Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/33051d-c2a0-4ac7-b7f3-90adec85dd85/1/dCiNIBkWF2RsTfBzLCoJZdfeZWw.roa
File: dCiNIBkWF2RsTfBzLCoJZdfeZWw.roa (raw, json)
Hash identifier: YbTpFGUkZZd0ope4WSof9klg7VlGCuc2kGLkcWvVqI4=
Subject key identifier: 74:28:8D:20:19:16:17:64:6C:4D:F0:73:2C:2A:09:65:D7:DE:65:6C
Certificate issuer: /CN=c017a4a82172b206afee1c13d296ee260385b571
Certificate serial: 01941FFAB76E0B03D81DF27EDA60398A6E2D
Authority key identifier: C0:17:A4:A8:21:72:B2:06:AF:EE:1C:13:D2:96:EE:26:03:85:B5:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wBekqCFysgav7hwT0pbuJgOFtXE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/33051d-c2a0-4ac7-b7f3-90adec85dd85/1/dCiNIBkWF2RsTfBzLCoJZdfeZWw.roa
Signing time: Wed 01 Jan 2025 03:48:32 +0000
ROA not before: Wed 01 Jan 2025 03:48:32 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 200874
IP address blocks: 185.89.116.0/22 maxlen: 24
2a03:8320::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:fa:b7:6e:0b:03:d8:1d:f2:7e:da:60:39:8a:6e:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c017a4a82172b206afee1c13d296ee260385b571
Validity
Not Before: Jan 1 03:48:32 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=74288d20191617646c4df0732c2a0965d7de656c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:a4:ae:59:ef:45:9e:91:c4:28:7d:08:12:e3:
8e:fc:59:a9:9f:93:73:b2:18:a3:da:76:3c:56:ad:
c1:9a:c6:4d:e5:45:ef:58:75:b2:c0:d4:9c:a0:bc:
ba:b1:3c:64:d7:8b:b7:2e:3d:06:61:23:41:88:8f:
5b:46:74:5d:f3:a4:94:89:d1:a1:e2:ba:a1:f5:33:
6e:1f:43:a8:f1:d0:08:02:b5:23:ef:b9:1b:97:ba:
f0:01:52:76:db:8c:21:65:4b:b0:bb:94:b8:00:df:
ca:a4:6a:43:48:5e:1a:51:37:90:34:bf:af:e3:52:
19:e7:1f:6a:96:11:c2:09:40:bc:ef:3f:c6:6a:df:
b7:c4:dc:55:52:39:6d:36:44:f0:0d:6c:67:ce:18:
17:02:27:d5:c5:f6:12:6c:fa:dc:fe:06:49:3f:54:
2d:19:f7:4f:53:31:72:61:cd:85:63:6b:78:78:9d:
5f:5a:ee:32:c1:2f:53:84:33:99:e4:0e:7f:df:d2:
f6:53:cd:55:3a:d4:e7:96:34:07:72:0c:0d:af:48:
03:3b:d3:66:7b:d6:9e:4f:4c:b3:d1:43:58:88:54:
fb:31:22:f0:5d:ea:1a:71:96:19:38:6d:56:73:49:
f2:bf:b5:bf:18:be:5a:62:42:79:44:01:4b:76:7e:
de:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:28:8D:20:19:16:17:64:6C:4D:F0:73:2C:2A:09:65:D7:DE:65:6C
X509v3 Authority Key Identifier:
keyid:C0:17:A4:A8:21:72:B2:06:AF:EE:1C:13:D2:96:EE:26:03:85:B5:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wBekqCFysgav7hwT0pbuJgOFtXE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/33051d-c2a0-4ac7-b7f3-90adec85dd85/1/dCiNIBkWF2RsTfBzLCoJZdfeZWw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/33051d-c2a0-4ac7-b7f3-90adec85dd85/1/wBekqCFysgav7hwT0pbuJgOFtXE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.89.116.0/22
IPv6:
2a03:8320::/32
Signature Algorithm: sha256WithRSAEncryption
0e:85:ce:3d:eb:70:0a:22:43:81:13:cc:f5:73:c5:c6:ad:79:
42:6e:f7:0c:26:67:f8:bf:d6:10:9c:3a:6d:b4:7a:72:9b:be:
43:ca:2a:19:27:5c:5e:1e:04:70:c0:ba:b1:2d:64:74:60:4e:
04:f5:ee:89:39:ea:b5:d0:71:c9:4e:c1:7d:1d:b8:fb:81:73:
a1:ab:67:6d:95:c8:51:05:64:5d:1c:05:08:38:02:38:c1:84:
a2:76:0d:f3:58:dc:05:a5:a7:fb:01:b2:8c:b6:07:a5:91:62:
24:4b:36:61:22:e8:2c:76:67:c5:e7:7e:aa:a1:27:c1:8b:cc:
dc:a7:71:f7:04:16:c4:3a:a7:23:b6:af:e7:81:e3:65:07:26:
71:9d:ec:c8:82:ee:cc:19:9c:c5:89:62:75:85:4f:30:fa:cd:
9a:44:93:77:34:4a:90:99:74:c4:24:f1:7f:cd:2d:4b:3b:50:
c4:cf:03:e0:45:a9:ef:6b:c7:9a:8b:df:e4:7f:4b:e7:56:66:
a4:8c:51:bb:2e:1b:9a:1b:f9:5b:35:75:2b:ce:49:3d:c4:ae:
f5:9c:f5:63:e6:67:34:0c:e3:63:2f:90:41:07:4a:17:ce:eb:
53:9f:db:b2:be:4d:ff:6b:7e:79:3e:91:e1:6f:4b:6d:20:ca:
ad:e2:39:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:26:49 2025 by rpki-client on console.sobornost.net