:C1:78
X509v3 Authority Key Identifier:
keyid:B9:A8:79:50:37:DD:40:F0:18:37:3F:47:C5:9E:04:A2:12:F5:A0:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uah5UDfdQPAYNz9HxZ4EohL1oFU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/f3d326-154e-412e-b344-7d22b7684479/1/M1itbXmnZylV5aQUWr69aXiCwXg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/f3d326-154e-412e-b344-7d22b7684479/1/uah5UDfdQPAYNz9HxZ4EohL1oFU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.177.209.0/24
Signature Algorithm: sha256WithRSAEncryption
63:ad:cb:f0:49:6e:35:9e:18:d1:39:69:b3:dc:17:0a:03:84:
6e:1d:a6:e4:8f:60:22:6f:95:66:3d:ea:58:41:c7:80:6a:1b:
54:c2:b1:a7:84:c0:6b:7f:cf:25:67:d2:27:65:5a:c7:94:e6:
3f:87:5e:4d:ad:16:bf:64:5c:e1:28:ab:13:d9:06:91:02:5d:
cb:2d:e9:f8:93:4d:b7:e9:c3:f8:7c:3e:38:5c:9e:a5:7d:dc:
74:50:32:5f:44:bd:c6:51:aa:19:ad:73:0b:e6:c0:c2:44:30:
92:f0:d5:48:3e:bc:49:60:a0:2c:c1:2a:88:59:ee:5f:54:2d:
a7:fd:6b:dc:e7:5d:e8:d3:6b:3c:5d:bc:6e:d6:1b:ca:40:46:
6f:73:75:0a:de:40:78:0b:d4:02:7e:6c:cf:8d:0f:5c:6a:46:
bd:92:c8:1e:f2:ac:68:be:87:10:9f:a6:85:6f:48:41:11:78:
78:6c:d3:5d:3c:e0:77:0f:b4:62:da:9b:5e:f9:4e:45:f4:30:
1b:8e:0b:c9:9a:19:fa:fe:d9:45:6a:ca:5e:6c:bf:88:dd:c8:
1e:80:a4:dd:ec:11:d9:00:e4:63:bd:50:55:c5:99:9d:11:1f:
16:d5:57:a7:26:45:96:4c:4a:15:8d:3d:21:fa:e4:5d:e7:db:
19:e3:5d:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 03:56:14 2025 by rpki-client