Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/47aa2f-6b6f-4ef5-9b99-bc9ecc2adb43/1/si7sAmrI6LhMmBgdITfIkRaacMk.roa
File: si7sAmrI6LhMmBgdITfIkRaacMk.roa (raw, json)
Hash identifier: ySGkQgyQXdPJ9MCG+8CkylC78C7W6u0+iUG1Hsa05U8=
Subject key identifier: B2:2E:EC:02:6A:C8:E8:B8:4C:98:18:1D:21:37:C8:91:16:9A:70:C9
Certificate issuer: /CN=4413bdf4dc7435faf51ba934d65570f71c21731a
Certificate serial: 0194214434DD281E96716981EE3DAB9DFD6D
Authority key identifier: 44:13:BD:F4:DC:74:35:FA:F5:1B:A9:34:D6:55:70:F7:1C:21:73:1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RBO99Nx0Nfr1G6k01lVw9xwhcxo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/47aa2f-6b6f-4ef5-9b99-bc9ecc2adb43/1/si7sAmrI6LhMmBgdITfIkRaacMk.roa
Signing time: Wed 01 Jan 2025 09:48:25 +0000
ROA not before: Wed 01 Jan 2025 09:48:25 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 43648
IP address blocks: 185.78.16.0/22 maxlen: 24
2a05:6680::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:44:34:dd:28:1e:96:71:69:81:ee:3d:ab:9d:fd:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4413bdf4dc7435faf51ba934d65570f71c21731a
Validity
Not Before: Jan 1 09:48:25 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b22eec026ac8e8b84c98181d2137c891169a70c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:bb:cf:c1:9d:1d:dd:64:90:c3:06:dc:b8:6b:
aa:4b:c9:5e:e1:ca:40:ec:86:10:bc:e2:45:a9:54:
c4:89:32:6e:c6:c9:e1:fb:80:ad:fb:81:9b:e4:d4:
c1:cf:d6:7e:23:e7:fa:b8:fc:a8:47:02:a6:82:36:
d6:96:26:8b:a1:80:dc:66:4b:ba:33:2c:a1:01:6c:
51:15:92:4b:57:f5:e7:dc:96:94:d2:fb:24:71:c2:
45:02:4d:e3:65:80:b9:1c:cf:66:fe:b8:7c:62:ac:
d3:59:23:f8:e9:8f:2d:66:d6:e2:13:a5:75:ac:16:
01:2e:7a:6a:16:e1:53:7f:07:29:23:f0:5c:d6:00:
b3:10:70:c0:0e:df:3a:ba:48:18:0e:da:16:cd:39:
f8:8c:bb:17:a3:06:b7:76:58:bb:de:a0:a0:7a:65:
d1:a3:5f:63:cd:39:f3:c5:7f:83:19:ea:f4:8c:a2:
ff:65:99:85:2b:c4:c5:58:e5:66:03:65:53:2d:2f:
fe:9e:cc:f7:7a:61:96:ce:2a:c0:f6:c0:42:24:1a:
a4:5b:84:f0:57:c5:26:27:a1:c2:2c:a1:56:c0:d9:
b1:00:66:46:3f:47:4b:42:f8:c1:2f:06:f0:f3:9e:
d5:cc:2a:22:5c:b2:34:2f:31:78:83:a8:c1:90:c1:
54:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:2E:EC:02:6A:C8:E8:B8:4C:98:18:1D:21:37:C8:91:16:9A:70:C9
X509v3 Authority Key Identifier:
keyid:44:13:BD:F4:DC:74:35:FA:F5:1B:A9:34:D6:55:70:F7:1C:21:73:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RBO99Nx0Nfr1G6k01lVw9xwhcxo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/47aa2f-6b6f-4ef5-9b99-bc9ecc2adb43/1/si7sAmrI6LhMmBgdITfIkRaacMk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/47aa2f-6b6f-4ef5-9b99-bc9ecc2adb43/1/RBO99Nx0Nfr1G6k01lVw9xwhcxo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.78.16.0/22
IPv6:
2a05:6680::/29
Signature Algorithm: sha256WithRSAEncryption
74:94:e5:65:3e:dc:26:eb:44:17:76:30:a1:17:c9:08:f7:6a:
57:6d:cb:8f:a3:ec:45:df:6e:4e:5f:9d:a8:d5:9b:87:a7:d4:
27:40:90:86:51:35:81:e5:ab:72:5a:a8:27:81:54:4c:82:ee:
73:19:30:55:31:7c:de:af:85:6c:fd:26:ab:92:85:0b:e7:8f:
33:92:4c:c0:fc:03:8a:49:d1:94:31:c1:4b:b2:60:ef:9f:6c:
53:9e:4c:5a:72:57:55:0a:da:8b:81:a5:3f:17:90:54:3e:8d:
b9:cd:2f:f5:4a:52:3c:99:65:f3:e0:e9:06:8a:89:81:5d:18:
f4:cd:d3:f6:a6:9f:7a:7f:3e:33:cb:31:21:43:ea:ba:09:55:
56:05:c7:58:6a:f7:59:75:2f:c8:c5:28:93:c0:c6:fa:f9:4a:
53:64:f1:93:b1:fa:fc:74:e0:79:b0:3e:77:85:92:fe:7a:88:
f0:00:80:92:b6:a8:0c:bc:1e:46:42:96:e2:3c:8c:a6:92:d1:
6c:4e:f1:7f:c3:08:d0:9d:e7:6d:e9:80:f7:5f:73:29:a1:f0:
ed:45:e7:16:9e:a2:37:81:63:31:d5:64:85:2f:fa:0e:33:a0:
c8:5f:41:68:f1:38:3b:57:87:bb:4b:72:95:27:e9:ef:63:ab:
ca:79:0f:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:26:33 2025 by rpki-client on console.sobornost.net