Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/cgUzRds2F1Fyx7A1eTtkD6VHPCE.roa
File: cgUzRds2F1Fyx7A1eTtkD6VHPCE.roa (raw, json)
Hash identifier: Cehce4jlMWzzfHA11mFKjaId204BE9qMXC2KiP9qsQs=
Subject key identifier: 72:05:33:45:DB:36:17:51:72:C7:B0:35:79:3B:64:0F:A5:47:3C:21
Certificate issuer: /CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Certificate serial: 0193981D7EBF077819A3D588B3F242FB279E
Authority key identifier: 9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/cgUzRds2F1Fyx7A1eTtkD6VHPCE.roa
Signing time: Thu 05 Dec 2024 18:38:10 +0000
ROA not before: Thu 05 Dec 2024 18:38:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 213751
IP address blocks: 185.177.27.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:98:1d:7e:bf:07:78:19:a3:d5:88:b3:f2:42:fb:27:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Validity
Not Before: Dec 5 18:38:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=72053345db36175172c7b035793b640fa5473c21
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:8a:f4:c4:3d:64:ff:fe:54:86:9f:41:58:c3:
6a:39:6a:58:2b:4b:7d:23:f2:3f:85:09:87:22:a6:
8e:b3:e8:d6:8d:5b:eb:b5:e8:e4:7f:cb:ce:11:3d:
7a:19:04:bc:45:d1:c3:40:4a:77:87:aa:dd:f8:a4:
fa:62:9d:83:1b:70:b4:6e:6f:a2:3d:5f:4c:66:f4:
b5:e0:c0:ca:73:26:a9:d1:2a:7e:7c:b4:d8:0e:cd:
93:f2:6a:7d:28:e4:df:7c:a7:e5:b7:c3:a8:fe:4b:
bb:38:3d:8f:74:f3:e8:3d:bd:c5:4a:e6:8b:82:a8:
89:6c:8c:fc:66:58:13:55:ab:a0:17:bd:a9:58:11:
5e:d3:b8:09:59:55:74:1b:b6:08:e7:d3:ec:de:f2:
e4:e1:00:a2:85:27:c0:a3:be:78:70:de:72:b4:c3:
ac:66:2c:72:9a:5d:d5:2c:6c:4b:d0:72:35:0f:44:
0c:5f:f4:9f:58:f4:b2:02:c3:4e:52:e9:11:58:40:
b0:9e:b7:d5:27:61:88:e4:d9:76:6d:41:e3:9d:4c:
05:ba:a8:8f:8d:9b:03:43:a2:0d:c2:ad:3c:18:c5:
e4:d5:f2:5d:a8:1b:20:85:e6:06:e4:44:15:a2:28:
d9:e9:45:7a:10:02:5f:ed:73:d8:cb:b1:6b:2c:4a:
f0:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:05:33:45:DB:36:17:51:72:C7:B0:35:79:3B:64:0F:A5:47:3C:21
X509v3 Authority Key Identifier:
keyid:9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/cgUzRds2F1Fyx7A1eTtkD6VHPCE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/mwwNBCJVZtuV6a07LvYFAUl1qqI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.177.27.0/24
Signature Algorithm: sha256WithRSAEncryption
68:1d:14:5d:94:97:0c:b9:6e:cd:7c:67:7d:5f:bb:da:87:47:
64:e3:29:c7:ea:83:20:5c:5e:9c:dc:1b:d7:8f:21:d7:f2:5a:
21:d5:b0:88:ca:b1:39:fd:2b:12:21:f6:8d:cd:bb:3d:c3:ed:
da:4f:61:1e:94:e0:b2:09:55:10:51:a2:2e:9d:4a:38:cf:9b:
35:b9:fd:9f:1e:d1:66:3c:1c:e6:fb:24:14:16:e1:dd:1b:1f:
45:90:72:05:bf:e0:42:da:2b:b2:30:14:b2:92:bc:7f:42:36:
9c:4b:44:62:90:cb:1a:2f:46:84:eb:f2:5a:24:4c:fa:a6:48:
c0:21:24:68:e0:3b:e4:57:d6:36:5c:46:eb:c3:8b:ae:2b:cb:
74:16:d0:46:de:6e:c9:26:cf:d2:78:d8:0a:38:e9:71:5d:eb:
08:ff:b7:74:b9:bc:14:be:71:ca:08:4b:dc:ce:94:b6:ff:59:
e1:c1:0f:57:e6:a8:4b:57:f8:fd:12:7e:40:d8:0e:d8:3d:8b:
1b:fd:03:6d:78:0b:20:3b:66:df:54:cd:7d:96:e8:ea:62:c9:
f8:12:e3:27:ad:c3:1a:e5:c7:37:c3:ac:32:25:16:33:b4:57:
ce:37:c8:6f:71:97:52:4a:94:fc:ec:ce:6b:4c:d4:78:98:4f:
04:8a:61:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 7 06:57:19 2025 by rpki-client