Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/kdSMQjkPGnaDaSQ0x48PL1mCw_o.roa
File: kdSMQjkPGnaDaSQ0x48PL1mCw_o.roa (raw, json)
Hash identifier: ymEjaUbxnPM4WovUqKA2e3I1HRQY2HSIdzkcNuy5MHM=
Subject key identifier: 91:D4:8C:42:39:0F:1A:76:83:69:24:34:C7:8F:0F:2F:59:82:C3:FA
Certificate issuer: /CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Certificate serial: 0194258FB4F5923CEEE7E1C0225661932B4A
Authority key identifier: 9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/kdSMQjkPGnaDaSQ0x48PL1mCw_o.roa
Signing time: Thu 02 Jan 2025 05:49:22 +0000
ROA not before: Thu 02 Jan 2025 05:49:22 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 398465
IP address blocks: 185.177.26.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8f:b4:f5:92:3c:ee:e7:e1:c0:22:56:61:93:2b:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Validity
Not Before: Jan 2 05:49:22 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=91d48c42390f1a7683692434c78f0f2f5982c3fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:d8:93:f5:0c:e4:e5:4e:ac:d9:4e:ab:a0:23:
e4:17:bc:a1:12:36:a2:35:51:95:3f:e9:d8:f3:51:
9b:b5:5b:d1:61:ea:b6:56:7e:14:b1:45:06:0c:03:
5c:67:8d:34:fb:56:ec:45:49:73:9d:b8:64:c7:c2:
3c:0f:68:63:24:a3:79:95:15:7c:8a:c6:70:9a:5e:
42:ee:5c:ce:0e:bc:1b:9f:2f:48:94:65:66:26:53:
91:72:ed:aa:17:b6:3c:a1:f0:27:b2:2b:dc:fb:1e:
a4:b0:ee:17:0d:d5:12:b6:a4:81:85:44:66:9a:f1:
5c:e3:3d:cc:62:95:6b:0e:68:eb:35:d2:d6:7a:b4:
a4:db:f8:97:9a:a3:49:a1:dc:0b:09:8a:c4:bb:bf:
ee:05:57:0b:f7:de:0b:2c:41:b1:f7:0a:32:ac:a6:
72:bc:6c:9f:bd:04:14:d2:79:1f:73:1a:9f:97:1f:
63:16:9c:d4:b8:8c:d2:fb:b6:72:09:c2:e4:13:47:
5d:51:4c:2e:ab:21:5b:bc:e7:ae:34:6e:bb:83:b4:
68:56:e3:0d:6e:ca:95:81:96:2d:d0:45:db:05:6a:
11:ef:1e:4c:c0:38:b1:d1:fc:c8:75:f9:c6:10:69:
6f:78:36:9e:b6:4e:4c:71:aa:0a:30:82:da:b3:20:
55:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:D4:8C:42:39:0F:1A:76:83:69:24:34:C7:8F:0F:2F:59:82:C3:FA
X509v3 Authority Key Identifier:
keyid:9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/kdSMQjkPGnaDaSQ0x48PL1mCw_o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/mwwNBCJVZtuV6a07LvYFAUl1qqI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.177.26.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:01:91:4b:c4:b6:b5:7d:9f:14:b4:81:36:8b:fe:ce:a7:c1:
ee:b5:46:74:90:ca:16:45:03:6c:24:d2:84:79:ad:e8:26:a5:
10:b9:2c:68:9e:72:93:0a:b6:0c:a9:54:c3:53:dd:b6:55:29:
3d:0f:74:f5:1b:53:d0:99:f0:1a:e6:94:c2:77:49:98:18:39:
d9:20:fa:b9:73:34:7d:94:67:3d:cb:5b:a1:cf:8d:2a:be:41:
b8:3d:87:e2:e4:20:62:cc:08:3f:15:49:40:6d:f9:a3:a2:ee:
e6:c1:91:9c:5d:af:e5:67:22:f1:ef:23:0a:81:e7:de:b1:34:
d2:9f:62:86:c2:06:1a:0e:1d:a6:09:40:a5:1c:1f:1e:47:ae:
5f:58:da:89:41:e4:c7:68:35:a1:87:c8:e9:73:51:b2:bb:18:
62:de:9c:c4:4b:82:9a:0a:41:0d:17:ef:3a:7f:af:ee:e5:5a:
9c:62:34:1f:08:6c:82:c7:14:48:90:e7:38:6c:76:00:7e:24:
11:8e:ba:f6:57:dd:86:1b:9a:99:c4:78:4d:e6:75:4e:ae:fa:
05:6b:48:28:96:49:0a:f4:56:9c:0a:d7:0e:0a:5b:4f:ef:33:
b5:1a:fd:e1:b3:ba:37:01:1e:f3:7a:94:17:79:f2:1e:c2:95:
f5:6e:f2:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 6 21:55:32 2025 by rpki-client