Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/f0f5e3-6050-4e2d-a4ea-a4ea0a63f766/1/SgFbVxQz_PfUqEkR2KpsWzBqv-I.roa
File: SgFbVxQz_PfUqEkR2KpsWzBqv-I.roa (raw, json)
Hash identifier: JZQmoWcxoRLb9ag2bxJ9giCLXyREML88URiigrxBGlQ=
Subject key identifier: 4A:01:5B:57:14:33:FC:F7:D4:A8:49:11:D8:AA:6C:5B:30:6A:BF:E2
Certificate issuer: /CN=a5c6373eab19cf43dd2f43111398383ee2bad030
Certificate serial: 019422FB9E67DFD6EBB19025FDD8CBC4CF11
Authority key identifier: A5:C6:37:3E:AB:19:CF:43:DD:2F:43:11:13:98:38:3E:E2:BA:D0:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pcY3PqsZz0PdL0MRE5g4PuK60DA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/f0f5e3-6050-4e2d-a4ea-a4ea0a63f766/1/SgFbVxQz_PfUqEkR2KpsWzBqv-I.roa
Signing time: Wed 01 Jan 2025 17:48:22 +0000
ROA not before: Wed 01 Jan 2025 17:48:22 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 8100
IP address blocks: 185.228.1.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:fb:9e:67:df:d6:eb:b1:90:25:fd:d8:cb:c4:cf:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a5c6373eab19cf43dd2f43111398383ee2bad030
Validity
Not Before: Jan 1 17:48:22 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=4a015b571433fcf7d4a84911d8aa6c5b306abfe2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:22:5a:df:c3:10:6f:42:81:18:ff:8a:7b:e9:
64:da:24:e6:27:84:e7:81:52:07:36:f6:2a:56:be:
03:ef:ba:12:e6:6b:8b:e4:0c:1e:49:7f:e0:ad:d8:
d8:e1:08:68:18:fc:c4:98:97:29:0a:a5:32:cd:8b:
30:8a:d3:71:b9:a3:35:df:5d:ca:68:7d:3a:f2:d5:
cc:99:79:0b:5b:25:38:89:6c:73:f6:26:ab:b0:0a:
f2:8d:96:8b:4b:88:21:82:d3:10:6f:10:b0:52:3d:
ff:fd:09:6d:bc:49:d0:71:b0:8f:59:42:1b:5d:87:
88:94:31:e7:e6:85:bc:a5:30:f8:39:4d:f5:3c:64:
99:2d:dd:33:2c:f3:fa:4e:89:da:37:93:ad:93:b1:
1b:75:0e:98:bd:60:50:a4:c0:38:86:5a:f1:fc:ef:
fa:fa:69:99:76:4f:3d:db:91:f9:4d:f9:f7:5b:c6:
28:11:0b:57:2b:91:fb:23:1a:78:16:cd:f1:83:91:
c8:72:a0:bb:b9:c6:dd:c5:11:55:da:d2:5e:13:2f:
b1:fa:21:f7:26:14:b1:3e:ee:fe:8d:b3:37:33:d4:
5d:b8:44:94:33:79:37:15:92:37:a1:17:95:4e:98:
7f:14:b2:e2:52:63:dd:c6:4a:d5:38:55:b4:dd:5d:
6a:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:01:5B:57:14:33:FC:F7:D4:A8:49:11:D8:AA:6C:5B:30:6A:BF:E2
X509v3 Authority Key Identifier:
keyid:A5:C6:37:3E:AB:19:CF:43:DD:2F:43:11:13:98:38:3E:E2:BA:D0:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pcY3PqsZz0PdL0MRE5g4PuK60DA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/f0f5e3-6050-4e2d-a4ea-a4ea0a63f766/1/SgFbVxQz_PfUqEkR2KpsWzBqv-I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/f0f5e3-6050-4e2d-a4ea-a4ea0a63f766/1/pcY3PqsZz0PdL0MRE5g4PuK60DA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.228.1.0/24
Signature Algorithm: sha256WithRSAEncryption
32:6a:ae:a1:1a:07:c7:84:cc:1c:45:29:a0:a7:0a:ec:8e:c1:
2a:0b:7d:f1:48:55:92:e7:a6:d2:bd:6e:91:db:81:36:b1:44:
1f:54:20:0a:ff:4f:21:0e:23:0f:d2:27:a9:7e:2b:48:06:4c:
33:9f:3e:17:61:37:75:11:c0:20:d7:24:a6:bf:fc:fb:63:93:
33:03:32:61:da:aa:48:14:b9:7e:86:3d:f9:ec:37:01:05:02:
aa:dc:df:90:96:3f:6c:11:29:18:d9:cf:13:16:0c:3d:15:93:
a4:35:ea:68:d7:69:97:71:ba:ff:ee:42:01:5e:2a:05:64:a5:
f3:22:94:30:03:65:58:c4:cb:76:bc:25:3e:3b:e3:32:05:d3:
37:64:00:2a:a4:a6:f2:9f:d7:8e:b6:72:7a:5c:f1:0c:e0:cf:
48:fd:4c:34:9a:91:0b:21:fe:1b:fc:8c:14:d0:e1:be:f2:31:
e7:b1:99:21:75:11:fa:32:8f:75:a2:f8:b8:df:b5:fa:ba:54:
9b:46:fb:61:92:43:74:4a:a9:7e:6f:21:02:14:04:2d:ca:f5:
d5:c3:9e:6a:1d:0e:26:ac:a5:33:c7:e3:95:35:16:6e:ac:7b:
56:e5:f9:9f:83:c5:e6:59:4f:02:93:3a:5b:4b:ea:37:bb:69:
e0:88:5f:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 09:33:01 2025 by rpki-client