Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/oDgh1nSpttp4XTuVU7kQYmV0LHU.roa
File: oDgh1nSpttp4XTuVU7kQYmV0LHU.roa (raw, json)
Hash identifier: /OMsGZu22S2HkEm0XBU5GOhCua5XuD2yEDKQkngvh+8=
Subject key identifier: A0:38:21:D6:74:A9:B6:DA:78:5D:3B:95:53:B9:10:62:65:74:2C:75
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 0194277E0B71211D97A5FE1956606A1B0192
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/oDgh1nSpttp4XTuVU7kQYmV0LHU.roa
Signing time: Thu 02 Jan 2025 14:49:19 +0000
ROA not before: Thu 02 Jan 2025 14:49:19 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 62005
IP address blocks: 185.240.122.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:7e:0b:71:21:1d:97:a5:fe:19:56:60:6a:1b:01:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jan 2 14:49:19 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=a03821d674a9b6da785d3b9553b9106265742c75
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:40:fc:a8:7d:2b:17:97:c0:26:6b:7a:90:9d:
85:a2:af:ab:42:c2:77:7f:40:fb:95:27:03:d8:20:
06:bc:2d:a7:cc:ec:b7:a0:84:b5:7f:f3:3c:74:56:
2b:6a:c4:81:7f:fe:54:17:c7:4b:e9:5e:1c:34:45:
c6:7c:36:21:c6:6f:60:15:c2:d2:59:34:56:fb:53:
83:51:38:21:7f:1d:69:1c:6c:c0:b7:c1:f8:e9:56:
f5:f8:a1:9e:27:f6:64:35:94:ab:51:92:78:68:7c:
d1:c0:84:44:09:3e:9b:d8:f6:fc:ee:2a:08:58:7a:
de:c9:db:93:fa:0b:79:ab:e3:c6:71:d6:ee:1a:e5:
4f:4f:3f:bc:62:78:4f:9c:a3:f2:e5:63:19:da:bd:
43:de:d8:af:ee:2b:1b:23:50:13:39:ad:52:da:6f:
f8:ee:2e:a4:1b:51:ac:7a:38:9d:d9:4e:1e:95:bf:
05:1f:13:d5:9c:ab:b8:13:05:0f:01:9c:52:8d:98:
00:18:e7:66:45:af:29:c5:9d:b6:f8:55:a7:28:2d:
e8:12:93:f6:6e:58:8e:b3:65:04:11:bf:82:12:03:
f7:9b:14:f0:f6:0a:62:2b:4b:11:9f:d4:4e:44:7e:
9e:07:57:b1:32:a6:86:26:64:83:48:26:10:2b:71:
53:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:38:21:D6:74:A9:B6:DA:78:5D:3B:95:53:B9:10:62:65:74:2C:75
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/oDgh1nSpttp4XTuVU7kQYmV0LHU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.240.122.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:eb:81:28:4b:be:23:ea:41:a5:14:d9:d2:63:9a:ce:e2:1c:
0d:a0:cf:5e:45:47:99:f6:01:11:ea:9e:91:56:73:bd:40:ae:
c9:c2:de:48:3d:3e:97:e9:1d:36:32:52:42:a9:11:ba:57:58:
cd:73:79:05:35:73:da:07:4c:23:0c:91:94:78:91:32:7c:e8:
65:0f:e3:c5:f1:0b:78:17:16:1a:da:bf:2c:8c:80:dd:4f:d3:
e2:a7:d7:45:92:86:65:f7:79:43:aa:32:02:fd:de:b5:3f:63:
88:9d:2e:36:b8:6c:29:ab:0d:28:f5:fb:a0:30:82:0d:9c:1d:
a3:21:ce:1c:7c:25:b5:83:3c:4e:6a:75:0d:8b:32:ed:b7:fc:
24:2c:9c:a1:25:bb:67:34:fc:40:16:f0:c8:36:0b:00:ee:03:
be:5b:de:87:47:f6:19:82:75:4c:7d:90:6b:51:9b:fe:35:50:
f7:29:a6:87:f8:86:2a:7e:09:7a:a6:96:dd:8e:a9:1d:34:7a:
59:ae:35:f5:19:12:1c:3e:27:bb:ae:33:6d:3a:7d:5a:2b:e6:
0d:9a:6e:fd:e0:a1:1f:2e:4e:d8:ae:df:d9:77:e3:af:79:b5:
b1:96:da:0a:55:e9:b7:8a:2b:61:16:73:37:7b:70:fe:b7:14:
3c:af:30:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 06:18:48 2025 by rpki-client