Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/3453b2-9773-455e-8b08-d92dae861a7d/1/riaXA0o3ztBtwF7sKqg1RflsJeI.roa
File: riaXA0o3ztBtwF7sKqg1RflsJeI.roa (raw, json)
Hash identifier: PkRZUeqNmDsfT7G4mjGXrdMXe4M5/AEybH+EkbWMiv4=
Subject key identifier: AE:26:97:03:4A:37:CE:D0:6D:C0:5E:EC:2A:A8:35:45:F9:6C:25:E2
Certificate issuer: /CN=622f517b08182c6eda1b3f988ee01816ee264dc0
Certificate serial: 019423D7380CD736027DFFC7A2C247A36B62
Authority key identifier: 62:2F:51:7B:08:18:2C:6E:DA:1B:3F:98:8E:E0:18:16:EE:26:4D:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yi9RewgYLG7aGz-YjuAYFu4mTcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/3453b2-9773-455e-8b08-d92dae861a7d/1/riaXA0o3ztBtwF7sKqg1RflsJeI.roa
Signing time: Wed 01 Jan 2025 21:48:14 +0000
ROA not before: Wed 01 Jan 2025 21:48:14 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 214104
IP address blocks: 185.56.115.0/24 maxlen: 26
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:d7:38:0c:d7:36:02:7d:ff:c7:a2:c2:47:a3:6b:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=622f517b08182c6eda1b3f988ee01816ee264dc0
Validity
Not Before: Jan 1 21:48:14 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ae2697034a37ced06dc05eec2aa83545f96c25e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:94:55:93:fd:27:cd:72:3f:e3:8c:32:ef:dc:
a8:4a:12:08:4f:8e:37:88:23:85:c3:55:e2:61:b8:
97:89:18:ef:4e:76:3d:1d:04:46:a3:ec:8b:5e:3c:
50:61:82:6c:35:31:cd:66:47:c8:0d:13:89:bc:40:
14:d8:f5:2c:5b:6b:d8:2f:dc:f0:89:3b:56:79:ae:
29:91:ab:d1:77:a5:35:85:28:61:3b:6d:29:27:12:
2b:54:8a:51:65:f1:1d:17:fa:20:f6:31:48:43:0b:
6c:2f:bc:f7:2c:e6:d7:1e:7a:fe:d2:cc:ef:80:c5:
f6:7d:34:60:bd:b4:6d:41:5e:2c:d8:a5:e1:70:bc:
d2:83:da:8f:f8:39:c9:0e:b4:3a:0b:56:2c:30:e9:
e2:7c:ce:19:a5:aa:f8:d2:7f:0c:48:bd:20:ad:8c:
3b:17:bb:77:1b:8c:41:10:d0:fc:aa:69:79:5a:e1:
24:5c:fc:7d:05:6f:31:7b:23:54:a9:08:0d:3a:8a:
4f:b2:b4:8b:e5:1e:f9:7b:27:97:75:c3:e9:66:26:
63:35:49:50:41:c1:66:00:05:db:7e:a6:3c:fa:1d:
34:b5:b0:24:a8:a3:ad:4a:0d:0b:c1:cc:7a:6d:53:
36:b4:ea:ae:6a:04:ff:38:03:c5:98:da:4f:60:47:
18:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:26:97:03:4A:37:CE:D0:6D:C0:5E:EC:2A:A8:35:45:F9:6C:25:E2
X509v3 Authority Key Identifier:
keyid:62:2F:51:7B:08:18:2C:6E:DA:1B:3F:98:8E:E0:18:16:EE:26:4D:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yi9RewgYLG7aGz-YjuAYFu4mTcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/3453b2-9773-455e-8b08-d92dae861a7d/1/riaXA0o3ztBtwF7sKqg1RflsJeI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/3453b2-9773-455e-8b08-d92dae861a7d/1/Yi9RewgYLG7aGz-YjuAYFu4mTcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.56.115.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:7a:52:c2:e9:d9:3d:92:f0:5e:34:93:54:9c:76:b0:04:96:
44:54:62:37:51:0d:c5:00:26:04:83:dd:07:3d:b7:e4:01:03:
60:17:e0:7a:ff:ee:2b:e3:3a:7a:64:a3:85:e6:af:c9:72:00:
82:ea:1a:93:e8:44:96:1a:ff:79:9e:a4:51:cf:15:de:13:e4:
96:78:cd:ce:25:9c:b7:67:69:88:e8:4e:0e:d3:34:b5:43:e3:
7d:1e:ca:97:af:5a:a7:be:0a:41:cf:b0:3d:c3:35:37:30:e9:
37:2f:88:9f:e1:b2:af:4c:ef:09:98:4d:c6:ec:74:27:ad:42:
58:dd:a4:92:de:88:90:cc:7f:3b:c4:76:ec:8f:cf:57:fb:e9:
c8:da:68:7f:a5:c3:dd:82:54:60:33:c5:62:dc:1a:81:27:62:
b0:75:45:25:87:ba:9e:68:76:02:a6:18:32:c1:cc:09:2a:dc:
eb:bf:69:d9:5c:de:e4:30:06:36:64:1b:fe:ee:4a:64:73:cc:
d5:53:a8:56:06:e4:28:8d:be:ed:f6:aa:f4:09:f0:d0:a0:6d:
0f:00:e1:98:15:81:c9:35:37:00:8e:50:90:c0:1a:d4:bd:c8:
01:b0:a3:78:c2:35:8b:b5:ca:c9:aa:1a:d3:f1:6e:2e:e6:a1:
6d:c7:7c:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 04:23:14 2025 by rpki-client