Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/edecb7-bd59-4ebe-b201-6cf131c1caac/1/JAwkYlt_gNZ54Td8tq5GWdme2ug.roa
File: JAwkYlt_gNZ54Td8tq5GWdme2ug.roa (raw, json)
Hash identifier: zUyQFLpVWmBaNa+EvYNx5U2/U4IK1mMjW0Y/zg4R97w=
Subject key identifier: 24:0C:24:62:5B:7F:80:D6:79:E1:37:7C:B6:AE:46:59:D9:9E:DA:E8
Certificate issuer: /CN=6c66d5cb2f9cad3f4843f714a4dc62d7213debe8
Certificate serial: 019421B2554CD6084BDC37C7A5749254CA1B
Authority key identifier: 6C:66:D5:CB:2F:9C:AD:3F:48:43:F7:14:A4:DC:62:D7:21:3D:EB:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bGbVyy-crT9IQ_cUpNxi1yE96-g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/edecb7-bd59-4ebe-b201-6cf131c1caac/1/JAwkYlt_gNZ54Td8tq5GWdme2ug.roa
Signing time: Wed 01 Jan 2025 11:48:42 +0000
ROA not before: Wed 01 Jan 2025 11:48:42 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 205042
IP address blocks: 185.78.184.0/22 maxlen: 22
188.74.48.0/20 maxlen: 20
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:b2:55:4c:d6:08:4b:dc:37:c7:a5:74:92:54:ca:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c66d5cb2f9cad3f4843f714a4dc62d7213debe8
Validity
Not Before: Jan 1 11:48:42 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=240c24625b7f80d679e1377cb6ae4659d99edae8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:fc:75:32:89:9f:dd:f8:0c:e5:e2:10:7d:99:
ec:dc:77:77:b7:30:03:e7:bd:8a:30:6c:a9:a1:8d:
a4:b6:ff:1c:7e:73:81:1f:aa:67:23:fe:5e:39:4a:
89:f2:af:d5:87:fb:9a:e9:31:26:8f:13:86:df:5a:
b5:5c:4a:3f:49:9e:33:e9:c4:ed:f8:a0:11:5a:ea:
dc:65:c5:79:32:82:16:5f:4f:27:c8:aa:5a:ee:1f:
29:1b:cb:06:04:b1:89:3c:08:53:3c:e6:9e:d5:d9:
b4:3b:dd:1c:08:73:a3:65:b8:48:a4:84:61:0c:5e:
2c:55:29:11:16:9d:fd:83:4c:e9:ee:df:e2:43:4c:
ab:85:fa:e9:ef:c7:b9:d1:f6:a7:4d:5a:b8:9f:c4:
09:d8:4a:3d:bc:38:42:eb:5b:96:c2:32:53:f6:94:
ca:ea:d9:43:2a:ce:7b:f8:88:78:8b:6f:87:c7:46:
f7:25:f6:2f:96:02:9f:37:64:dc:49:80:fa:6d:84:
e6:2e:09:d1:97:19:ce:b8:ba:dc:38:17:23:9b:ee:
77:62:b3:21:49:c9:c3:ad:a5:00:62:5d:81:cc:b2:
ef:3b:b2:60:c9:20:c6:8d:32:d1:c8:5a:a8:2f:0c:
98:84:d6:4b:6c:ce:47:04:63:15:ed:48:1c:11:fc:
91:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:0C:24:62:5B:7F:80:D6:79:E1:37:7C:B6:AE:46:59:D9:9E:DA:E8
X509v3 Authority Key Identifier:
keyid:6C:66:D5:CB:2F:9C:AD:3F:48:43:F7:14:A4:DC:62:D7:21:3D:EB:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bGbVyy-crT9IQ_cUpNxi1yE96-g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/edecb7-bd59-4ebe-b201-6cf131c1caac/1/JAwkYlt_gNZ54Td8tq5GWdme2ug.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/edecb7-bd59-4ebe-b201-6cf131c1caac/1/bGbVyy-crT9IQ_cUpNxi1yE96-g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.78.184.0/22
188.74.48.0/20
Signature Algorithm: sha256WithRSAEncryption
06:6f:36:68:b6:4c:ab:fd:7b:77:6d:f8:bb:f6:83:ce:48:71:
01:31:94:f6:30:7d:c5:10:87:3a:e2:9b:73:25:a2:4b:5c:de:
2b:92:16:73:3d:45:76:b6:58:33:d4:6a:20:5f:4a:fa:a6:ab:
88:91:c1:8e:69:5b:6e:42:09:ff:3e:02:71:39:30:9e:49:97:
3b:2e:37:61:2e:a7:b0:92:6d:ab:83:84:98:bc:4c:81:bf:4d:
e4:07:e1:c8:4c:87:08:ec:26:04:2d:3b:4d:33:6c:41:d1:94:
9c:e1:4f:e1:e6:29:06:32:00:39:48:74:0e:9e:92:85:f5:2b:
0e:91:ed:e5:02:57:e4:6b:8f:cc:1a:71:d1:15:77:f8:53:45:
8a:b3:9c:2e:66:6b:00:e1:ec:a5:d8:fc:77:63:3c:48:4a:05:
f8:c2:9f:d4:1e:e8:99:d0:7e:8b:3f:fb:2e:81:a8:43:97:33:
09:e2:ae:f2:65:ed:d8:fa:8d:dc:01:2f:74:12:50:73:63:49:
69:e3:e8:4a:4c:fa:6f:d2:a6:ff:e1:3b:e9:88:c3:a0:fe:14:
89:2f:1f:db:ca:e3:07:9f:a6:b4:ce:1a:63:36:a6:9e:0e:2f:
0c:4b:55:08:c2:17:34:b8:ff:66:b1:a9:6c:ef:9c:13:aa:a2:
55:3a:c1:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:19 2025 by rpki-client on console.sobornost.net