Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/af161b-ef51-44bd-8e0a-9eb3c682b009/1/n82Q14Y2YDik1JFdwsQlLlmUXCU.roa
File: n82Q14Y2YDik1JFdwsQlLlmUXCU.roa (raw, json)
Hash identifier: Pqu0KJ3PErrtF3waClxiFcaMqimhO+E9Mo28nI/aapw=
Subject key identifier: 9F:CD:90:D7:86:36:60:38:A4:D4:91:5D:C2:C4:25:2E:59:94:5C:25
Certificate issuer: /CN=287e1c97f71f355867e3fb877f21aa5130b6cf5d
Certificate serial: 0195CD6D576464D569D0059B15C997B7DBD8
Authority key identifier: 28:7E:1C:97:F7:1F:35:58:67:E3:FB:87:7F:21:AA:51:30:B6:CF:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KH4cl_cfNVhn4_uHfyGqUTC2z10.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/af161b-ef51-44bd-8e0a-9eb3c682b009/1/n82Q14Y2YDik1JFdwsQlLlmUXCU.roa
Signing time: Tue 25 Mar 2025 13:10:49 +0000
ROA not before: Tue 25 Mar 2025 13:10:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 205244
IP address blocks: 185.224.100.0/24 maxlen: 24
185.224.101.0/24 maxlen: 24
185.224.102.0/24 maxlen: 24
185.224.103.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:cd:6d:57:64:64:d5:69:d0:05:9b:15:c9:97:b7:db:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=287e1c97f71f355867e3fb877f21aa5130b6cf5d
Validity
Not Before: Mar 25 13:10:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=9fcd90d786366038a4d4915dc2c4252e59945c25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:cc:13:2f:38:db:fe:32:e1:df:38:e5:84:74:
dc:09:15:51:66:77:a0:f6:bb:ae:f3:4a:7d:7b:e1:
59:1f:15:f1:50:36:0e:f0:dd:72:0f:d7:f7:25:69:
23:39:65:b1:a8:b2:74:14:64:d5:94:0d:2b:07:d9:
8b:6d:00:83:b2:ce:8f:17:1c:1d:37:9e:c2:21:74:
29:e7:ef:7f:e5:21:1c:f1:51:f4:6e:d7:ab:58:c5:
76:af:21:44:cb:f3:c2:f9:d7:aa:ee:ae:04:06:ce:
22:65:f2:d9:88:ea:f9:59:ca:1b:7a:f9:7e:ff:14:
a7:1c:bb:0a:97:95:68:05:02:8e:a2:63:33:fb:9c:
aa:52:76:f5:54:ad:1e:e3:c2:cd:aa:1f:99:5c:f8:
0e:48:3b:10:c2:50:66:d7:6e:d4:09:cb:00:5d:f0:
94:eb:65:40:0a:8d:c7:6d:56:7a:0b:23:3c:c2:15:
a1:be:04:fe:02:e3:6f:b5:f0:9d:da:7b:3a:67:e2:
5b:ff:3b:d3:ae:47:54:6b:ef:d4:6c:a7:9a:a7:14:
89:a5:78:b4:1b:39:2f:95:96:f8:8d:10:25:01:66:
ca:ee:56:76:cd:46:e0:d1:a5:aa:8b:ca:40:f0:ca:
80:f2:da:eb:8c:0a:20:fe:3f:ba:68:54:be:95:ca:
9f:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:CD:90:D7:86:36:60:38:A4:D4:91:5D:C2:C4:25:2E:59:94:5C:25
X509v3 Authority Key Identifier:
keyid:28:7E:1C:97:F7:1F:35:58:67:E3:FB:87:7F:21:AA:51:30:B6:CF:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KH4cl_cfNVhn4_uHfyGqUTC2z10.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/af161b-ef51-44bd-8e0a-9eb3c682b009/1/n82Q14Y2YDik1JFdwsQlLlmUXCU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/af161b-ef51-44bd-8e0a-9eb3c682b009/1/KH4cl_cfNVhn4_uHfyGqUTC2z10.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.224.100.0/22
Signature Algorithm: sha256WithRSAEncryption
7e:b9:3d:ca:29:85:87:cb:77:77:d1:36:53:3c:07:13:15:05:
94:19:b5:66:b2:1e:67:0d:dc:cd:3e:88:f8:e8:d6:e0:3f:88:
ef:c2:7d:19:db:e3:c5:09:0e:91:49:d3:eb:66:d9:88:9c:44:
bf:a1:33:1b:d1:7a:15:c4:c4:65:8c:70:ce:45:e5:0a:f8:0b:
3e:f6:8f:bb:72:e9:71:c8:e4:93:0f:b6:88:c4:73:3d:7a:4d:
f0:ed:cb:3e:81:44:4f:ef:13:22:68:2e:15:64:d2:83:38:3f:
aa:2e:b0:eb:3a:88:58:2b:21:d1:35:26:7e:bb:08:e7:74:0a:
4e:92:0d:b1:46:ed:de:d1:51:21:d2:b2:0e:02:9c:ea:7a:48:
8e:7c:15:a7:3f:40:17:9b:bf:2f:39:af:df:8e:b5:3d:9e:0a:
79:cb:77:6a:3d:ce:66:28:68:07:ba:c0:f7:16:5b:e0:1f:7b:
b6:e9:1c:72:7d:11:40:92:eb:42:08:9e:98:24:e3:51:be:24:
5c:23:92:4a:48:0e:60:db:fe:4a:4b:c4:d2:26:ad:05:9a:27:
70:34:29:e9:c2:60:e2:57:a3:1a:0c:1d:4c:1d:56:bc:e9:10:
95:39:29:b1:d7:9c:64:6c:48:b4:28:ac:95:e9:ab:e8:c5:8d:
74:60:62:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:37 2025 by rpki-client on console.sobornost.net