Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/Bbv2QAFPf4Szau3NTd0aayAiypc.roa
File: Bbv2QAFPf4Szau3NTd0aayAiypc.roa (raw, json)
Hash identifier: cRocTgGmyLRnpI3qcdUdz3Vd6OE/CS3oghy6+UyVfVc=
Subject key identifier: 05:BB:F6:40:01:4F:7F:84:B3:6A:ED:CD:4D:DD:1A:6B:20:22:CA:97
Certificate issuer: /CN=0291d4de130da6aace22ed99650be182497e0bcf
Certificate serial: 0194252172A414B6A7FA4BA5AF3D488FB407
Authority key identifier: 02:91:D4:DE:13:0D:A6:AA:CE:22:ED:99:65:0B:E1:82:49:7E:0B:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ApHU3hMNpqrOIu2ZZQvhgkl-C88.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/Bbv2QAFPf4Szau3NTd0aayAiypc.roa
Signing time: Thu 02 Jan 2025 03:48:56 +0000
ROA not before: Thu 02 Jan 2025 03:48:56 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 25415
IP address blocks: 185.27.8.0/22 maxlen: 22
193.107.184.0/22 maxlen: 22
2a00:8920::/32 maxlen: 32
2a0c:9bc0::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:21:72:a4:14:b6:a7:fa:4b:a5:af:3d:48:8f:b4:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0291d4de130da6aace22ed99650be182497e0bcf
Validity
Not Before: Jan 2 03:48:56 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=05bbf640014f7f84b36aedcd4ddd1a6b2022ca97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:f0:e5:88:ee:7f:58:9f:76:33:75:c0:a8:70:
17:54:ee:64:3b:a2:51:8e:76:84:7e:7a:61:ff:d0:
0f:f6:af:b1:16:b1:7c:66:e8:da:c8:29:1a:be:77:
0d:93:fd:d0:06:77:66:f4:0d:d1:83:50:72:17:58:
ce:89:71:4b:db:e5:b7:93:76:7e:07:dd:1c:dc:61:
33:b5:b2:10:7b:d9:3e:5c:ad:96:59:2d:b7:4f:97:
e4:35:d5:c2:b4:25:b2:4b:a7:f1:f9:ba:8f:2d:9f:
0e:33:84:7a:ce:6f:5e:f4:55:e8:cf:6d:00:a5:63:
fc:be:08:5f:fa:27:44:9d:29:6c:25:80:3c:59:96:
f2:82:e5:9d:d9:31:5b:aa:ce:78:43:56:88:9d:ad:
09:22:0b:8c:e8:c5:69:10:18:20:aa:8b:f8:05:30:
2a:0c:c6:05:50:dd:a6:83:0f:63:4f:f7:8f:2c:1f:
15:c1:b4:8e:78:a3:6a:e0:15:f8:ee:f5:a5:da:a0:
a4:54:4c:51:47:f5:f1:7d:6d:00:f5:90:0c:d2:50:
e4:01:36:ff:e9:87:3e:95:6a:ef:88:d9:c2:8f:c8:
6e:22:5c:0b:20:79:06:99:04:be:93:46:e1:f1:9a:
34:4f:db:d0:c9:b1:46:f2:64:23:8e:99:23:5b:33:
0c:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:BB:F6:40:01:4F:7F:84:B3:6A:ED:CD:4D:DD:1A:6B:20:22:CA:97
X509v3 Authority Key Identifier:
keyid:02:91:D4:DE:13:0D:A6:AA:CE:22:ED:99:65:0B:E1:82:49:7E:0B:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ApHU3hMNpqrOIu2ZZQvhgkl-C88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/Bbv2QAFPf4Szau3NTd0aayAiypc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/ApHU3hMNpqrOIu2ZZQvhgkl-C88.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.27.8.0/22
193.107.184.0/22
IPv6:
2a00:8920::/32
2a0c:9bc0::/29
Signature Algorithm: sha256WithRSAEncryption
38:f4:7c:33:37:48:24:64:c1:b4:2a:cf:9c:fd:a8:bd:6e:85:
a2:ed:5a:0f:cc:2d:f4:4c:29:4e:d9:6c:fb:3a:8e:37:2b:77:
21:c7:cb:6f:6b:d6:db:30:98:4f:4d:f7:d7:94:34:41:16:0b:
fe:d5:e4:24:af:f4:21:f7:15:15:c7:29:27:cf:e4:82:ad:4c:
e3:40:9a:e4:50:83:86:b0:36:04:5b:56:ba:fc:45:ab:df:98:
98:23:f7:ea:3b:62:4a:30:c2:67:0b:45:af:44:eb:d9:c6:17:
9b:e0:8e:cf:db:67:f7:24:48:9d:8c:6e:f5:48:8c:4f:e5:b7:
f4:ec:87:d3:88:9f:83:fe:64:a4:1e:3c:cf:d4:9b:db:c0:40:
3e:a8:66:c0:c0:68:45:2a:cf:81:32:21:5d:38:78:b7:0b:2a:
46:22:13:ab:bf:da:75:65:da:0c:fe:ef:83:40:25:9d:20:88:
64:a1:95:a7:f7:d5:49:8e:8f:98:fa:d7:06:b4:55:de:48:93:
9e:29:10:14:46:60:dd:5e:89:ae:b0:fc:66:20:f1:9c:80:fe:
da:7d:fb:1e:7c:f6:ab:54:d1:98:e9:03:61:ae:5a:12:62:91:
76:61:ae:ac:ee:2b:d6:03:35:5d:96:84:aa:f4:cd:84:ee:60:
6c:be:88:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:03 2025 by rpki-client on console.sobornost.net