Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/acfd98-b736-49f4-a660-f908d21718f7/1/LDJYdCgEn8OHisMoTT81wCOejnM.roa
File: LDJYdCgEn8OHisMoTT81wCOejnM.roa (raw, json)
Hash identifier: eRVNCz8Pk6p2554eo6icsKHVU7mmhCMFdPhBfpeYBU8=
Subject key identifier: 2C:32:58:74:28:04:9F:C3:87:8A:C3:28:4D:3F:35:C0:23:9E:8E:73
Certificate issuer: /CN=07bb5bfa64b0d5d18a3061a9869b1ca57172eaba
Certificate serial: 0194282344DFB7020382FEF66A251541C832
Authority key identifier: 07:BB:5B:FA:64:B0:D5:D1:8A:30:61:A9:86:9B:1C:A5:71:72:EA:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B7tb-mSw1dGKMGGphpscpXFy6ro.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/acfd98-b736-49f4-a660-f908d21718f7/1/LDJYdCgEn8OHisMoTT81wCOejnM.roa
Signing time: Thu 02 Jan 2025 17:49:47 +0000
ROA not before: Thu 02 Jan 2025 17:49:47 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 203815
IP address blocks: 185.155.76.0/22 maxlen: 24
2a05:b8c0::/29 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:28:23:44:df:b7:02:03:82:fe:f6:6a:25:15:41:c8:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07bb5bfa64b0d5d18a3061a9869b1ca57172eaba
Validity
Not Before: Jan 2 17:49:47 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=2c32587428049fc3878ac3284d3f35c0239e8e73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:4d:b3:63:50:8e:1e:ab:66:b5:ad:c5:8b:9e:
f2:58:eb:e9:88:72:7c:fe:84:95:02:bc:2a:e0:91:
98:7a:8e:17:aa:17:1d:92:06:ed:58:aa:35:e3:ad:
c2:16:d2:7f:47:6e:0b:f7:3c:62:8b:62:25:96:e4:
f1:75:d3:61:e1:13:1a:0b:49:5a:53:f6:8b:77:a3:
eb:0c:55:d7:9a:19:66:0f:8f:b0:a8:d2:86:86:5a:
6e:5e:d0:9b:4e:8d:16:56:70:70:82:f7:97:d1:de:
40:36:b8:df:51:6c:af:b3:08:46:56:67:19:bc:79:
e5:92:9a:b9:74:7d:08:5e:35:61:87:74:c3:3b:7b:
6b:65:d8:a1:c7:92:73:2a:06:07:f8:db:83:e0:e8:
94:09:2a:aa:80:38:90:68:c2:67:9f:86:68:7a:a3:
af:4d:bb:4c:7c:81:7f:1b:ec:50:76:24:83:bf:50:
a3:c4:16:f2:0c:09:eb:07:81:45:44:79:9f:92:bd:
31:99:59:e1:a2:6f:18:8e:98:9c:90:c7:ff:33:24:
20:e3:9b:65:d8:32:71:73:66:9d:92:cb:4b:81:21:
b8:92:8b:a9:b7:3f:f8:b9:a4:2c:50:c0:25:11:5c:
38:d9:f7:c3:01:49:64:a9:ee:93:8f:be:5e:13:1d:
de:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:32:58:74:28:04:9F:C3:87:8A:C3:28:4D:3F:35:C0:23:9E:8E:73
X509v3 Authority Key Identifier:
keyid:07:BB:5B:FA:64:B0:D5:D1:8A:30:61:A9:86:9B:1C:A5:71:72:EA:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B7tb-mSw1dGKMGGphpscpXFy6ro.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/acfd98-b736-49f4-a660-f908d21718f7/1/LDJYdCgEn8OHisMoTT81wCOejnM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/acfd98-b736-49f4-a660-f908d21718f7/1/B7tb-mSw1dGKMGGphpscpXFy6ro.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.155.76.0/22
IPv6:
2a05:b8c0::/29
Signature Algorithm: sha256WithRSAEncryption
2a:53:86:37:e6:d3:1a:5f:15:65:f5:8f:07:76:51:75:fa:44:
d4:b0:57:5a:2e:c6:73:98:e6:01:33:da:2a:64:fd:ec:25:f1:
f3:e8:de:d5:54:a9:cf:6f:4f:69:ab:51:d4:3e:01:bf:08:16:
d3:06:25:bf:bf:d3:ae:1c:7c:16:e5:67:61:a7:2c:4b:be:5d:
15:93:67:dc:5b:8c:14:0a:1f:de:10:8a:41:87:02:84:2b:d0:
3a:cf:b7:73:ab:5e:7b:86:1a:fe:92:13:75:b1:84:d2:8b:94:
8e:53:68:e9:76:d0:28:cd:b7:7d:52:ea:ac:2d:96:c5:37:94:
22:fe:86:e0:5e:c7:ec:0b:8b:f5:31:78:d2:3a:02:e1:d7:7e:
e0:1e:07:11:f4:6a:7d:18:40:4f:01:57:d0:e9:2d:34:45:38:
19:fa:94:43:e1:66:94:b0:e9:53:7c:73:af:5d:41:4c:1e:37:
02:fb:38:89:4b:57:be:52:a5:4c:b7:af:d8:30:14:1f:d2:be:
24:2e:f2:f2:90:a7:96:9d:64:d6:e0:a6:a2:6b:d1:f8:6d:c7:
de:e1:56:d2:08:2f:4a:5a:a4:e8:c2:28:13:2c:54:97:5e:fd:
1b:22:dd:67:df:4d:fd:72:17:12:d4:7a:27:4e:a8:79:a9:6c:
27:fb:1d:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:30 2025 by rpki-client on console.sobornost.net