Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/c71636-edd8-4d11-85e8-b834faf6aced/1/1ExgTuSySQyC_7FBzIv34_p5WTU.roa
File: 1ExgTuSySQyC_7FBzIv34_p5WTU.roa (raw, json)
Hash identifier: mZYs+TpSA4E+Path/+KS27rWuvTmn4NdNpBE5O9B57Y=
Subject key identifier: D4:4C:60:4E:E4:B2:49:0C:82:FF:B1:41:CC:8B:F7:E3:FA:79:59:35
Certificate issuer: /CN=be40b3c2be7835d7b37b5826102f8746a5199d49
Certificate serial: 019428266CDD4DF336AD082C599840A1ADD2
Authority key identifier: BE:40:B3:C2:BE:78:35:D7:B3:7B:58:26:10:2F:87:46:A5:19:9D:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vkCzwr54Ndeze1gmEC-HRqUZnUk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/c71636-edd8-4d11-85e8-b834faf6aced/1/1ExgTuSySQyC_7FBzIv34_p5WTU.roa
Signing time: Thu 02 Jan 2025 17:53:14 +0000
ROA not before: Thu 02 Jan 2025 17:53:14 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 6830
IP address blocks: 185.87.76.0/24 maxlen: 24
185.87.77.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:28:26:6c:dd:4d:f3:36:ad:08:2c:59:98:40:a1:ad:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=be40b3c2be7835d7b37b5826102f8746a5199d49
Validity
Not Before: Jan 2 17:53:14 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=d44c604ee4b2490c82ffb141cc8bf7e3fa795935
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:d7:83:72:b2:7f:ae:e9:50:1e:ca:11:d9:7d:
55:2b:94:01:24:a6:86:c9:dd:cf:c2:b5:20:08:62:
e7:7f:b7:4b:f3:dc:84:d9:a8:0e:d8:c7:b9:65:6e:
e6:d0:bb:8c:52:8f:69:f6:18:c9:62:87:d8:a1:14:
09:6e:a9:da:3f:79:1b:90:3b:81:0a:b6:12:d2:ea:
6f:85:fe:a1:b7:b7:ab:5d:e3:18:ea:27:8a:d2:19:
79:3e:27:2e:e2:89:68:c2:da:fc:af:06:04:a1:d8:
f5:6f:57:2a:db:ea:9c:48:08:e1:25:b0:e1:2a:b8:
54:4d:f8:be:25:b9:17:45:86:65:36:cd:0f:ad:6f:
29:61:2d:1a:a8:a7:72:1b:b7:04:9c:80:f1:d4:55:
e7:c6:f9:8a:92:fe:6e:11:1c:39:4f:f7:90:07:4f:
03:d7:d7:34:f8:52:23:6e:6c:7e:2c:cf:a7:0d:87:
3c:74:d7:8e:c4:00:df:45:7f:2c:6d:19:20:71:74:
1b:a6:ed:bf:34:9b:83:f2:37:47:94:b8:d9:2d:cb:
49:66:88:75:36:fe:aa:64:c1:02:7d:7c:c8:b9:12:
bb:7e:a2:33:26:34:65:b5:a0:ec:88:51:e4:b1:4c:
38:f3:38:5d:d6:34:3a:90:2d:be:2b:c5:df:fe:fa:
ea:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:4C:60:4E:E4:B2:49:0C:82:FF:B1:41:CC:8B:F7:E3:FA:79:59:35
X509v3 Authority Key Identifier:
keyid:BE:40:B3:C2:BE:78:35:D7:B3:7B:58:26:10:2F:87:46:A5:19:9D:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vkCzwr54Ndeze1gmEC-HRqUZnUk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/c71636-edd8-4d11-85e8-b834faf6aced/1/1ExgTuSySQyC_7FBzIv34_p5WTU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/c71636-edd8-4d11-85e8-b834faf6aced/1/vkCzwr54Ndeze1gmEC-HRqUZnUk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.87.76.0/23
Signature Algorithm: sha256WithRSAEncryption
c1:27:fd:e2:76:8e:cc:67:72:60:1f:b8:65:3e:18:57:d6:61:
7a:45:d8:4c:3c:3b:9e:5b:eb:f2:44:4b:0e:b9:ac:cd:26:a8:
f6:0c:a1:d2:02:79:c4:07:99:b5:d7:85:97:59:e9:99:4f:53:
3e:7f:4e:a3:47:b4:c3:2a:43:03:58:6f:04:e4:30:b5:81:e5:
f1:00:fd:02:3d:b1:b8:f1:57:d7:15:2a:ba:22:34:1f:b8:71:
8a:69:3b:32:f9:5e:4b:10:5d:2e:7e:bb:31:2f:da:44:56:ed:
38:00:0f:56:6a:a8:db:b9:3a:0b:ed:38:ab:e0:14:6f:e3:e8:
44:62:8e:64:c6:b6:b4:02:29:14:19:c3:49:58:dc:c6:89:4d:
52:79:c3:d4:26:9a:69:60:d8:d9:4d:e1:7d:19:b6:ac:c8:b5:
ba:82:3b:53:e9:19:c5:c8:15:4b:66:c2:1a:1c:8e:67:71:e8:
a7:74:20:9a:1e:e7:a0:d1:32:81:e0:ab:b8:63:0d:31:33:35:
37:0a:e2:10:84:19:0c:7f:c0:e2:ce:b0:9b:43:1c:4f:bf:e4:
ee:e6:01:48:90:28:8c:e9:68:6f:b9:b9:8b:f3:af:eb:41:85:
e1:2f:95:0a:3f:85:3d:c4:8b:8f:1a:4a:1f:ca:1a:5d:f4:fc:
26:20:51:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 1 23:46:37 2025 by rpki-client on console.sobornost.net