Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/861953-5f65-4465-9046-f4d071f50f1d/1/J_BkHOkhHT0AEp-6tEsjYFw6hs0.roa
File: J_BkHOkhHT0AEp-6tEsjYFw6hs0.roa (raw, json)
Hash identifier: JAS00/5XA38hVRagh+vY9Urvk5gt+2KkIUuPK6DqVFc=
Subject key identifier: 27:F0:64:1C:E9:21:1D:3D:00:12:9F:BA:B4:4B:23:60:5C:3A:86:CD
Certificate issuer: /CN=d5d1cd47a53ef57ebb567bc882ad2986faac5f0d
Certificate serial: 019422FC1861A241B1A9A9BD7D514ECAD979
Authority key identifier: D5:D1:CD:47:A5:3E:F5:7E:BB:56:7B:C8:82:AD:29:86:FA:AC:5F:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1dHNR6U-9X67VnvIgq0phvqsXw0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/861953-5f65-4465-9046-f4d071f50f1d/1/J_BkHOkhHT0AEp-6tEsjYFw6hs0.roa
Signing time: Wed 01 Jan 2025 17:48:54 +0000
ROA not before: Wed 01 Jan 2025 17:48:54 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 201916
IP address blocks: 185.59.216.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:fc:18:61:a2:41:b1:a9:a9:bd:7d:51:4e:ca:d9:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5d1cd47a53ef57ebb567bc882ad2986faac5f0d
Validity
Not Before: Jan 1 17:48:54 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=27f0641ce9211d3d00129fbab44b23605c3a86cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:3c:00:ca:65:30:5d:72:4b:cb:bb:de:92:55:
56:60:ef:ff:2b:a1:93:24:f1:70:99:07:e1:47:b3:
e5:09:91:31:0b:db:fd:5e:65:c6:ea:0a:04:cf:48:
35:a0:b3:f1:aa:96:17:5f:33:ca:5b:c0:5f:46:1f:
08:ed:e1:d9:a3:2d:ce:b6:93:ba:f5:5d:ec:63:d9:
55:ea:63:59:c6:63:fc:fb:c0:82:c1:ad:e2:4a:41:
b1:7f:09:dc:2c:96:8f:e9:13:d7:90:0a:6a:08:57:
99:83:5c:61:17:24:b4:e5:f2:34:d2:d8:1b:29:5c:
00:2f:47:f4:04:e7:59:5c:16:2b:2c:1c:86:f4:4e:
ef:d5:af:5a:e8:42:e0:66:4c:cf:35:9a:eb:dd:83:
83:7a:0d:70:07:0f:5a:c6:c5:41:25:9d:35:76:78:
8b:a4:81:fe:17:84:1b:3b:9a:7d:c0:7f:d2:3a:71:
91:2b:4a:08:3d:a3:40:c1:ae:7b:bb:17:24:79:d7:
be:d1:60:4a:10:08:f3:1f:36:c2:6f:37:4a:87:ba:
5c:49:74:91:19:13:2b:7c:0a:ce:fb:92:e8:47:db:
4f:6a:7d:49:29:6d:55:af:c3:67:77:96:44:a2:21:
ce:02:3f:83:2e:69:10:12:6d:e8:b8:d4:37:ed:12:
63:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:F0:64:1C:E9:21:1D:3D:00:12:9F:BA:B4:4B:23:60:5C:3A:86:CD
X509v3 Authority Key Identifier:
keyid:D5:D1:CD:47:A5:3E:F5:7E:BB:56:7B:C8:82:AD:29:86:FA:AC:5F:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1dHNR6U-9X67VnvIgq0phvqsXw0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/861953-5f65-4465-9046-f4d071f50f1d/1/J_BkHOkhHT0AEp-6tEsjYFw6hs0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/861953-5f65-4465-9046-f4d071f50f1d/1/1dHNR6U-9X67VnvIgq0phvqsXw0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.59.216.0/24
Signature Algorithm: sha256WithRSAEncryption
0b:51:c6:95:e3:e0:33:8b:27:a0:a6:28:ac:10:fd:bf:72:03:
cb:fd:d5:dc:bc:b4:a9:74:7f:0b:a6:05:ce:46:ba:88:3a:5a:
da:d0:3a:e6:d2:07:db:18:6e:d4:ec:36:98:ad:ae:62:0a:a3:
4f:38:0c:76:3d:23:1e:d1:f0:c9:b6:2d:4c:25:c9:63:01:4f:
c6:f3:29:e9:ef:30:30:17:d1:f6:21:77:27:3d:c5:1a:20:bd:
02:ba:2f:b7:26:02:54:2b:72:f2:76:7c:f8:4b:14:8e:4e:84:
7b:e0:ad:bf:78:d2:6f:91:4b:2d:7e:ff:c1:b1:a7:ed:ef:8e:
5f:81:70:6c:cf:a4:e4:d4:b2:ad:1a:1a:a2:f4:7c:d8:05:0b:
97:f5:e8:0f:a8:0a:84:e0:6a:00:8e:96:0b:35:c7:6c:9e:ea:
b9:73:c9:b0:88:6c:8a:8f:af:bc:ac:50:b5:72:64:ef:09:42:
22:21:f7:ca:66:d8:fb:75:87:ea:0a:89:d0:28:48:1d:6b:b7:
a9:70:26:5b:51:5e:f3:52:24:ef:b5:b2:db:ea:2f:7d:4f:ed:
96:a8:1a:e2:af:5e:d7:c9:8c:a9:97:81:50:3e:b2:e9:ee:e1:
b7:fc:04:65:9d:54:f8:dc:7e:74:74:13:fe:f6:ef:b3:6e:e7:
3e:2a:08:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:48 2025 by rpki-client on console.sobornost.net