Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/c0934b-1d1d-45c0-ba6f-ef9814cff2b8/1/kPDeBF3aCTfbB5EVHHC2Wq-wohY.roa
File: kPDeBF3aCTfbB5EVHHC2Wq-wohY.roa (raw, json)
Hash identifier: 6WAkgf1xAugeYb/22h6PavosEJNmU15Yes0foRMGr3c=
Subject key identifier: 90:F0:DE:04:5D:DA:09:37:DB:07:91:15:1C:70:B6:5A:AF:B0:A2:16
Certificate issuer: /CN=5215fe83948cfc7d3e0072870c703fa313502cbc
Certificate serial: 0194266BDA89A4801C0A9663EAEB0E17E923
Authority key identifier: 52:15:FE:83:94:8C:FC:7D:3E:00:72:87:0C:70:3F:A3:13:50:2C:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UhX-g5SM_H0-AHKHDHA_oxNQLLw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/c0934b-1d1d-45c0-ba6f-ef9814cff2b8/1/kPDeBF3aCTfbB5EVHHC2Wq-wohY.roa
Signing time: Thu 02 Jan 2025 09:49:49 +0000
ROA not before: Thu 02 Jan 2025 09:49:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 203983
IP address blocks: 185.112.68.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:6b:da:89:a4:80:1c:0a:96:63:ea:eb:0e:17:e9:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5215fe83948cfc7d3e0072870c703fa313502cbc
Validity
Not Before: Jan 2 09:49:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=90f0de045dda0937db0791151c70b65aafb0a216
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:50:3d:3b:62:ce:74:c6:f3:72:5c:d2:93:1b:
dc:f2:c4:bd:77:33:86:4f:56:7d:6e:35:37:38:e8:
aa:a7:f0:55:aa:fc:11:23:4a:86:d4:35:00:f6:9b:
cd:d1:ff:36:6c:8e:97:2c:f1:b5:d2:6e:90:7d:2c:
55:4e:8c:87:2a:6a:20:6d:f1:05:87:ea:96:4f:a5:
b1:62:95:f5:37:0a:e4:3d:89:f2:7b:99:02:68:64:
f6:90:7b:f3:bb:4c:50:4b:93:c6:81:88:35:19:e6:
0c:43:e7:33:e6:37:92:de:a7:15:39:1c:17:bc:60:
45:52:5d:d1:5f:d9:6c:e2:e1:2a:70:75:47:a0:bb:
f0:63:8c:5d:2f:d2:70:20:7f:f1:3f:a9:30:8e:76:
58:81:35:a4:61:95:f5:ad:b7:64:d3:be:3f:87:dc:
bd:03:4a:ec:fd:8f:68:b8:68:ae:b4:34:dc:43:6b:
bf:24:74:77:46:43:af:cc:f2:d4:f8:01:b1:4e:1c:
cd:0f:80:05:aa:e5:67:f3:98:8e:eb:b9:b4:17:4c:
d2:40:b9:94:0b:9c:de:59:7c:e4:2b:bc:9b:b0:1a:
42:63:e0:31:7a:a9:b9:2b:eb:f8:8d:75:f7:fd:2e:
c5:e0:93:0a:36:f9:ef:67:4d:19:79:13:09:e9:8a:
30:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:F0:DE:04:5D:DA:09:37:DB:07:91:15:1C:70:B6:5A:AF:B0:A2:16
X509v3 Authority Key Identifier:
keyid:52:15:FE:83:94:8C:FC:7D:3E:00:72:87:0C:70:3F:A3:13:50:2C:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UhX-g5SM_H0-AHKHDHA_oxNQLLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/c0934b-1d1d-45c0-ba6f-ef9814cff2b8/1/kPDeBF3aCTfbB5EVHHC2Wq-wohY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/c0934b-1d1d-45c0-ba6f-ef9814cff2b8/1/UhX-g5SM_H0-AHKHDHA_oxNQLLw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.112.68.0/22
Signature Algorithm: sha256WithRSAEncryption
38:de:4b:bf:fa:5a:cf:65:50:5d:8e:e9:94:99:dc:e1:8e:28:
e0:65:61:f5:a6:f1:68:15:19:d7:02:2f:35:7a:98:48:fc:e4:
a2:71:28:1a:36:a8:9f:67:38:3c:8a:1b:a8:21:67:34:fd:48:
5e:85:33:9e:e6:65:42:03:27:a0:54:1f:0c:18:ad:05:df:94:
3e:7c:4c:08:ef:fb:39:dc:d6:4d:10:6d:65:6e:24:8a:9b:8d:
1c:7d:ad:49:17:c4:f8:77:e4:fe:0a:29:6c:c4:ad:7f:3c:05:
73:3a:39:6c:94:56:d2:64:5c:57:53:49:61:e7:20:73:ad:62:
9b:1c:85:cb:d3:c7:23:c6:36:43:56:a5:c3:a7:35:f3:8e:18:
37:c7:e4:89:d4:b8:d3:8e:52:5c:58:ae:24:ae:85:1f:dd:1f:
07:be:c5:26:35:03:3a:3a:c0:ab:3d:a0:ed:85:47:ae:30:dd:
e6:90:9b:30:0e:56:b1:55:72:53:60:59:fc:90:77:e1:46:b4:
15:23:bb:54:7d:72:e5:81:1e:8a:0d:50:d6:76:d4:d7:d4:eb:
5e:0a:00:38:03:b8:99:b6:ac:4d:a5:9c:7f:b4:77:43:1a:b6:
b1:ec:d0:5e:02:cd:be:f4:e7:54:1a:1f:14:dd:f1:89:95:83:
97:25:99:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 02:24:54 2025 by rpki-client