Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c6/ab112d-40e1-41d4-a724-a76299e8559f/1/y725qdTMwrOghX8GfkxscKc-PM0.roa
File: y725qdTMwrOghX8GfkxscKc-PM0.roa (raw, json)
Hash identifier: EDVLr0vu1gCBKbpCOMXFSj7zevxafD+c2G6jh65rh+w=
Subject key identifier: CB:BD:B9:A9:D4:CC:C2:B3:A0:85:7F:06:7E:4C:6C:70:A7:3E:3C:CD
Certificate issuer: /CN=1ff1ce9ae2563102bf8ea72a89e06152ef7058b2
Certificate serial: 0194266C4660E538387713EE780F371A8401
Authority key identifier: 1F:F1:CE:9A:E2:56:31:02:BF:8E:A7:2A:89:E0:61:52:EF:70:58:B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H_HOmuJWMQK_jqcqieBhUu9wWLI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c6/ab112d-40e1-41d4-a724-a76299e8559f/1/y725qdTMwrOghX8GfkxscKc-PM0.roa
Signing time: Thu 02 Jan 2025 09:50:17 +0000
ROA not before: Thu 02 Jan 2025 09:50:17 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 199540
IP address blocks: 185.144.98.0/24 maxlen: 24
2a13:ae80::/32 maxlen: 40
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:6c:46:60:e5:38:38:77:13:ee:78:0f:37:1a:84:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1ff1ce9ae2563102bf8ea72a89e06152ef7058b2
Validity
Not Before: Jan 2 09:50:17 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=cbbdb9a9d4ccc2b3a0857f067e4c6c70a73e3ccd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:fe:a1:ce:23:21:80:30:17:78:cb:97:3c:1e:
a0:dd:1b:f2:fc:0b:13:dc:f9:25:61:e5:55:5b:5a:
18:ad:a7:a0:ee:9b:55:71:fc:19:51:1f:be:13:8e:
b5:8d:cb:53:06:91:60:17:f5:bf:f1:e5:83:dc:b6:
fb:03:a2:74:f0:1d:89:59:cf:47:04:5b:d8:49:f7:
82:d4:f5:ed:7a:db:c1:df:5d:17:d1:99:04:3c:ec:
58:bb:79:ef:9f:e3:a2:3f:e3:c8:bb:91:ee:d2:ae:
98:89:14:a2:69:98:de:df:f0:22:60:8f:d2:af:5f:
6f:4d:57:a7:3e:2d:5a:82:66:a7:1b:37:37:51:f6:
74:88:41:6e:de:e4:c7:4d:fd:45:cc:79:4a:25:21:
b1:7f:33:ff:bf:4a:4d:2d:80:82:8d:17:f5:e0:2b:
68:02:d5:e6:de:ba:94:ec:3a:7c:85:31:58:e4:6c:
97:f6:03:ab:f6:01:2c:13:8e:b0:f7:b4:d5:7e:b0:
67:6a:fe:5a:53:b3:93:dc:da:6c:e1:89:be:2d:0f:
b7:b2:36:48:7a:f4:3b:16:71:8f:3e:f5:e1:13:37:
ea:96:95:21:66:29:33:0f:f3:6e:2f:b6:1b:50:48:
df:5c:6d:56:39:a1:d5:2c:32:ac:a2:9e:a0:ac:68:
65:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:BD:B9:A9:D4:CC:C2:B3:A0:85:7F:06:7E:4C:6C:70:A7:3E:3C:CD
X509v3 Authority Key Identifier:
keyid:1F:F1:CE:9A:E2:56:31:02:BF:8E:A7:2A:89:E0:61:52:EF:70:58:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H_HOmuJWMQK_jqcqieBhUu9wWLI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/ab112d-40e1-41d4-a724-a76299e8559f/1/y725qdTMwrOghX8GfkxscKc-PM0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/ab112d-40e1-41d4-a724-a76299e8559f/1/H_HOmuJWMQK_jqcqieBhUu9wWLI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.144.98.0/24
IPv6:
2a13:ae80::/32
Signature Algorithm: sha256WithRSAEncryption
52:73:1b:de:45:5e:7a:1e:10:8e:95:be:b2:a9:41:2e:f3:9d:
b8:03:52:ca:36:99:a9:74:7c:74:4d:9c:3f:45:87:21:4b:4b:
15:a7:6d:e7:ee:4c:6e:3b:1c:2c:d7:c9:69:c2:7b:2c:40:f7:
17:3d:f1:29:15:f7:a6:a4:12:14:58:f5:7c:53:b4:7d:db:56:
25:c7:72:4b:78:e6:b1:c7:77:e1:f1:83:18:cc:30:75:8f:16:
ae:6d:7a:c8:23:50:3a:91:2d:c7:c7:e3:67:50:be:83:a1:e3:
f8:85:48:e5:89:44:ea:f7:ec:61:b2:6f:0f:1a:41:6c:25:c4:
e1:c1:95:81:39:ca:c3:66:f8:9f:80:0b:81:30:77:29:88:42:
32:14:8b:ec:1b:67:e6:1f:2b:16:a3:59:f2:ac:02:6b:eb:54:
73:c3:53:60:7a:67:ca:d1:a9:fa:4c:80:08:ad:26:6e:33:32:
f3:ae:c3:d8:7f:ed:a1:b6:56:e2:d7:4c:bb:ac:bc:bd:44:f1:
65:3d:96:85:19:73:cb:ec:24:dd:39:9b:e5:0a:3d:6e:b7:3e:
7c:2d:13:bf:ad:e8:97:2a:c4:df:08:72:05:24:b3:e4:06:8d:
53:1c:83:df:a6:e4:04:74:53:9a:81:0a:cd:7d:64:c9:81:a4:
80:37:6b:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 08:24:00 2025 by rpki-client