Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/138046-7be0-4017-a98b-a7247e9d5f3a/1/VanRC4jdlI0kqk4muFN6P2QYkkM.roa
File: VanRC4jdlI0kqk4muFN6P2QYkkM.roa (raw, json)
Hash identifier: UwcKA2rVfnEdm7lIuYa2eDQEpkXJsNm7mizYt8PPLFk=
Subject key identifier: 55:A9:D1:0B:88:DD:94:8D:24:AA:4E:26:B8:53:7A:3F:64:18:92:43
Certificate issuer: /CN=b343514630dc17f3fe9b51dd434184d0b62b03c0
Certificate serial: 019421441276977B7E1AE283D401C8431A33
Authority key identifier: B3:43:51:46:30:DC:17:F3:FE:9B:51:DD:43:41:84:D0:B6:2B:03:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s0NRRjDcF_P-m1HdQ0GE0LYrA8A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/138046-7be0-4017-a98b-a7247e9d5f3a/1/VanRC4jdlI0kqk4muFN6P2QYkkM.roa
Signing time: Wed 01 Jan 2025 09:48:16 +0000
ROA not before: Wed 01 Jan 2025 09:48:16 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 16222
IP address blocks: 185.37.60.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:44:12:76:97:7b:7e:1a:e2:83:d4:01:c8:43:1a:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b343514630dc17f3fe9b51dd434184d0b62b03c0
Validity
Not Before: Jan 1 09:48:16 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=55a9d10b88dd948d24aa4e26b8537a3f64189243
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:98:5c:f3:34:6f:69:3c:83:e7:d7:6b:1f:6a:
d7:f9:c4:9f:b0:99:96:20:ec:39:22:ba:99:5f:24:
bc:89:26:65:cb:36:ba:d4:66:98:be:09:ec:07:6f:
03:5c:8b:54:6c:01:84:b0:2d:1f:b0:00:82:05:f9:
e5:fd:a2:db:95:09:b7:4a:d4:0b:f3:3d:52:b3:76:
b0:f4:ea:62:b3:65:94:ca:ad:8c:31:6b:27:a9:5a:
b4:e7:57:e6:c6:08:0a:d5:b9:6b:8f:7c:0c:27:ca:
11:e1:cc:e6:d2:58:0d:b4:07:e5:e5:71:46:dc:ef:
de:f2:2c:85:30:5b:8d:50:f9:b9:e3:03:18:5c:a8:
53:d1:19:d1:2c:c3:39:0a:1d:e4:fd:c4:39:7a:6b:
bb:49:b2:62:dd:92:7c:c1:ff:10:6f:76:d6:34:f2:
31:54:3f:ee:c2:ed:a0:ba:50:e0:73:c0:72:fa:9f:
f1:c8:cc:b2:33:ce:b4:d1:fe:63:ad:f5:57:44:32:
3c:a3:d1:70:42:ff:0f:7a:10:62:54:6b:6b:15:ec:
92:31:a4:99:fa:02:65:bc:e5:91:b3:0a:a6:de:15:
3e:49:f5:b5:9a:b4:49:1a:e6:13:c6:4b:0a:1f:df:
af:79:11:76:5d:1c:bd:d9:4c:eb:58:bc:4a:21:c9:
c1:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:A9:D1:0B:88:DD:94:8D:24:AA:4E:26:B8:53:7A:3F:64:18:92:43
X509v3 Authority Key Identifier:
keyid:B3:43:51:46:30:DC:17:F3:FE:9B:51:DD:43:41:84:D0:B6:2B:03:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s0NRRjDcF_P-m1HdQ0GE0LYrA8A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/138046-7be0-4017-a98b-a7247e9d5f3a/1/VanRC4jdlI0kqk4muFN6P2QYkkM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/138046-7be0-4017-a98b-a7247e9d5f3a/1/s0NRRjDcF_P-m1HdQ0GE0LYrA8A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.37.60.0/24
Signature Algorithm: sha256WithRSAEncryption
79:0d:4c:ee:b7:40:a8:0a:d9:47:10:65:03:d0:cd:cf:49:c5:
c5:06:69:79:d4:ed:76:c6:5f:97:8d:11:39:c0:60:46:51:17:
20:54:26:21:7e:ad:e8:c1:89:5b:0b:bc:22:7e:9f:d5:3b:de:
99:71:26:58:a5:98:81:bd:35:d3:e8:83:2f:20:c8:55:a5:98:
86:9d:45:8c:5e:e3:94:a8:30:25:7a:b8:1a:7e:64:52:2f:62:
86:54:39:64:63:66:6d:e5:d0:ab:63:5c:63:30:f8:c6:58:c7:
12:ad:50:5b:e1:95:90:6f:bb:8f:d6:f3:e4:78:8e:6d:e2:e5:
66:4b:6f:1b:9f:c7:c0:c4:38:93:ea:f3:28:80:33:9c:63:33:
7f:44:77:cc:2a:41:f5:03:f5:4a:fe:c1:cc:90:12:b9:c9:c8:
9c:ff:87:47:ea:a1:b8:3b:98:41:7b:f6:91:1d:7e:6e:4e:22:
5a:b1:6f:d6:fb:34:39:d2:85:08:63:80:77:7f:15:8e:a5:4b:
0c:60:85:98:1d:05:3a:66:9d:33:17:42:cf:20:c8:ba:5c:35:
52:79:5f:b4:62:5b:7c:8e:cb:29:a2:5e:0e:2a:80:22:5b:b0:
92:f0:e3:15:8a:2d:c8:bf:ba:53:30:f3:22:38:6e:b4:aa:32:
d4:9f:72:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:03 2025 by rpki-client on console.sobornost.net