Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/6c3702-1178-4cbd-8eba-c0384fe1b007/1/5706RB7xeG9S4d5Ob5hAT-sWDQM.roa
File: 5706RB7xeG9S4d5Ob5hAT-sWDQM.roa (raw, json)
Hash identifier: 3YUiY2PHwBycE1YPX5AAcbWdNPxFb9hnL/xR1TAUp9s=
Subject key identifier: E7:BD:3A:44:1E:F1:78:6F:52:E1:DE:4E:6F:98:40:4F:EB:16:0D:03
Certificate issuer: /CN=f31ffb54cac7f5b5768569e4197d41d7446bf1fc
Certificate serial: 0194214402A512C0FC3C9835B051E9DDC770
Authority key identifier: F3:1F:FB:54:CA:C7:F5:B5:76:85:69:E4:19:7D:41:D7:44:6B:F1:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8x_7VMrH9bV2hWnkGX1B10Rr8fw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/6c3702-1178-4cbd-8eba-c0384fe1b007/1/5706RB7xeG9S4d5Ob5hAT-sWDQM.roa
Signing time: Wed 01 Jan 2025 09:48:12 +0000
ROA not before: Wed 01 Jan 2025 09:48:12 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 29237
IP address blocks: 185.96.228.0/24 maxlen: 24
185.96.229.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:44:02:a5:12:c0:fc:3c:98:35:b0:51:e9:dd:c7:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f31ffb54cac7f5b5768569e4197d41d7446bf1fc
Validity
Not Before: Jan 1 09:48:12 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=e7bd3a441ef1786f52e1de4e6f98404feb160d03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:75:8b:04:df:03:58:9e:ab:fd:d5:db:47:6e:
ae:59:2d:76:1f:4b:95:ea:43:94:02:aa:33:5d:4d:
be:db:1e:3a:9a:a7:e1:d2:7e:96:ce:f9:4d:7f:ad:
71:ea:d6:f8:e4:29:20:0d:e7:8b:88:1d:f6:0c:c8:
b4:a7:2f:bc:f4:14:8c:38:52:26:c8:86:d7:bc:97:
1d:c6:15:59:05:29:c7:3a:3c:20:7c:87:d1:3c:db:
11:ea:17:40:35:83:cf:59:61:e2:75:1f:16:85:d7:
9c:b7:fd:ee:66:0e:12:a0:55:c7:2e:0d:3d:27:26:
08:09:ab:e6:a7:e6:1d:4f:0f:3b:d4:d7:b6:e5:1a:
8d:25:20:49:ee:69:c1:f6:8d:f8:04:e1:6b:b0:75:
9f:cd:e9:78:16:5d:78:42:58:02:36:63:23:e3:a2:
67:25:3e:b2:57:6b:38:f4:2a:99:ba:7e:83:68:c3:
05:e0:0b:14:bc:9f:c0:ee:d9:0f:29:f3:a6:2b:1f:
21:1f:c5:27:3c:b5:d3:07:ef:57:f9:f3:af:9d:4d:
36:f0:48:3d:46:5f:b0:a9:8a:75:9c:78:f5:be:6d:
0b:58:2e:ef:45:88:9f:6a:17:4e:8b:58:18:a1:be:
67:8f:3a:cc:ec:4d:b3:cf:de:5c:1d:f5:cc:d1:da:
ed:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:BD:3A:44:1E:F1:78:6F:52:E1:DE:4E:6F:98:40:4F:EB:16:0D:03
X509v3 Authority Key Identifier:
keyid:F3:1F:FB:54:CA:C7:F5:B5:76:85:69:E4:19:7D:41:D7:44:6B:F1:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8x_7VMrH9bV2hWnkGX1B10Rr8fw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/6c3702-1178-4cbd-8eba-c0384fe1b007/1/5706RB7xeG9S4d5Ob5hAT-sWDQM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/6c3702-1178-4cbd-8eba-c0384fe1b007/1/8x_7VMrH9bV2hWnkGX1B10Rr8fw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.96.228.0/23
Signature Algorithm: sha256WithRSAEncryption
2d:d7:b8:d8:ce:ef:91:73:76:09:13:c7:f9:09:8a:d2:db:91:
95:e8:6c:3e:a1:17:63:b4:97:bc:b3:fe:85:be:c7:ae:a9:c2:
02:c1:88:16:66:dd:96:6e:ed:42:fc:23:69:95:a6:4f:de:7c:
27:71:1b:a5:8f:38:41:0b:74:dc:8a:38:d5:f9:27:8a:57:b1:
eb:d9:8d:3a:72:c2:1f:69:ee:ba:34:14:5c:8f:9e:e8:8d:60:
13:12:90:d3:1c:72:13:3b:4a:27:9b:12:20:af:d2:b4:58:25:
24:d9:18:d0:25:8b:ea:4e:2d:28:71:23:2e:50:69:c4:9a:8a:
43:f0:ef:79:ef:b7:5b:2f:a4:39:33:05:30:ca:96:8f:a0:52:
fb:08:f3:7e:ea:55:09:af:0a:12:46:3f:28:29:98:61:10:42:
92:5b:39:5a:9c:a9:e1:e6:07:5b:7e:04:fb:74:40:96:79:dd:
37:4f:50:f9:a8:10:cc:6e:30:85:11:65:2c:5c:17:d4:b0:1d:
b3:7f:84:44:4b:d0:87:46:ba:4a:2f:a0:5c:d9:2c:00:cc:b4:
d1:96:54:b6:b2:85:a0:6c:ce:cc:09:f7:87:5e:40:bb:8f:59:
bf:8b:3b:7e:9f:8f:a2:27:b4:2f:22:c3:d2:9c:a4:f7:c5:29:
9a:3f:90:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:29 2025 by rpki-client on console.sobornost.net