Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/87c3ee-d086-4559-90d4-f3ba9e7ec78f/1/nVZxvGyRr6y3N_3kemLkXSeKNMY.roa
File: nVZxvGyRr6y3N_3kemLkXSeKNMY.roa (raw, json)
Hash identifier: xe7YpV2N5iEYZH6659ufWEJMlWx1/Qn7ed65qL75k48=
Subject key identifier: 9D:56:71:BC:6C:91:AF:AC:B7:37:FD:E4:7A:62:E4:5D:27:8A:34:C6
Certificate issuer: /CN=f998035895f95549c2cdaac3f005446cbdd11c02
Certificate serial: 018958ECAC9C61BACCAFB98B8CCAA5CA723E
Authority key identifier: F9:98:03:58:95:F9:55:49:C2:CD:AA:C3:F0:05:44:6C:BD:D1:1C:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-ZgDWJX5VUnCzarD8AVEbL3RHAI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/87c3ee-d086-4559-90d4-f3ba9e7ec78f/1/nVZxvGyRr6y3N_3kemLkXSeKNMY.roa
Signing time: Sat 15 Jul 2023 09:40:52 +0000
ROA not before: Sat 15 Jul 2023 09:40:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205320
IP address blocks: 185.250.43.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:58:ec:ac:9c:61:ba:cc:af:b9:8b:8c:ca:a5:ca:72:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f998035895f95549c2cdaac3f005446cbdd11c02
Validity
Not Before: Jul 15 09:40:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9d5671bc6c91afacb737fde47a62e45d278a34c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:ea:c8:c0:d9:1a:e7:27:42:96:cb:b4:34:5a:
a2:5c:16:94:28:dc:56:a6:1a:92:ca:99:a2:f4:12:
ab:49:0b:46:4e:6f:bc:2d:ce:fa:19:34:e7:92:ff:
0f:69:35:a5:a4:74:cb:56:69:fa:c2:89:f7:2a:9f:
c9:3e:43:f4:09:d3:0d:2a:2f:0b:44:42:fe:f5:d2:
2f:9a:f1:fe:38:8c:6e:b6:73:58:d7:83:70:4a:bf:
77:9d:66:88:7b:8b:ec:76:00:95:5e:2e:dc:42:3c:
ff:6d:e9:82:b4:f5:9c:04:34:33:53:68:80:87:1a:
84:32:1c:e9:64:c7:e3:c5:69:d5:a5:12:4b:e6:54:
d0:6e:e6:b8:35:c1:c6:1a:fd:6a:64:9f:89:9e:83:
ab:34:a9:e1:01:a3:49:45:15:d7:6c:e4:ca:e7:05:
c7:5d:cc:a3:41:5b:5b:5b:33:ad:3e:d5:76:b8:a8:
73:b3:22:b4:d1:ba:d2:90:a1:61:4b:4b:4a:a7:1e:
fc:80:79:0f:35:78:12:91:cc:cd:fe:7e:6f:bf:b5:
51:98:fd:32:70:dd:44:0d:e7:d2:be:ce:e8:d7:50:
72:c5:b6:5f:c3:1b:f4:6d:b0:b6:c5:69:e1:f4:bf:
13:cb:1c:14:f8:1f:30:4b:82:6d:5e:fe:01:4f:b7:
94:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:56:71:BC:6C:91:AF:AC:B7:37:FD:E4:7A:62:E4:5D:27:8A:34:C6
X509v3 Authority Key Identifier:
keyid:F9:98:03:58:95:F9:55:49:C2:CD:AA:C3:F0:05:44:6C:BD:D1:1C:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-ZgDWJX5VUnCzarD8AVEbL3RHAI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/87c3ee-d086-4559-90d4-f3ba9e7ec78f/1/nVZxvGyRr6y3N_3kemLkXSeKNMY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/87c3ee-d086-4559-90d4-f3ba9e7ec78f/1/1-ZgDWJX5VUnCzarD8AVEbL3RHAI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.250.43.0/24
Signature Algorithm: sha256WithRSAEncryption
a0:6f:f5:4e:a4:79:f3:c8:5d:3e:d2:42:d0:1b:56:ad:05:f2:
c4:db:72:b8:41:62:52:43:52:00:b0:f0:3a:46:a1:b4:5a:ca:
41:a9:95:10:16:81:39:ff:c9:6d:3d:db:da:35:5a:02:29:70:
c5:93:bb:53:54:c7:22:cd:4c:3e:f9:96:5a:0b:7b:cc:3d:d2:
70:3f:a6:be:ba:c7:ab:ff:06:c3:ea:d3:8d:e6:91:b1:f2:3c:
e2:be:3b:ab:bc:4c:60:37:e8:dd:7c:03:cf:0c:cb:27:53:03:
cf:53:e6:0c:83:22:40:a0:d2:2f:b8:7b:af:da:88:7d:41:1e:
82:e4:09:4a:32:35:0f:cd:8d:03:68:07:01:e2:43:24:1c:f7:
ec:52:94:56:1d:eb:ca:2b:55:95:dd:3a:65:57:dd:b4:76:48:
9d:d1:b4:dc:92:bb:34:af:47:38:36:82:0f:0c:16:06:09:43:
78:89:80:3f:e2:64:0c:d1:ef:bf:12:78:e2:19:cd:c3:4d:ce:
5d:4d:cf:7b:b9:88:a6:ba:72:bb:3b:1c:40:5b:70:52:7f:f6:
19:ce:89:4f:72:8e:5d:f4:87:ab:95:b3:63:37:fa:a9:9e:1a:
ec:86:6e:aa:25:d9:1f:96:da:f8:8f:fc:8e:1d:1c:bd:8c:7d:
7d:b4:a8:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 6 19:57:23 2025 by rpki-client