Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/011ef2-7012-4a6e-8a1c-0e0e137e5591/1/r9qf6KgX9IgFo0eq5J1Iki9tbIU.roa
File: r9qf6KgX9IgFo0eq5J1Iki9tbIU.roa (raw, json)
Hash identifier: 5vA2NlXN7t+qJxC8MfIinBSgfDV+e3NTP2tOSZC2XEw=
Subject key identifier: AF:DA:9F:E8:A8:17:F4:88:05:A3:47:AA:E4:9D:48:92:2F:6D:6C:85
Certificate issuer: /CN=e520446f79ffc2d7c3a9ef340ce9de25723a719a
Certificate serial: 01942444B33537430CEAC2257FC6437F7513
Authority key identifier: E5:20:44:6F:79:FF:C2:D7:C3:A9:EF:34:0C:E9:DE:25:72:3A:71:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5SBEb3n_wtfDqe80DOneJXI6cZo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/011ef2-7012-4a6e-8a1c-0e0e137e5591/1/r9qf6KgX9IgFo0eq5J1Iki9tbIU.roa
Signing time: Wed 01 Jan 2025 23:47:49 +0000
ROA not before: Wed 01 Jan 2025 23:47:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 211563
IP address blocks: 185.27.82.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:44:b3:35:37:43:0c:ea:c2:25:7f:c6:43:7f:75:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e520446f79ffc2d7c3a9ef340ce9de25723a719a
Validity
Not Before: Jan 1 23:47:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=afda9fe8a817f48805a347aae49d48922f6d6c85
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:4b:bc:35:cc:58:b0:a2:4d:22:99:df:b3:38:
dc:6a:87:d9:5a:95:f9:a2:e1:aa:67:9f:bb:df:75:
e7:92:a5:72:47:47:96:41:12:bd:f7:cc:b9:3c:2f:
08:3a:a4:5e:91:d3:87:45:8c:6e:c0:b8:45:0c:ee:
73:22:17:94:db:a8:3e:d3:c8:f0:be:c4:75:d9:d1:
e5:08:da:93:23:16:54:2f:3d:f5:d4:83:ed:14:cd:
dd:21:bc:08:94:dc:a5:a2:1d:f7:58:59:07:a3:59:
bf:ae:6a:1e:d3:5b:df:46:c8:e2:86:a1:d4:5e:eb:
4a:77:ff:76:c5:a2:ef:c8:d1:a6:a3:38:be:39:5d:
bc:d2:f4:86:d2:9f:7a:4b:15:a6:da:29:e6:a8:fa:
10:da:88:b3:c9:99:64:d5:42:c9:68:80:c9:e2:61:
b5:0e:22:74:63:28:b0:b5:bc:74:6f:1b:4e:54:0f:
ea:e6:57:7c:d7:57:e1:b1:fb:bc:54:11:5a:15:9c:
6e:a8:04:d0:42:8a:fe:5f:b2:c1:cb:30:d5:44:6c:
37:d5:60:f8:07:4d:0e:b1:e5:3e:ac:f8:80:0d:7d:
91:03:a4:fc:48:15:bc:17:f6:16:8f:f4:9f:0f:d6:
ed:72:26:3d:6c:b4:f9:0d:43:71:68:31:ea:d7:6d:
b8:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:DA:9F:E8:A8:17:F4:88:05:A3:47:AA:E4:9D:48:92:2F:6D:6C:85
X509v3 Authority Key Identifier:
keyid:E5:20:44:6F:79:FF:C2:D7:C3:A9:EF:34:0C:E9:DE:25:72:3A:71:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5SBEb3n_wtfDqe80DOneJXI6cZo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/011ef2-7012-4a6e-8a1c-0e0e137e5591/1/r9qf6KgX9IgFo0eq5J1Iki9tbIU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/011ef2-7012-4a6e-8a1c-0e0e137e5591/1/5SBEb3n_wtfDqe80DOneJXI6cZo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.27.82.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:9b:ab:49:4f:3a:68:9d:72:fb:45:c2:53:d2:95:ec:97:f3:
9b:95:b1:13:97:ad:04:c9:fe:01:c5:76:c0:1a:e6:7a:b0:b9:
91:28:14:ee:60:f6:c6:84:fd:15:b1:fe:dd:00:27:42:66:81:
f0:23:94:6a:6c:e0:47:c6:14:75:e4:82:25:6c:92:18:6d:75:
cb:a7:81:97:86:e9:71:cb:e1:17:fc:7b:a6:fc:14:03:3b:94:
db:c6:c3:02:4f:a3:14:b5:88:43:54:06:97:10:30:a2:99:f1:
42:ad:b6:aa:0f:b2:6e:cf:89:68:0d:2b:31:28:8c:b7:64:62:
84:fe:23:7f:48:7d:3d:21:af:f6:7d:0a:63:60:48:40:94:70:
bc:02:62:33:4c:03:fe:e1:ff:7b:50:4d:e9:17:f3:47:fc:a2:
6b:1c:e9:2b:20:01:23:91:a4:aa:ff:16:83:c1:f1:29:17:fa:
8a:0c:dd:c4:61:28:22:77:00:10:15:cd:5f:37:4e:8d:40:6c:
f2:ac:13:48:da:5f:10:52:5c:cb:3b:2e:c8:00:b3:b0:ed:53:
83:46:a1:0b:a6:ff:d6:0f:dd:57:6a:3d:e1:42:f7:39:c5:3d:
b6:5d:11:d8:3c:cd:86:28:48:5e:0c:27:3e:94:3a:0b:c9:5c:
98:52:b9:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:26:46 2025 by rpki-client on console.sobornost.net