Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/70f8bb-9a37-4f3e-a581-3ea8194fb446/1/_2TO4dSOjfvwTixfDBf-WBuIl0o.roa
File: _2TO4dSOjfvwTixfDBf-WBuIl0o.roa (raw, json)
Hash identifier: RPjvUg/mlm5LB8eSfOAwiB9MoMFdNTXRZHFg7kwXImU=
Subject key identifier: FF:64:CE:E1:D4:8E:8D:FB:F0:4E:2C:5F:0C:17:FE:58:1B:88:97:4A
Certificate issuer: /CN=74f1059c273c50edcf3dcedfc5800152ec91dba2
Certificate serial: 0194258F5B5BBC118E119C3254ABEC628207
Authority key identifier: 74:F1:05:9C:27:3C:50:ED:CF:3D:CE:DF:C5:80:01:52:EC:91:DB:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dPEFnCc8UO3PPc7fxYABUuyR26I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/70f8bb-9a37-4f3e-a581-3ea8194fb446/1/_2TO4dSOjfvwTixfDBf-WBuIl0o.roa
Signing time: Thu 02 Jan 2025 05:48:59 +0000
ROA not before: Thu 02 Jan 2025 05:48:59 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 43853
IP address blocks: 185.254.80.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8f:5b:5b:bc:11:8e:11:9c:32:54:ab:ec:62:82:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=74f1059c273c50edcf3dcedfc5800152ec91dba2
Validity
Not Before: Jan 2 05:48:59 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ff64cee1d48e8dfbf04e2c5f0c17fe581b88974a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:8e:40:1e:3e:93:f0:32:78:8a:c9:f5:22:dd:
2d:76:93:11:8e:eb:0c:cd:93:cc:7e:ba:3f:2b:ac:
f9:13:f7:0c:25:60:9d:7c:b0:20:b1:74:99:4c:0d:
4f:e8:82:97:f5:f4:e9:2b:82:1e:11:b9:ac:96:4c:
20:c8:5d:9f:1c:93:6b:a3:3c:92:65:db:4e:74:18:
0a:46:b1:fa:8c:d1:9c:79:35:4d:83:3f:2d:39:6f:
4e:57:2e:f3:56:9e:51:d9:2b:2e:e0:a9:73:0b:b5:
cb:ab:66:d1:50:20:57:ad:bd:88:a2:45:52:1f:3f:
56:6a:ec:4c:11:cc:3f:4f:f5:08:bf:bc:7a:02:0e:
6d:c6:a8:31:ff:9e:91:ed:91:c2:fc:ca:ee:13:82:
f7:c7:ec:f3:04:61:ae:d3:12:ec:ad:98:5d:71:6e:
ff:40:14:bc:a0:76:af:26:5a:0f:62:2b:05:b0:fc:
88:61:6f:20:3a:ae:ee:51:40:45:85:26:22:00:f5:
be:1f:04:50:a9:c7:76:0a:f1:f9:ff:67:62:4c:cb:
98:39:15:d1:e6:5a:2c:c4:6e:8b:b5:1f:6f:4e:96:
2b:8b:3c:cb:0c:36:93:a6:af:d3:32:e8:3f:42:b8:
2e:ca:6e:57:80:3c:bc:06:4a:b8:8c:76:db:85:54:
97:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:64:CE:E1:D4:8E:8D:FB:F0:4E:2C:5F:0C:17:FE:58:1B:88:97:4A
X509v3 Authority Key Identifier:
keyid:74:F1:05:9C:27:3C:50:ED:CF:3D:CE:DF:C5:80:01:52:EC:91:DB:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dPEFnCc8UO3PPc7fxYABUuyR26I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/70f8bb-9a37-4f3e-a581-3ea8194fb446/1/_2TO4dSOjfvwTixfDBf-WBuIl0o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/70f8bb-9a37-4f3e-a581-3ea8194fb446/1/dPEFnCc8UO3PPc7fxYABUuyR26I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.254.80.0/22
Signature Algorithm: sha256WithRSAEncryption
43:db:33:eb:19:74:b9:2f:10:1d:6d:46:b7:14:a4:f6:ef:a9:
c2:c1:5d:46:54:7a:26:bc:ea:37:22:59:59:39:94:bb:ac:37:
14:50:6d:33:40:d5:17:77:f0:bd:f2:db:87:5b:7f:14:d8:a9:
03:1b:f1:74:c3:0e:b3:ad:0e:4a:2b:69:b7:9b:93:3e:36:d3:
5e:ae:ef:07:29:a1:7d:a8:02:66:b8:d9:4d:47:8b:31:3a:41:
b4:10:3e:34:63:af:d0:f0:19:4b:c8:03:21:61:17:12:51:88:
08:e4:c0:eb:0e:b8:b0:3f:b5:77:33:df:7c:8b:af:68:d8:71:
f7:4b:de:9d:d6:82:af:fd:12:85:d8:f7:ef:99:b8:8c:b3:6f:
b8:a0:20:17:66:60:7f:cb:66:ec:d3:cf:53:59:63:4f:af:9c:
54:14:a2:de:cb:b1:d5:95:a8:18:7c:9f:40:09:b4:31:ac:37:
89:1b:f2:92:6b:03:10:9b:99:3d:b7:42:bd:b1:44:ff:7c:11:
a9:df:87:ec:2d:43:87:4b:31:c7:5b:36:af:5f:7d:93:14:25:
45:73:0d:4f:41:52:90:1a:bd:2d:2b:2e:e6:87:1e:52:58:3e:
09:96:df:e7:57:90:f0:6c:06:d3:65:89:1a:70:35:8d:b9:d7:
49:c1:0a:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 01:44:14 2025 by rpki-client