Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/r-VVTZUYZh8z_q6hlsw4Bt-Wj20.roa
File: r-VVTZUYZh8z_q6hlsw4Bt-Wj20.roa (raw, json)
Hash identifier: aGuWIHkSQWBWgfmDo8G1fm1BNnQAbBFpDL53h5Nun0I=
Subject key identifier: AF:E5:55:4D:95:18:66:1F:33:FE:AE:A1:96:CC:38:06:DF:96:8F:6D
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 01942220207BBE82F3ACCD16B844F6BEC4A9
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/r-VVTZUYZh8z_q6hlsw4Bt-Wj20.roa
Signing time: Wed 01 Jan 2025 13:48:38 +0000
ROA not before: Wed 01 Jan 2025 13:48:38 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 36231
IP address blocks: 185.228.75.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:20:20:7b:be:82:f3:ac:cd:16:b8:44:f6:be:c4:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jan 1 13:48:38 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=afe5554d9518661f33feaea196cc3806df968f6d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:70:7e:90:e7:57:67:74:20:62:94:66:89:0c:
cb:dc:31:f2:6a:47:54:e8:03:5f:ac:0a:83:18:da:
df:c2:9e:2b:c4:7b:c9:cc:50:67:5e:35:51:1f:25:
f2:96:95:0e:74:72:7d:d6:3b:a1:af:b3:74:f4:0f:
86:ed:78:88:c4:fc:00:4d:4c:c2:eb:da:a5:db:f1:
01:15:e1:ee:20:b1:51:da:f3:f1:e5:d7:87:2c:55:
02:1d:27:55:49:d2:63:1a:37:81:60:ea:36:e5:fb:
fe:b6:64:2c:ba:3a:33:70:b1:8c:90:0b:93:e2:ab:
e8:26:5f:e4:5d:3e:98:6b:0b:4a:80:c7:97:be:bf:
2a:cb:e9:1f:2d:1f:29:d1:8b:94:b3:0a:81:aa:1a:
cc:63:0d:27:83:3b:45:f7:a9:22:f3:ca:12:50:5e:
d4:1c:c7:9b:b4:d0:fa:f6:2a:c9:d9:11:b9:ca:d9:
9a:3c:0c:24:a4:cc:68:3a:e3:5a:ba:da:77:26:3c:
22:ee:20:c0:8f:e0:db:81:a6:ed:50:1b:71:32:37:
fa:69:0a:5b:bf:3c:d5:58:87:fb:c3:ba:10:28:e1:
56:7c:4f:da:f2:a1:66:99:e5:e3:7e:6e:cf:3e:c9:
11:af:ca:f4:a2:6a:c9:46:6c:af:da:5a:51:0d:89:
4a:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:E5:55:4D:95:18:66:1F:33:FE:AE:A1:96:CC:38:06:DF:96:8F:6D
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/r-VVTZUYZh8z_q6hlsw4Bt-Wj20.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.228.75.0/24
Signature Algorithm: sha256WithRSAEncryption
a7:45:9d:ef:21:3a:af:9c:79:10:46:d8:78:d7:85:e1:40:11:
dc:5a:13:f7:1b:15:bf:5b:e4:03:f2:58:04:ee:a2:0e:7d:99:
d5:3a:59:bb:78:f9:7a:84:5b:d3:20:a8:62:35:e6:eb:14:dd:
b9:a2:95:57:9a:33:39:62:10:b5:c2:08:c6:4f:18:bc:a5:11:
9a:15:67:f9:71:51:75:e1:48:22:82:59:c0:9b:6e:e1:7e:84:
eb:c8:98:14:ab:4d:91:b2:a7:03:6d:ab:b9:8b:ab:d9:2f:e6:
fc:b4:21:97:c7:a6:1e:bc:94:52:a7:2c:dd:16:9a:52:0c:99:
a8:29:78:28:44:18:f6:47:ad:62:22:1e:b2:b5:2a:7d:54:21:
53:bf:f5:12:f7:64:9d:b3:a1:01:9e:63:bf:0b:63:93:78:c5:
db:8a:40:8b:b5:16:1d:9e:b7:e8:61:bf:19:50:cf:dc:91:b4:
ed:80:1d:28:a5:c3:1f:1e:9a:ea:45:3d:d1:1a:1a:fb:20:8b:
b7:8b:b8:3f:07:1a:de:9e:a3:c1:e6:e9:2e:aa:02:9b:de:93:
0a:9c:05:63:f1:a0:84:69:bd:24:27:62:52:5e:e7:8a:ba:ac:
82:10:d9:12:3e:e8:5d:9f:2d:87:8a:40:a5:33:3f:63:55:5c:
3e:c9:7f:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 05:21:14 2025 by rpki-client