Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/405b5f-8d26-4ee3-b87f-a3a13e3a7d80/1/rxE1LeI7ahBtmSPrUBdtT8v4kpA.roa
File: rxE1LeI7ahBtmSPrUBdtT8v4kpA.roa (raw, json)
Hash identifier: 8dsjmdFh3p3MLRPvplucbSzh6AAp2qVrQvtj2pfxClU=
Subject key identifier: AF:11:35:2D:E2:3B:6A:10:6D:99:23:EB:50:17:6D:4F:CB:F8:92:90
Certificate issuer: /CN=ad9681f144db1430ac315c8306e1c14730c5fec2
Certificate serial: 019427B536583270E5CCD1A5E69C4DED8338
Authority key identifier: AD:96:81:F1:44:DB:14:30:AC:31:5C:83:06:E1:C1:47:30:C5:FE:C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rZaB8UTbFDCsMVyDBuHBRzDF_sI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/405b5f-8d26-4ee3-b87f-a3a13e3a7d80/1/rxE1LeI7ahBtmSPrUBdtT8v4kpA.roa
Signing time: Thu 02 Jan 2025 15:49:34 +0000
ROA not before: Thu 02 Jan 2025 15:49:34 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 214142
IP address blocks: 185.222.210.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:b5:36:58:32:70:e5:cc:d1:a5:e6:9c:4d:ed:83:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad9681f144db1430ac315c8306e1c14730c5fec2
Validity
Not Before: Jan 2 15:49:34 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=af11352de23b6a106d9923eb50176d4fcbf89290
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:af:9a:30:32:77:1e:8b:e0:b9:d0:f8:79:ae:
e0:1a:94:b4:00:5d:fc:3b:41:7d:00:97:92:51:68:
a3:fa:66:b0:f7:68:f6:3f:b5:ed:d1:bf:81:01:66:
7a:83:2c:4f:86:42:b9:97:51:bc:d7:90:ea:7a:51:
c3:39:d0:eb:01:30:88:3b:2c:80:a8:2e:bf:00:da:
0d:19:1b:e1:8e:0a:b9:05:d8:d4:f0:06:49:91:55:
da:86:92:50:d4:4b:d5:c8:7a:66:a0:51:ee:d4:6a:
48:ce:74:b6:bb:b8:42:93:c0:fd:74:22:ef:3c:5f:
c8:cb:c0:ed:b2:64:83:a1:10:f6:a2:f0:dc:ac:5b:
3f:89:3d:ec:69:ba:15:31:f4:2f:5a:37:5b:42:d6:
75:64:f1:71:3b:3a:b7:ef:65:c5:8f:79:63:33:1a:
9d:bc:11:f5:13:4e:e9:77:d8:29:e5:94:f9:97:a2:
18:47:5b:15:e6:4b:dd:d9:be:a9:bc:0a:6d:54:d1:
7d:87:d7:65:88:5d:8e:e7:83:49:71:12:86:ce:a0:
b7:3a:f4:a4:15:5a:9c:34:34:b4:21:cf:5f:50:7c:
3e:55:c5:2a:4f:71:1b:cc:9a:aa:89:90:c9:0c:a2:
b2:cf:3b:c1:a9:da:ad:0a:80:4f:4a:1d:7f:3e:be:
2a:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:11:35:2D:E2:3B:6A:10:6D:99:23:EB:50:17:6D:4F:CB:F8:92:90
X509v3 Authority Key Identifier:
keyid:AD:96:81:F1:44:DB:14:30:AC:31:5C:83:06:E1:C1:47:30:C5:FE:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rZaB8UTbFDCsMVyDBuHBRzDF_sI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/405b5f-8d26-4ee3-b87f-a3a13e3a7d80/1/rxE1LeI7ahBtmSPrUBdtT8v4kpA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/405b5f-8d26-4ee3-b87f-a3a13e3a7d80/1/rZaB8UTbFDCsMVyDBuHBRzDF_sI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.222.210.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:c1:b2:93:da:b2:c4:55:a9:dd:1a:70:fc:fe:cd:e8:b2:f2:
fe:73:29:c0:ae:33:f2:b5:5f:51:a8:91:a1:b9:a4:53:ba:8c:
37:8d:ec:c6:7a:24:cd:87:a2:b3:54:3e:d3:cb:f6:e6:94:03:
d9:9e:a7:57:6b:1a:05:dc:dc:ec:11:6b:e9:ec:31:bd:a4:a4:
3e:5c:7d:59:73:89:27:8b:55:ac:5d:47:77:94:ec:41:7a:03:
ce:58:9c:1d:b2:28:6d:f5:cb:f8:82:be:ac:0b:72:da:43:b5:
b9:30:39:b7:38:65:31:08:0f:ec:31:33:fe:1e:51:52:9c:15:
db:11:f0:43:2e:b8:3b:5b:3e:ef:09:c9:66:18:76:39:c1:44:
7b:cc:ac:ca:55:b3:2e:5b:b7:9a:20:1b:ff:4b:c6:2e:e6:69:
1d:ac:f4:8f:bf:6b:ab:9b:2e:dc:06:13:cf:82:1a:e7:94:30:
19:0d:25:21:e7:38:7b:1b:96:99:9c:3f:3a:e5:ab:c1:b9:d4:
7b:8b:81:f1:07:35:b8:4b:18:0a:0e:04:83:8f:05:cc:71:c6:
57:4a:ab:1c:94:dc:a9:bd:de:fc:80:10:38:b5:c4:23:f5:c7:
2d:84:22:78:37:02:c2:49:40:40:65:da:b3:48:7d:fc:39:30:
7c:c1:7b:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 18:38:47 2025 by rpki-client