Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/8308ff-fec8-48cb-9485-563c10dec80d/1/v8jGZZ2sPrkxPTZ3eZtK4NYbA6E.roa
File: v8jGZZ2sPrkxPTZ3eZtK4NYbA6E.roa (raw, json)
Hash identifier: 0l4hT05AEA8nsr6nY5F6IkEiZ/ck5kp606jyOTBkkrA=
Subject key identifier: BF:C8:C6:65:9D:AC:3E:B9:31:3D:36:77:79:9B:4A:E0:D6:1B:03:A1
Certificate issuer: /CN=6400f953adbfdb52b78815fecfc0e8cde09762c3
Certificate serial: 0194258F41BC8181FA6ED011AB102346B3CA
Authority key identifier: 64:00:F9:53:AD:BF:DB:52:B7:88:15:FE:CF:C0:E8:CD:E0:97:62:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZAD5U62_21K3iBX-z8DozeCXYsM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/8308ff-fec8-48cb-9485-563c10dec80d/1/v8jGZZ2sPrkxPTZ3eZtK4NYbA6E.roa
Signing time: Thu 02 Jan 2025 05:48:53 +0000
ROA not before: Thu 02 Jan 2025 05:48:53 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 201720
IP address blocks: 185.56.164.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8f:41:bc:81:81:fa:6e:d0:11:ab:10:23:46:b3:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6400f953adbfdb52b78815fecfc0e8cde09762c3
Validity
Not Before: Jan 2 05:48:53 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=bfc8c6659dac3eb9313d3677799b4ae0d61b03a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:b6:53:f3:2b:4c:9d:80:03:27:0e:83:2e:a5:
f2:46:c1:8a:49:e7:8c:d9:18:19:38:6b:e9:78:2e:
b4:ba:51:63:1e:cf:34:16:a6:69:a0:1e:8a:ed:87:
3b:de:23:39:73:8a:24:7e:5d:1b:c2:4e:c2:0a:1f:
48:9c:a6:4d:7b:a6:05:29:6e:24:1f:b6:ae:f6:d8:
39:8e:46:c4:d3:6c:c2:fa:ed:11:31:38:09:69:4e:
36:a2:66:0f:44:df:99:49:80:de:eb:58:0d:21:6b:
c4:8b:c1:62:97:6b:61:2c:96:4c:3e:19:7b:f6:a1:
77:ae:70:3d:6c:4f:3b:dc:de:8e:7a:89:f8:8e:ee:
aa:b3:52:20:ef:41:d9:6b:8f:18:59:c1:ac:47:a7:
c9:3a:86:d5:ec:e0:43:dc:48:03:5f:72:b7:f5:b9:
2c:89:b7:23:35:e8:14:58:55:74:49:1c:84:f4:51:
0e:7c:f7:eb:47:16:d6:98:a2:13:1a:fb:47:54:1f:
ab:4b:89:4a:14:70:89:7e:52:ed:b6:9e:b8:19:ce:
b4:95:9d:a1:df:ca:c5:e5:23:16:1f:fe:ff:a6:9a:
b9:dd:64:0e:95:c5:27:cc:cd:17:a5:7f:5e:48:a1:
6a:bc:4f:61:9e:27:76:95:d6:51:5d:72:10:28:af:
06:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:C8:C6:65:9D:AC:3E:B9:31:3D:36:77:79:9B:4A:E0:D6:1B:03:A1
X509v3 Authority Key Identifier:
keyid:64:00:F9:53:AD:BF:DB:52:B7:88:15:FE:CF:C0:E8:CD:E0:97:62:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZAD5U62_21K3iBX-z8DozeCXYsM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/8308ff-fec8-48cb-9485-563c10dec80d/1/v8jGZZ2sPrkxPTZ3eZtK4NYbA6E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/8308ff-fec8-48cb-9485-563c10dec80d/1/ZAD5U62_21K3iBX-z8DozeCXYsM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.56.164.0/22
Signature Algorithm: sha256WithRSAEncryption
8a:7b:82:08:3d:f9:fd:1b:0f:0e:4b:11:2f:48:f0:de:4a:15:
f5:e7:72:b0:b1:8d:6f:96:d9:26:be:07:a6:d6:3c:4d:86:e6:
44:c7:f9:a9:89:c7:87:9a:15:cd:13:3e:64:7e:b0:6f:73:71:
c4:3c:19:d3:4d:b1:ab:ec:01:6c:d8:37:a2:86:0c:7f:2b:41:
cf:bf:29:7d:d2:00:de:2f:7f:a2:2f:a9:16:f8:4f:04:31:e1:
52:c1:59:cc:7f:50:fe:f2:bc:bb:a2:af:24:b4:5c:16:67:c3:
9e:60:2a:2a:39:a4:66:6a:cc:0c:88:9e:0f:b0:b3:d7:d6:9a:
31:59:f1:dc:55:8b:35:17:5e:2b:2c:57:52:29:1c:7f:89:10:
5e:84:f0:c4:1a:f8:97:3c:54:a5:56:4c:05:3f:5b:48:7c:16:
d8:c8:26:fa:51:e8:32:e2:8f:95:99:1c:aa:a9:bb:27:ba:9e:
57:c9:dc:e8:0c:b0:02:e0:13:32:a8:7c:f4:bf:a5:41:6f:58:
f2:64:3a:02:2f:dc:48:e6:50:c2:bf:50:fc:18:a4:02:7b:76:
e8:19:62:37:44:f5:af:25:88:96:3b:a8:74:3d:51:f0:ec:4e:
c8:19:cb:cf:52:07:2f:79:8a:1c:1c:ff:8d:9f:01:d6:9b:6f:
b6:4f:86:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 09:53:02 2025 by rpki-client