Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/42ff05-4ac6-4cec-b5d4-f6c16aca175e/1/eHRO21DmqwNpVgTB2vD5a-Ys0dI.roa
File: eHRO21DmqwNpVgTB2vD5a-Ys0dI.roa (raw, json)
Hash identifier: aBKp2xE7MsTi71gMh8o9d5bU6XkJQ/dv6sIkU9dHe34=
Subject key identifier: 78:74:4E:DB:50:E6:AB:03:69:56:04:C1:DA:F0:F9:6B:E6:2C:D1:D2
Certificate issuer: /CN=08b3fb401967b06f841bc6a1e9d492a9a75f9268
Certificate serial: 0194221F5558956E19456E6EFE0ABAABC66C
Authority key identifier: 08:B3:FB:40:19:67:B0:6F:84:1B:C6:A1:E9:D4:92:A9:A7:5F:92:68
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CLP7QBlnsG-EG8ah6dSSqadfkmg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/42ff05-4ac6-4cec-b5d4-f6c16aca175e/1/eHRO21DmqwNpVgTB2vD5a-Ys0dI.roa
Signing time: Wed 01 Jan 2025 13:47:46 +0000
ROA not before: Wed 01 Jan 2025 13:47:46 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 34907
IP address blocks: 185.62.1.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:1f:55:58:95:6e:19:45:6e:6e:fe:0a:ba:ab:c6:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08b3fb401967b06f841bc6a1e9d492a9a75f9268
Validity
Not Before: Jan 1 13:47:46 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=78744edb50e6ab03695604c1daf0f96be62cd1d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:3e:34:3c:5e:d6:7b:a2:ba:8e:dd:9e:9c:f5:
64:17:60:58:ab:41:c8:9f:8f:30:a3:cc:38:b6:86:
3a:24:6c:25:ee:34:46:51:d5:3f:8c:7f:1e:e3:4b:
1a:be:46:0f:e8:c2:f7:e6:3b:c0:0f:03:db:a2:5d:
32:60:ee:a8:e6:89:3f:2e:2e:86:53:d0:4b:c9:bb:
a7:dc:d0:33:67:1f:0a:9d:d6:d2:4c:8e:7b:63:cb:
6c:88:0f:66:ce:13:76:8c:e0:f5:91:8a:e8:a0:3b:
a3:25:b8:1a:ee:21:d8:93:7c:4d:cd:60:50:75:86:
83:e1:a6:a0:32:ae:39:bf:58:fe:9f:1a:43:cc:ea:
28:f4:3c:3e:c4:a7:5a:a5:e3:76:33:4e:25:41:79:
f6:19:ca:7b:47:aa:7a:d2:dc:4e:ae:74:c7:a6:40:
f8:44:c2:4a:fd:05:d7:07:13:98:a7:00:3a:4a:76:
89:ea:c3:98:74:8b:ae:9a:bf:53:dd:0f:c4:0f:58:
09:ce:b5:86:ac:6f:94:04:16:00:05:93:16:7a:72:
13:1d:b2:4f:8a:39:16:a6:95:16:24:ee:7f:4f:b7:
63:68:da:94:db:27:3f:1e:43:ba:4b:ab:d3:1a:ed:
78:0a:7a:80:fe:3c:87:f9:ec:77:c3:98:9d:3d:41:
6b:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:74:4E:DB:50:E6:AB:03:69:56:04:C1:DA:F0:F9:6B:E6:2C:D1:D2
X509v3 Authority Key Identifier:
keyid:08:B3:FB:40:19:67:B0:6F:84:1B:C6:A1:E9:D4:92:A9:A7:5F:92:68
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CLP7QBlnsG-EG8ah6dSSqadfkmg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/42ff05-4ac6-4cec-b5d4-f6c16aca175e/1/eHRO21DmqwNpVgTB2vD5a-Ys0dI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/42ff05-4ac6-4cec-b5d4-f6c16aca175e/1/CLP7QBlnsG-EG8ah6dSSqadfkmg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.62.1.0/24
Signature Algorithm: sha256WithRSAEncryption
14:8a:50:88:d9:16:8f:81:ff:c7:d2:8e:64:95:cb:49:7f:d9:
55:c3:8e:bc:ed:fb:43:63:66:31:a7:1e:b2:61:a9:53:5b:d6:
4b:19:93:a3:a2:8f:c9:6f:1b:5b:dc:06:5f:7b:f7:8c:35:6c:
47:73:aa:22:49:37:99:e1:35:1f:58:aa:40:6b:7d:3c:81:97:
bd:38:4a:b4:c2:fb:26:4b:09:4a:df:a3:45:60:ff:27:d5:14:
a5:a5:8c:ce:bc:a9:57:e2:81:b3:2d:45:04:5e:20:99:34:0b:
16:5d:a7:81:47:dd:e2:e1:46:0a:d5:51:c3:4e:06:04:a5:3f:
7d:44:79:15:3b:a8:a7:a1:81:08:0f:1c:84:98:e9:c2:b0:18:
71:81:33:48:32:65:16:f4:cb:dc:48:96:2a:1a:81:da:0f:ea:
21:2e:7f:6d:3b:36:be:13:3a:52:58:28:c8:7a:69:09:0d:4a:
3d:97:64:0c:a8:da:90:d7:3b:5d:38:1e:12:5b:1e:0c:da:4b:
d2:dc:78:d8:c7:63:58:58:5c:bc:75:ec:9e:66:6a:85:95:92:
82:52:ab:a5:1f:e9:b6:31:74:7e:ad:94:a5:36:c1:06:bc:66:
3b:cf:43:45:1a:26:5e:2f:3d:c5:b6:55:88:58:57:58:fb:65:
26:f6:09:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 05:55:54 2025 by rpki-client