Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/1f9ced-6bc2-486b-a4b6-09bdeb6afabd/1/_iJsde6qyC_6NAOojw9ckyW4I9Y.roa
File: _iJsde6qyC_6NAOojw9ckyW4I9Y.roa (raw, json)
Hash identifier: eA5RMaI/PSYqnEOMngz7pUxZUouDRioQk9k6T7VnnHw=
Subject key identifier: FE:22:6C:75:EE:AA:C8:2F:FA:34:03:A8:8F:0F:5C:93:25:B8:23:D6
Certificate issuer: /CN=1a001d77025f052af7d0e62e1701016b9e22e002
Certificate serial: 019423D73CBFB35ED7B543156639730A0A84
Authority key identifier: 1A:00:1D:77:02:5F:05:2A:F7:D0:E6:2E:17:01:01:6B:9E:22:E0:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GgAddwJfBSr30OYuFwEBa54i4AI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/1f9ced-6bc2-486b-a4b6-09bdeb6afabd/1/_iJsde6qyC_6NAOojw9ckyW4I9Y.roa
Signing time: Wed 01 Jan 2025 21:48:15 +0000
ROA not before: Wed 01 Jan 2025 21:48:15 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 31043
IP address blocks: 185.218.44.0/22 maxlen: 22
2a0c:8b00::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:d7:3c:bf:b3:5e:d7:b5:43:15:66:39:73:0a:0a:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1a001d77025f052af7d0e62e1701016b9e22e002
Validity
Not Before: Jan 1 21:48:15 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=fe226c75eeaac82ffa3403a88f0f5c9325b823d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:a7:1b:e5:6d:fc:71:32:72:0e:fa:44:91:0d:
2f:bc:0f:d4:87:55:1e:24:30:86:36:68:28:1f:5f:
a6:93:d6:d7:53:02:7c:93:40:3d:30:aa:f7:97:e2:
e0:67:e6:8e:65:f4:45:0f:dc:60:54:cb:7a:97:bc:
46:e3:39:ab:a0:2a:9a:ef:2e:cb:9c:ed:70:e3:6e:
47:37:4c:1c:34:d3:17:67:0b:e0:ce:e4:37:17:61:
7c:00:e2:af:aa:45:0c:d5:81:af:20:f8:61:bf:d8:
61:e2:c8:1a:3c:b5:ba:c3:0b:89:c8:7a:da:02:88:
04:ad:cb:2f:ef:a7:68:c1:6f:17:89:c1:ac:ea:38:
9d:d9:69:a8:a5:14:d1:cb:37:3b:2a:10:2a:a7:8a:
e1:59:1f:a9:7b:65:d9:00:29:87:ce:92:0f:5e:f3:
e6:07:e7:ed:9c:27:5c:a1:35:d6:6b:47:11:43:89:
ad:32:f0:70:ad:7d:9c:0c:a9:f0:fb:95:b5:e7:72:
c1:ae:58:ea:5c:08:b0:24:60:be:9e:18:df:78:94:
fb:b0:7e:20:68:45:c6:a9:53:b1:eb:fa:0e:d6:0a:
40:73:df:8d:28:52:6f:3e:fd:15:ec:7e:ea:e3:19:
89:e5:4b:5d:2f:3b:89:2d:98:03:b9:91:d8:54:06:
4d:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:22:6C:75:EE:AA:C8:2F:FA:34:03:A8:8F:0F:5C:93:25:B8:23:D6
X509v3 Authority Key Identifier:
keyid:1A:00:1D:77:02:5F:05:2A:F7:D0:E6:2E:17:01:01:6B:9E:22:E0:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GgAddwJfBSr30OYuFwEBa54i4AI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/1f9ced-6bc2-486b-a4b6-09bdeb6afabd/1/_iJsde6qyC_6NAOojw9ckyW4I9Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/1f9ced-6bc2-486b-a4b6-09bdeb6afabd/1/GgAddwJfBSr30OYuFwEBa54i4AI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.218.44.0/22
IPv6:
2a0c:8b00::/32
Signature Algorithm: sha256WithRSAEncryption
6f:e1:8e:88:06:59:5d:46:87:6a:17:bc:4a:9f:ee:79:8c:0f:
3f:96:d9:3a:ef:f5:7a:ca:2d:5d:01:e7:da:e7:bd:fe:58:7a:
87:b4:14:1a:b1:4d:e6:60:b8:4e:cb:45:27:45:da:7c:a5:6e:
be:47:9a:54:4e:b8:16:88:ed:06:23:e7:f5:6d:6b:09:64:08:
5a:06:8f:92:c4:c7:01:40:ac:9e:26:f2:65:e1:1b:1b:2f:00:
7a:c7:5d:d9:f5:cf:c8:91:37:10:d3:d0:cb:46:5c:d3:34:46:
45:2c:a4:b8:bd:a4:c1:de:49:3b:32:b2:62:97:f6:ee:3b:f0:
0e:ea:9f:87:f1:38:37:a3:86:84:8d:ba:da:40:2f:29:9c:c1:
ec:42:37:cf:b7:eb:cd:1d:69:55:4d:13:f3:e9:49:df:28:7c:
3d:fa:37:c1:9f:93:76:07:31:cd:21:03:8e:50:d2:51:ec:04:
6a:3a:95:51:76:1b:89:c5:32:cd:51:56:4f:20:27:2c:76:04:
53:0a:90:0b:2e:27:ea:2c:2c:e9:47:77:c7:24:7b:24:91:da:
c8:94:69:7b:50:8a:50:bc:6a:65:28:9e:94:f8:c5:dd:cd:a5:
98:a0:b3:84:d0:9b:15:29:5e:34:4d:ae:e8:17:95:1a:40:e2:
d9:fb:1b:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 19:32:47 2025 by rpki-client