Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/d43085-d94e-469d-9778-3b8ec1a65880/1/X75BC-oQSIZ_Eow4PmOQdnEFFSA.roa
File: X75BC-oQSIZ_Eow4PmOQdnEFFSA.roa (raw, json)
Hash identifier: 9fCRye0I7SNN/gpC5nOojc7Nk1BoVgXxf8JAD5uwXBE=
Subject key identifier: 5F:BE:41:0B:EA:10:48:86:7F:12:8C:38:3E:63:90:76:71:05:15:20
Certificate issuer: /CN=718b138ba935234f11ca1025d667f133f07d55fd
Certificate serial: 019427B5D021605A8739A28F69F6F61789FA
Authority key identifier: 71:8B:13:8B:A9:35:23:4F:11:CA:10:25:D6:67:F1:33:F0:7D:55:FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cYsTi6k1I08RyhAl1mfxM_B9Vf0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/d43085-d94e-469d-9778-3b8ec1a65880/1/X75BC-oQSIZ_Eow4PmOQdnEFFSA.roa
Signing time: Thu 02 Jan 2025 15:50:14 +0000
ROA not before: Thu 02 Jan 2025 15:50:14 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 202282
IP address blocks: 194.62.184.0/22 maxlen: 24
2a07:e400::/29 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:b5:d0:21:60:5a:87:39:a2:8f:69:f6:f6:17:89:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=718b138ba935234f11ca1025d667f133f07d55fd
Validity
Not Before: Jan 2 15:50:14 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=5fbe410bea1048867f128c383e63907671051520
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:34:ee:1b:34:00:ab:14:5e:db:b4:b9:e1:51:
24:65:ea:fe:81:7e:9e:f4:f7:18:fc:f4:44:43:f7:
f2:f0:db:06:e9:bf:1c:ed:c7:1f:96:bc:e6:bf:48:
c1:64:52:c4:92:a0:aa:49:b9:97:39:e6:9a:5c:cf:
9c:39:c8:c6:5c:7e:4e:2f:00:fd:0a:db:f9:57:0a:
64:0d:13:d2:9a:01:50:49:f7:cf:2e:34:98:10:62:
51:11:8b:2e:b1:a3:45:7b:d6:92:32:a7:49:ac:06:
3c:bd:f0:d9:77:da:49:4b:f8:f2:37:30:3e:b0:69:
99:b6:bc:14:64:7a:48:32:5e:00:7d:77:b3:b5:ba:
76:ae:9c:b2:0b:69:75:bd:72:5f:17:f9:ba:ee:e8:
4f:48:ee:eb:45:dd:02:9c:ad:9f:b9:c3:54:80:b9:
f7:75:30:4c:2e:1f:a9:49:4d:e2:8f:d1:4c:00:50:
a1:41:26:27:af:53:b3:9f:d3:ba:c6:e0:74:fa:4b:
14:33:2e:82:01:e9:4f:59:b3:f4:fb:74:ba:bb:65:
cb:2c:df:e0:82:89:81:08:91:c3:5d:02:a9:fb:e8:
cb:05:bd:0e:77:c6:2d:e4:a8:11:d0:5a:86:c3:d5:
2e:46:af:8c:4e:c2:a9:4d:c9:90:d5:0f:e7:94:45:
ca:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:BE:41:0B:EA:10:48:86:7F:12:8C:38:3E:63:90:76:71:05:15:20
X509v3 Authority Key Identifier:
keyid:71:8B:13:8B:A9:35:23:4F:11:CA:10:25:D6:67:F1:33:F0:7D:55:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cYsTi6k1I08RyhAl1mfxM_B9Vf0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/d43085-d94e-469d-9778-3b8ec1a65880/1/X75BC-oQSIZ_Eow4PmOQdnEFFSA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/d43085-d94e-469d-9778-3b8ec1a65880/1/cYsTi6k1I08RyhAl1mfxM_B9Vf0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.62.184.0/22
IPv6:
2a07:e400::/29
Signature Algorithm: sha256WithRSAEncryption
b8:49:06:e3:0d:a8:df:12:ab:4a:b7:b5:6f:ff:26:59:b9:70:
71:82:d6:b8:15:50:52:3d:af:40:d8:60:d3:b1:08:47:85:20:
f0:23:a9:79:ef:d0:c1:a0:bb:0c:a8:bf:4d:0f:2a:3f:23:af:
b7:26:98:32:90:5f:63:1d:c1:50:bd:d8:14:3f:64:e6:9d:06:
a6:7f:95:78:01:ae:21:f2:79:18:26:aa:57:ca:e1:5b:11:23:
c7:e8:3a:9c:92:2e:c9:af:c0:17:9d:79:12:fd:6c:c3:51:09:
6c:89:58:31:26:dc:24:c2:5f:a3:67:1a:e5:e3:72:7a:bc:84:
13:59:bc:4c:d7:34:98:9f:37:b4:bf:5d:80:e2:6e:ab:bf:a3:
f3:45:51:d5:78:dc:d3:3d:34:b1:1e:13:2c:5c:c8:de:55:7c:
4b:41:dd:d9:c1:0d:01:50:11:5d:5b:3f:ed:09:20:78:e3:3d:
bc:af:4b:7a:52:99:f0:a6:5c:df:96:5e:2d:af:f1:ce:47:88:
af:ac:bd:e2:f8:0f:9d:42:2a:e6:da:cb:eb:c2:8c:86:39:e0:
9d:0e:24:37:6a:49:19:19:06:56:e4:ad:aa:a6:af:11:91:e9:
58:d6:42:bc:54:90:7e:74:a2:b2:0d:90:8f:f8:b4:91:42:0e:
8d:e9:b9:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:19 2025 by rpki-client on console.sobornost.net