Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/dec3f1-ce3a-4cb5-9cfc-a30f537d9c5b/1/aZ04YotwMN5NF6QJ2ZcHvh79g-w.roa
File: aZ04YotwMN5NF6QJ2ZcHvh79g-w.roa (raw, json)
Hash identifier: dZyQQffGI8dAk3Ily2WBsTj4NOYJ+9MtNaWUE01PNh8=
Subject key identifier: 69:9D:38:62:8B:70:30:DE:4D:17:A4:09:D9:97:07:BE:1E:FD:83:EC
Certificate issuer: /CN=081868ee84c5f27d9169d243c337b74b6ff8c14d
Certificate serial: 0194258F398357BECAF20B3C0FA5DC3446DE
Authority key identifier: 08:18:68:EE:84:C5:F2:7D:91:69:D2:43:C3:37:B7:4B:6F:F8:C1:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CBho7oTF8n2RadJDwze3S2_4wU0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/dec3f1-ce3a-4cb5-9cfc-a30f537d9c5b/1/aZ04YotwMN5NF6QJ2ZcHvh79g-w.roa
Signing time: Thu 02 Jan 2025 05:48:50 +0000
ROA not before: Thu 02 Jan 2025 05:48:50 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 198682
IP address blocks: 185.140.136.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8f:39:83:57:be:ca:f2:0b:3c:0f:a5:dc:34:46:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=081868ee84c5f27d9169d243c337b74b6ff8c14d
Validity
Not Before: Jan 2 05:48:50 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=699d38628b7030de4d17a409d99707be1efd83ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:c0:2a:d9:1c:5c:75:77:4f:2c:c0:4c:f2:c3:
9a:22:a2:68:e6:f1:c7:5c:51:01:28:bb:a3:02:59:
8a:7e:05:b3:d5:64:8a:7a:b9:25:bb:5c:3b:e0:24:
10:42:01:c8:ea:d3:d0:61:48:f1:fe:fc:52:d3:1c:
0e:50:f5:a1:5d:25:e4:7f:b7:98:29:c9:96:69:e8:
59:b1:36:49:29:99:85:30:62:9d:74:20:5a:69:39:
6b:a9:1b:8c:42:1a:62:c6:3d:d2:0d:66:0c:9b:e5:
5f:3d:a1:61:d5:b7:68:16:f9:01:2f:48:3e:9a:c5:
c5:5a:04:76:2b:2c:ab:40:aa:9a:16:d9:00:f4:dc:
ee:e5:ae:f0:d4:f2:1f:7f:67:96:bf:27:ed:8f:10:
f6:ab:0e:e3:23:76:87:ee:b9:c0:49:9d:52:d1:7c:
68:a6:7c:e6:2f:2b:ed:fe:03:a7:57:bc:9a:08:2e:
ff:87:1e:7b:38:1b:e9:25:68:e5:23:d5:45:86:fc:
0d:41:3f:84:f6:cd:12:3c:7a:51:30:04:fc:ef:a1:
1b:69:46:be:83:de:de:8b:ac:e8:e8:91:ae:b0:c2:
04:d1:91:70:bb:58:fe:bd:a8:85:a9:21:49:54:7c:
3f:1b:ee:72:6d:16:e9:ff:12:d1:55:62:70:24:80:
52:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:9D:38:62:8B:70:30:DE:4D:17:A4:09:D9:97:07:BE:1E:FD:83:EC
X509v3 Authority Key Identifier:
keyid:08:18:68:EE:84:C5:F2:7D:91:69:D2:43:C3:37:B7:4B:6F:F8:C1:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CBho7oTF8n2RadJDwze3S2_4wU0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/dec3f1-ce3a-4cb5-9cfc-a30f537d9c5b/1/aZ04YotwMN5NF6QJ2ZcHvh79g-w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/dec3f1-ce3a-4cb5-9cfc-a30f537d9c5b/1/CBho7oTF8n2RadJDwze3S2_4wU0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.140.136.0/22
Signature Algorithm: sha256WithRSAEncryption
03:d1:7d:8b:66:60:91:45:3e:02:ec:17:43:ce:4b:da:8e:1c:
93:93:da:e6:8f:7b:b7:a4:c1:e9:ae:39:8b:68:2b:84:52:c1:
2f:a0:7c:b5:38:8c:7e:0e:79:b6:82:df:03:a5:68:ab:1a:4f:
c3:1a:2b:d2:67:8a:26:07:f2:17:68:4c:a5:28:11:66:2c:22:
9e:ed:74:6c:5b:9a:89:63:7c:9f:34:2a:a5:3e:b5:85:9b:f8:
d5:a5:bf:df:21:cd:8a:cd:61:e4:e1:68:32:fb:d0:81:2c:2b:
07:cb:8a:50:f3:64:1e:d8:3c:e3:d8:74:1a:9a:ba:06:eb:c9:
da:6e:fe:c0:b0:6f:34:28:de:2f:9c:5d:ba:af:23:b0:df:16:
c3:b7:1a:38:7e:49:a2:ae:d4:9a:8a:0e:d1:7c:23:97:e8:76:
ed:ff:34:5a:d0:78:20:89:c2:46:67:6c:29:0d:42:5a:17:e7:
a8:c8:a6:97:b4:a7:1c:6c:f9:75:5f:a8:dd:7c:1c:9e:ed:bb:
0e:dd:c7:fe:5b:85:b1:a6:d5:03:2a:b0:89:f6:f6:d4:89:cd:
87:29:cc:9e:54:79:80:17:49:eb:b9:d8:78:70:b4:40:80:09:
72:9e:cc:62:97:12:ae:c5:f4:48:f4:1f:f6:40:a4:93:69:86:
49:59:cd:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 01:39:21 2025 by rpki-client