Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/1f82e5-3098-453a-af64-cab717a809e7/1/DWyS6ktuYXD1HWtRdim_tw6aAHw.roa
File: DWyS6ktuYXD1HWtRdim_tw6aAHw.roa (raw, json)
Hash identifier: ZpPs8QmClGInLrYdfgabA/tiTnRpT7Agrz+vwk6fAyc=
Subject key identifier: 0D:6C:92:EA:4B:6E:61:70:F5:1D:6B:51:76:29:BF:B7:0E:9A:00:7C
Certificate issuer: /CN=b66779f2055b254f5d5b3292eeaf0dd5797737a6
Certificate serial: 019425FDE36717114A75305E18ED67E90583
Authority key identifier: B6:67:79:F2:05:5B:25:4F:5D:5B:32:92:EE:AF:0D:D5:79:77:37:A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tmd58gVbJU9dWzKS7q8N1Xl3N6Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/1f82e5-3098-453a-af64-cab717a809e7/1/DWyS6ktuYXD1HWtRdim_tw6aAHw.roa
Signing time: Thu 02 Jan 2025 07:49:43 +0000
ROA not before: Thu 02 Jan 2025 07:49:43 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 205303
IP address blocks: 147.185.237.0/24 maxlen: 24
167.94.110.0/24 maxlen: 24
167.94.174.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:fd:e3:67:17:11:4a:75:30:5e:18:ed:67:e9:05:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b66779f2055b254f5d5b3292eeaf0dd5797737a6
Validity
Not Before: Jan 2 07:49:43 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=0d6c92ea4b6e6170f51d6b517629bfb70e9a007c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:47:7d:4b:ce:a2:36:06:d1:bc:4c:de:a7:1c:
c3:2a:89:97:4d:af:27:a8:a3:a8:47:44:7f:b2:54:
20:d9:2f:0b:73:b7:1e:be:17:2d:40:fc:a7:db:f3:
57:40:da:8c:9e:ae:ed:ee:d6:23:13:47:6c:53:46:
33:d1:ec:6e:d5:5d:e9:d8:98:5d:22:f1:ca:22:3c:
38:6e:18:d1:cc:13:3d:9a:d0:d9:43:e0:9c:f4:ca:
78:4e:79:70:a7:71:cb:df:b3:fb:8b:e7:1a:34:f6:
9d:e8:b1:47:4e:8c:36:44:4a:1e:7c:b4:51:bd:2a:
ca:23:65:90:83:f7:4a:ed:a8:4c:cf:4f:5a:92:c2:
cb:df:c0:75:42:01:77:1b:72:84:e8:38:cb:08:c5:
b8:4a:b9:71:1b:30:4c:17:af:c0:cf:e8:12:71:78:
62:e4:f1:1a:5b:eb:a5:85:a3:6d:04:a2:b0:70:ea:
91:6f:22:1e:2f:31:28:fc:f2:67:c2:04:9c:e9:ff:
c1:e5:44:f3:ab:0a:85:75:35:53:c3:a3:0b:64:ee:
e9:5a:81:e6:72:88:56:a9:f1:c9:16:28:28:fa:2a:
05:2a:a6:66:e2:9a:39:81:27:b2:59:08:9b:0c:9a:
3e:47:8d:c0:38:8b:3c:30:38:13:8d:bb:d6:a9:34:
42:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:6C:92:EA:4B:6E:61:70:F5:1D:6B:51:76:29:BF:B7:0E:9A:00:7C
X509v3 Authority Key Identifier:
keyid:B6:67:79:F2:05:5B:25:4F:5D:5B:32:92:EE:AF:0D:D5:79:77:37:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tmd58gVbJU9dWzKS7q8N1Xl3N6Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/1f82e5-3098-453a-af64-cab717a809e7/1/DWyS6ktuYXD1HWtRdim_tw6aAHw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/1f82e5-3098-453a-af64-cab717a809e7/1/tmd58gVbJU9dWzKS7q8N1Xl3N6Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.185.237.0/24
167.94.110.0/24
167.94.174.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:d8:55:ca:e9:9c:fd:8d:0d:87:d0:12:8b:bb:f2:bb:f8:6c:
21:3d:83:6d:52:76:56:dc:ee:f2:66:2c:ee:4e:45:75:bb:b9:
21:c0:75:6e:a8:6b:80:12:d2:b5:4e:7f:70:b5:96:9d:de:59:
0f:d9:dc:83:59:b5:c8:03:98:33:96:b5:9c:ce:76:73:bb:cc:
9a:2f:e8:c4:20:6c:c2:66:32:b1:d8:75:50:ab:7c:0d:c7:5b:
eb:e4:ee:35:ff:96:16:55:e5:2a:73:04:16:11:2f:bb:ed:37:
63:e7:98:c5:01:7d:48:36:9b:53:39:b2:1a:23:2c:5e:0b:ac:
61:24:c2:2b:ec:27:64:40:55:05:60:c9:be:7f:b0:49:51:fa:
26:58:22:a8:d9:dc:8c:8b:35:c1:0e:40:7c:66:5e:1c:81:a6:
3a:50:b7:e7:c6:3d:29:c3:16:b3:70:62:ee:20:00:89:32:2a:
98:1c:6f:18:fa:44:64:50:d5:42:2b:09:5a:6f:fb:5f:ae:a0:
54:0a:90:b0:94:d8:75:f3:7a:5d:17:6a:a1:83:58:71:a4:f9:
23:e5:27:9a:7f:22:31:56:98:2f:39:4a:de:13:3d:4b:2f:d3:
14:a1:7b:01:0c:e4:e6:e6:c2:9d:9f:68:89:6e:dc:28:4d:e1:
36:40:60:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:26:49 2025 by rpki-client on console.sobornost.net