Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/7008fc-acc4-4ef5-8fb9-90795fb3928c/1/Ws-3to11mYQT65QlLPSv_a64Aow.roa
File: Ws-3to11mYQT65QlLPSv_a64Aow.roa (raw, json)
Hash identifier: bLLs3zCR6QgpvfFD4PT4W3Xh5DmPnAizoHMgUfONgYQ=
Subject key identifier: 5A:CF:B7:B6:8D:75:99:84:13:EB:94:25:2C:F4:AF:FD:AE:B8:02:8C
Certificate issuer: /CN=327da22cb90138b050837edcf1ec36a5ab8c42ac
Certificate serial: 019427B3875E857C1D16436AD988955E1180
Authority key identifier: 32:7D:A2:2C:B9:01:38:B0:50:83:7E:DC:F1:EC:36:A5:AB:8C:42:AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Mn2iLLkBOLBQg37c8ew2pauMQqw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/7008fc-acc4-4ef5-8fb9-90795fb3928c/1/Ws-3to11mYQT65QlLPSv_a64Aow.roa
Signing time: Thu 02 Jan 2025 15:47:44 +0000
ROA not before: Thu 02 Jan 2025 15:47:44 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 199477
IP address blocks: 185.11.52.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:b3:87:5e:85:7c:1d:16:43:6a:d9:88:95:5e:11:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=327da22cb90138b050837edcf1ec36a5ab8c42ac
Validity
Not Before: Jan 2 15:47:44 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=5acfb7b68d75998413eb94252cf4affdaeb8028c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:12:18:12:8d:d1:19:e2:b9:d9:c3:cb:ca:67:
6b:eb:d3:4d:dc:a4:38:e4:8c:88:9c:3c:3e:47:f2:
3a:14:e0:41:6f:5a:5c:07:b5:8d:78:d4:7c:5b:cb:
b7:ca:7c:9b:79:e7:46:96:f6:59:eb:4c:52:35:b1:
d0:01:d2:96:c2:b7:b2:af:e6:2e:2f:72:e9:29:26:
75:35:0d:7e:fa:96:43:0f:bc:30:1b:1d:44:5f:8e:
bf:77:0a:70:86:1e:5c:f7:b2:c7:00:84:a8:76:de:
0d:e9:e4:6f:5a:8b:3d:86:6d:6a:c8:67:f4:43:45:
2b:0a:a2:01:a7:7a:de:b1:b6:2d:b8:90:06:7a:25:
b9:8b:a2:ba:e6:cd:ce:a9:34:d1:80:f8:e9:99:35:
ff:db:cb:52:29:e0:a6:69:f6:6b:cc:41:50:95:db:
8a:b4:f9:a1:7a:2c:fc:7d:b3:4c:77:60:00:5c:05:
4c:91:c5:97:c2:03:24:b6:89:0c:9b:0f:ea:b0:e8:
af:b7:fb:b2:ec:ae:66:7a:e6:72:1e:9d:3f:37:79:
cd:2a:85:56:1f:dd:d1:b5:45:ef:6e:9d:12:b8:76:
c7:ec:cb:86:77:b5:1a:87:35:4a:12:67:a6:1d:54:
3e:fc:2e:93:31:e0:0c:7a:17:3a:d5:a5:1a:05:cb:
58:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:CF:B7:B6:8D:75:99:84:13:EB:94:25:2C:F4:AF:FD:AE:B8:02:8C
X509v3 Authority Key Identifier:
keyid:32:7D:A2:2C:B9:01:38:B0:50:83:7E:DC:F1:EC:36:A5:AB:8C:42:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Mn2iLLkBOLBQg37c8ew2pauMQqw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/7008fc-acc4-4ef5-8fb9-90795fb3928c/1/Ws-3to11mYQT65QlLPSv_a64Aow.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/7008fc-acc4-4ef5-8fb9-90795fb3928c/1/Mn2iLLkBOLBQg37c8ew2pauMQqw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.11.52.0/22
Signature Algorithm: sha256WithRSAEncryption
8e:e1:da:7d:c2:d4:35:c6:d4:47:87:9c:d8:78:b0:b0:9a:ad:
53:a0:22:d5:c7:1e:72:b4:63:ec:57:d2:80:8d:d7:fd:c9:eb:
73:84:7a:e5:d7:fa:c0:e1:58:89:2d:c6:57:31:f1:07:91:a0:
8b:98:e3:a0:19:13:c1:50:cc:9a:c4:9d:c4:02:2d:5e:36:04:
30:2a:08:14:f4:18:b7:e5:90:b3:d5:84:6f:17:5d:8f:45:99:
2b:d6:05:4f:05:a2:5c:84:79:91:c6:f0:9b:a3:45:50:03:22:
ca:bf:dd:55:8d:81:71:b2:f5:64:ad:f7:e4:cb:5f:26:72:7c:
9c:8c:e5:de:70:05:1a:be:b7:e7:8b:66:f7:b3:c4:dd:fd:72:
8b:fe:c3:36:40:e1:46:a7:32:1a:f3:7f:37:4f:dd:45:57:6a:
16:97:ef:96:bf:93:95:cb:d9:72:e7:3f:0c:da:76:77:2d:14:
50:c1:86:f1:e1:30:5a:c4:d4:c4:53:02:e9:45:81:2b:35:e2:
0c:bc:e4:df:50:88:d2:4f:59:bc:f2:c0:06:d1:03:12:4a:78:
70:fa:6a:08:1a:fd:29:3c:c9:6e:56:8a:aa:a7:c5:98:4e:41:
36:74:0e:e7:aa:ef:52:fc:c2:f3:fe:f8:71:19:8f:82:b9:96:
a1:5e:88:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:22 2025 by rpki-client on console.sobornost.net