Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/c9ee8c-574d-4cf6-a008-11b52c24a112/1/VH29zUdUoDMFkb4I3pkZNKsYstE.roa
File: VH29zUdUoDMFkb4I3pkZNKsYstE.roa (raw, json)
Hash identifier: 1yNsQGwt5wFqKyahcKf4KUa3JWkLXkh+qcfoDSK2Rlw=
Subject key identifier: 54:7D:BD:CD:47:54:A0:33:05:91:BE:08:DE:99:19:34:AB:18:B2:D1
Certificate issuer: /CN=2b2830617c43c8cbc89af3cb2a74ea5dd00fe6ea
Certificate serial: 01941FFAB185A240DF644716FF636293F963
Authority key identifier: 2B:28:30:61:7C:43:C8:CB:C8:9A:F3:CB:2A:74:EA:5D:D0:0F:E6:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KygwYXxDyMvImvPLKnTqXdAP5uo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/c9ee8c-574d-4cf6-a008-11b52c24a112/1/VH29zUdUoDMFkb4I3pkZNKsYstE.roa
Signing time: Wed 01 Jan 2025 03:48:30 +0000
ROA not before: Wed 01 Jan 2025 03:48:30 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 204758
IP address blocks: 185.240.228.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:fa:b1:85:a2:40:df:64:47:16:ff:63:62:93:f9:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b2830617c43c8cbc89af3cb2a74ea5dd00fe6ea
Validity
Not Before: Jan 1 03:48:30 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=547dbdcd4754a0330591be08de991934ab18b2d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:b7:e9:b1:0e:e4:df:ef:2b:d4:05:b9:db:de:
ea:57:3c:71:49:a3:93:d7:f3:82:57:9a:f2:60:38:
ab:97:64:98:b0:e4:d3:37:20:93:ba:01:8e:29:4a:
ac:a7:cc:5c:92:a0:5f:1e:f7:53:f1:74:35:bc:a0:
a0:71:01:c5:44:b3:5c:bd:59:6f:5b:7c:1a:0f:bd:
b2:a0:4b:de:44:a1:70:17:21:d9:33:fc:49:f9:4c:
93:39:d2:df:cf:f8:1a:93:3c:2b:de:1f:87:a0:d5:
86:28:a6:4d:2d:ab:b5:f1:57:cc:9a:a3:4d:dd:d5:
db:4c:1c:61:b5:d4:46:31:8a:c0:c0:37:e3:98:5a:
1e:1e:f3:79:1c:0b:31:43:ae:c5:7e:5c:1f:b3:ca:
33:d1:b0:71:69:7e:7f:bc:3e:d7:4a:d9:f9:33:21:
9a:ce:be:7e:82:a6:1d:9a:35:55:f2:d3:a6:ab:37:
58:21:3a:ab:2d:69:16:73:bd:11:4b:a0:f2:9f:7a:
0b:c5:b1:98:93:f9:14:45:15:52:38:2e:5c:ad:9d:
55:be:62:dc:84:75:2a:da:36:9a:46:01:e0:9e:39:
87:3d:fc:10:0a:98:50:85:82:e8:b2:a7:9f:af:63:
f0:70:80:71:8c:e8:d4:63:2c:ff:b0:85:a6:c8:c0:
bc:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:7D:BD:CD:47:54:A0:33:05:91:BE:08:DE:99:19:34:AB:18:B2:D1
X509v3 Authority Key Identifier:
keyid:2B:28:30:61:7C:43:C8:CB:C8:9A:F3:CB:2A:74:EA:5D:D0:0F:E6:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KygwYXxDyMvImvPLKnTqXdAP5uo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/c9ee8c-574d-4cf6-a008-11b52c24a112/1/VH29zUdUoDMFkb4I3pkZNKsYstE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/c9ee8c-574d-4cf6-a008-11b52c24a112/1/KygwYXxDyMvImvPLKnTqXdAP5uo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.240.228.0/22
Signature Algorithm: sha256WithRSAEncryption
85:fa:97:50:f8:c3:95:c4:ae:f1:5a:ae:ad:8f:e6:48:24:28:
b8:a4:05:01:31:5c:9a:65:45:90:4d:9d:20:db:17:a4:40:f6:
16:55:72:fb:45:e4:d9:29:f7:5d:5a:5a:7f:bb:e3:0a:e7:31:
c3:f3:12:5d:4a:e8:85:60:c2:f9:f8:a8:15:ea:60:9d:ba:85:
9d:2b:f2:4d:65:71:00:2e:f8:3c:d8:ff:d4:58:7b:80:dd:47:
f1:e5:b9:1d:f4:68:28:ef:09:fa:41:dd:12:50:7d:21:34:90:
ab:58:62:d9:33:e3:f5:0a:02:4f:41:a0:f5:76:30:69:05:0f:
15:07:a1:8f:d2:c9:4e:fd:83:18:81:3c:6e:06:9b:44:e1:7a:
21:6f:13:d4:32:6b:8c:2b:11:13:0f:49:d7:9f:6e:36:ec:07:
ed:cd:e1:6f:67:8a:4c:68:35:db:69:99:b3:29:de:00:b0:db:
0a:b8:86:21:eb:c1:16:50:12:d9:a9:68:6e:0d:87:2e:5d:fe:
35:8e:3b:e4:2b:25:79:e1:19:f0:c4:9e:b8:1a:34:b6:52:ff:
25:0a:e2:00:ef:49:04:70:45:76:eb:05:dc:d1:35:5e:07:0c:
45:4e:4f:84:5b:a5:23:a6:3f:6d:db:19:a8:b0:31:c8:75:59:
2b:38:30:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:18 2025 by rpki-client on console.sobornost.net