Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/2f5931-05a8-436b-9273-cd7b6edbfcf5/1/oEAOgGGkZaklYkgZV_R2RLLowJE.roa
File: oEAOgGGkZaklYkgZV_R2RLLowJE.roa (raw, json)
Hash identifier: nmzYZ74qwgtxEwczkSmrHUbIJNO39YmkNHQC+ORU3+A=
Subject key identifier: A0:40:0E:80:61:A4:65:A9:25:62:48:19:57:F4:76:44:B2:E8:C0:91
Certificate issuer: /CN=51e2be139ae779cd3d4feebccd368281a1f5e7a0
Certificate serial: 0194266B36ADB67351DB5FD25FE089C2AAA2
Authority key identifier: 51:E2:BE:13:9A:E7:79:CD:3D:4F:EE:BC:CD:36:82:81:A1:F5:E7:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UeK-E5rnec09T-68zTaCgaH156A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/2f5931-05a8-436b-9273-cd7b6edbfcf5/1/oEAOgGGkZaklYkgZV_R2RLLowJE.roa
Signing time: Thu 02 Jan 2025 09:49:08 +0000
ROA not before: Thu 02 Jan 2025 09:49:08 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 5539
IP address blocks: 185.5.184.0/23 maxlen: 23
2a02:7c40::/33 maxlen: 33
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:6b:36:ad:b6:73:51:db:5f:d2:5f:e0:89:c2:aa:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=51e2be139ae779cd3d4feebccd368281a1f5e7a0
Validity
Not Before: Jan 2 09:49:08 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=a0400e8061a465a92562481957f47644b2e8c091
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:c9:ae:e5:e0:be:a4:54:be:87:5c:a1:a8:a5:
1b:e4:36:8e:e5:27:d6:ec:1a:38:19:e7:d4:e8:bb:
5b:e0:9d:76:5d:32:92:70:bf:35:a0:9b:22:1a:5b:
88:c9:1b:cf:fc:f3:04:cd:c0:af:45:9f:6f:99:2d:
6e:12:0d:dd:91:28:a2:74:2f:5e:6b:46:a3:de:c2:
ca:be:bf:aa:cc:89:dc:a4:1d:f1:b5:12:a5:2e:ed:
e6:1e:48:0e:c8:19:a6:a7:bc:72:4c:0e:94:11:73:
c0:93:d0:45:05:f9:8f:7b:39:be:dc:4b:03:10:b4:
09:ce:ee:ea:54:bb:90:86:21:96:07:3e:b2:ea:a0:
6f:3f:63:9b:5d:2e:fe:d3:a6:51:3a:c8:c4:06:8e:
4b:0a:c3:2d:e6:41:6a:8b:d0:54:cf:b7:ba:f6:ca:
33:51:f6:4f:4e:51:3c:b5:48:0b:62:66:8e:15:26:
96:e4:c7:d9:ef:ad:4c:84:f2:5b:66:5b:a7:ce:02:
de:85:3a:73:92:0e:50:fd:e3:b4:94:3c:c1:1d:5d:
23:6f:9f:3e:b3:53:b8:23:09:83:ac:da:42:ec:58:
32:b5:1d:31:b0:f1:d4:fa:71:08:98:b7:37:c1:82:
80:af:2a:86:53:98:cf:62:04:37:a9:96:0a:75:65:
60:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:40:0E:80:61:A4:65:A9:25:62:48:19:57:F4:76:44:B2:E8:C0:91
X509v3 Authority Key Identifier:
keyid:51:E2:BE:13:9A:E7:79:CD:3D:4F:EE:BC:CD:36:82:81:A1:F5:E7:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UeK-E5rnec09T-68zTaCgaH156A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/2f5931-05a8-436b-9273-cd7b6edbfcf5/1/oEAOgGGkZaklYkgZV_R2RLLowJE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/2f5931-05a8-436b-9273-cd7b6edbfcf5/1/UeK-E5rnec09T-68zTaCgaH156A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.5.184.0/23
IPv6:
2a02:7c40::/33
Signature Algorithm: sha256WithRSAEncryption
13:67:76:87:8c:0e:03:c4:48:fa:69:e8:4b:07:8e:35:c1:85:
bc:84:f2:d3:53:9c:1c:9e:26:fd:2f:4e:c7:75:3e:01:9a:8e:
97:be:ce:05:b6:0d:cd:0c:56:05:b5:5a:e4:f6:be:9e:5f:df:
fe:40:2a:90:49:31:66:99:db:bf:b6:41:47:59:02:f0:58:a7:
e4:9f:79:93:f3:f8:92:06:e4:e0:cc:d2:a8:08:1f:2b:76:81:
1a:c3:bb:2d:df:c6:e7:6f:1e:14:88:77:fc:6a:07:d7:dd:3d:
52:6b:e6:60:de:91:59:dd:9c:2b:b7:15:6e:96:3c:d3:69:5d:
4a:aa:2d:ea:c6:21:3e:d0:17:70:09:c5:20:27:80:9f:0d:0a:
0e:56:93:ec:f2:aa:56:34:39:c6:25:3c:90:55:a0:9c:da:ff:
a6:85:4a:66:32:a7:e6:5d:10:82:5a:a6:cc:91:d6:b9:24:5d:
bf:56:3b:22:bb:6e:54:1c:52:e3:d3:a7:6d:80:ea:4b:a5:81:
94:ce:e5:1b:4b:80:dd:5a:18:b7:9b:2b:ba:6a:0a:91:dd:37:
a9:94:5d:51:ea:9c:35:ba:77:35:9c:89:d1:59:53:4d:8f:c7:
ad:57:56:e9:0c:71:a8:03:ed:62:53:36:ef:78:a8:54:bd:80:
eb:89:12:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 14:24:25 2025 by rpki-client