Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/73679a-cb01-43cd-9245-a29c6dae35c0/1/K668RnN8R9Zt_BhcvITxrQRhBNs.roa
File: K668RnN8R9Zt_BhcvITxrQRhBNs.roa (raw, json)
Hash identifier: 8wo0Wz+L+phQUblwdU8c4kneYF4uQyTcefZ7CpD7SsM=
Subject key identifier: 2B:AE:BC:46:73:7C:47:D6:6D:FC:18:5C:BC:84:F1:AD:04:61:04:DB
Certificate issuer: /CN=de9ff6195096a098c19281548e4107b867c73aff
Certificate serial: 0194236A0C5067DD49E54773BBFA002C4C96
Authority key identifier: DE:9F:F6:19:50:96:A0:98:C1:92:81:54:8E:41:07:B8:67:C7:3A:FF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3p_2GVCWoJjBkoFUjkEHuGfHOv8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/73679a-cb01-43cd-9245-a29c6dae35c0/1/K668RnN8R9Zt_BhcvITxrQRhBNs.roa
Signing time: Wed 01 Jan 2025 19:49:00 +0000
ROA not before: Wed 01 Jan 2025 19:49:00 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 212269
IP address blocks: 185.179.100.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:6a:0c:50:67:dd:49:e5:47:73:bb:fa:00:2c:4c:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de9ff6195096a098c19281548e4107b867c73aff
Validity
Not Before: Jan 1 19:49:00 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=2baebc46737c47d66dfc185cbc84f1ad046104db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:d3:fd:43:02:85:3c:d2:60:bb:56:3c:44:1b:
29:29:54:ad:26:2c:e7:bd:c2:72:22:59:4c:af:35:
d6:10:86:37:64:e5:f8:b6:56:a8:66:6f:8c:bd:d8:
0b:c7:5d:66:f7:8f:71:c0:98:df:b5:c6:3e:85:3f:
1d:92:a2:2b:d6:0d:25:6c:61:3d:90:ef:61:b6:fc:
b2:69:0a:1d:d6:64:8d:18:f2:45:ac:5f:51:3b:32:
dd:78:49:74:f8:b6:49:4f:bc:46:6e:d4:ff:26:c9:
88:33:c6:8c:31:28:05:0f:5f:4e:4e:80:de:b8:0a:
59:a7:46:fe:3f:0c:53:e4:b8:95:3e:44:19:95:b6:
cc:c7:de:cb:16:87:43:9e:47:fc:a6:67:5e:1a:f7:
a8:a1:a3:18:a8:7a:0b:b2:ed:0a:ea:f0:73:8a:72:
52:7f:ef:08:64:52:bf:71:e1:14:2a:40:f3:1d:c7:
96:71:bb:54:a7:89:6d:56:f9:75:5b:9b:52:45:ff:
af:69:6f:5f:46:e3:96:e7:b7:41:7c:f1:bd:d0:9f:
6c:20:82:56:64:f4:5e:cf:c6:54:37:7a:5b:48:62:
0a:55:db:5b:9f:de:8e:62:ee:0b:88:09:a6:75:b4:
67:ea:35:c4:a6:39:6c:ed:9a:0a:f5:1c:3d:a4:e7:
7e:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:AE:BC:46:73:7C:47:D6:6D:FC:18:5C:BC:84:F1:AD:04:61:04:DB
X509v3 Authority Key Identifier:
keyid:DE:9F:F6:19:50:96:A0:98:C1:92:81:54:8E:41:07:B8:67:C7:3A:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3p_2GVCWoJjBkoFUjkEHuGfHOv8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/73679a-cb01-43cd-9245-a29c6dae35c0/1/K668RnN8R9Zt_BhcvITxrQRhBNs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/73679a-cb01-43cd-9245-a29c6dae35c0/1/3p_2GVCWoJjBkoFUjkEHuGfHOv8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.179.100.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:bf:f2:a1:39:5f:39:c1:7e:f9:55:81:b3:33:e9:21:95:62:
81:64:c7:30:cc:d9:a3:ea:0f:49:40:8c:ea:fa:f1:42:cd:c8:
1e:f1:ad:3f:03:23:8e:15:78:a0:c7:77:6c:2e:84:62:31:e5:
87:3c:f3:e7:68:00:8b:b1:bd:74:5f:e6:4c:fe:bf:ba:56:64:
2c:d5:e9:73:78:80:71:b2:df:eb:92:b6:e7:86:28:20:c2:d2:
20:87:81:35:d6:e0:42:ca:03:f0:19:df:1e:b1:98:b2:42:36:
c6:0b:7a:f2:87:9c:43:a3:40:15:4a:9b:09:ad:fb:85:1c:68:
fe:f0:24:ab:03:33:ac:6a:d4:e5:1c:c6:9b:ac:3c:97:0b:36:
17:8f:5a:13:cb:02:61:a9:a2:56:31:19:8c:28:11:f4:d0:8f:
09:b7:e9:9f:45:11:6c:7b:cb:05:80:66:a7:e4:a4:dd:02:e1:
61:29:c5:4f:da:b6:c5:c5:cf:37:a0:d4:b8:2b:21:78:04:14:
56:4e:fc:05:a3:8d:65:89:8a:57:be:b1:c6:be:1e:76:d0:08:
69:51:71:ab:8e:20:0e:d7:52:02:1a:2d:c4:16:ed:36:7c:05:
8c:04:dd:98:56:70:67:44:11:a5:38:d6:47:61:30:52:0e:a1:
64:d7:5d:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 04:02:20 2025 by rpki-client