Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/34c5b2-b6e3-4b23-a609-16ed3cd0c72a/1/Q5_xDrZBGlwnEe-JRBQNOkYuKX8.roa
File: Q5_xDrZBGlwnEe-JRBQNOkYuKX8.roa (raw, json)
Hash identifier: 2EnqMwQmcwDGxfkhN6xhrYLquapliDnIs7szXzYdX/g=
Subject key identifier: 43:9F:F1:0E:B6:41:1A:5C:27:11:EF:89:44:14:0D:3A:46:2E:29:7F
Certificate issuer: /CN=509bc63e68c90932b4fc28997fc3bf78de3b3743
Certificate serial: 0194266A3C26CAC95A98D8224DFCBDECFEB3
Authority key identifier: 50:9B:C6:3E:68:C9:09:32:B4:FC:28:99:7F:C3:BF:78:DE:3B:37:43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UJvGPmjJCTK0_CiZf8O_eN47N0M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/34c5b2-b6e3-4b23-a609-16ed3cd0c72a/1/Q5_xDrZBGlwnEe-JRBQNOkYuKX8.roa
Signing time: Thu 02 Jan 2025 09:48:03 +0000
ROA not before: Thu 02 Jan 2025 09:48:03 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 34370
IP address blocks: 185.164.76.0/24 maxlen: 24
185.164.77.0/24 maxlen: 24
185.164.79.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:6a:3c:26:ca:c9:5a:98:d8:22:4d:fc:bd:ec:fe:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=509bc63e68c90932b4fc28997fc3bf78de3b3743
Validity
Not Before: Jan 2 09:48:03 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=439ff10eb6411a5c2711ef8944140d3a462e297f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:7c:47:b3:14:65:a3:26:d0:42:51:42:66:97:
b7:87:00:ed:f4:c7:2b:70:e8:55:21:20:fa:33:23:
dc:85:e3:40:78:93:b5:be:25:18:03:a8:5f:87:9f:
18:a4:d5:43:7e:b9:b3:b0:bc:14:7e:5d:b0:c9:61:
cd:a8:cd:ff:39:44:8f:10:3b:11:d4:dc:73:9f:33:
b0:4c:93:99:3d:a2:ce:d0:e9:7c:d8:79:e6:a4:58:
3c:0e:d5:29:f4:29:6a:38:31:ec:b4:92:85:aa:67:
bd:ef:1b:ff:e0:b3:55:73:be:12:6d:14:ac:0f:71:
9d:70:71:19:ef:3e:74:ef:04:0b:38:4a:7c:7d:89:
d9:63:6d:c9:75:50:40:74:a9:67:20:2a:58:11:bd:
8f:d9:b7:27:66:ab:6c:e5:45:0c:b0:6e:6e:14:0e:
90:8f:89:4b:c2:c3:25:bd:38:3e:4b:0f:f8:ea:a6:
a8:00:e6:37:bd:24:b4:6c:4f:1d:88:29:0c:3a:60:
d4:54:f1:2d:91:d3:0e:1a:e9:36:16:9f:f5:d2:b4:
2c:37:64:79:a5:07:10:5d:a8:59:03:be:6f:62:9c:
59:98:1c:39:f4:c3:78:4d:d3:48:49:c9:74:7b:d0:
70:21:c0:57:05:5e:d6:80:7c:d9:a7:b6:ec:25:48:
db:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:9F:F1:0E:B6:41:1A:5C:27:11:EF:89:44:14:0D:3A:46:2E:29:7F
X509v3 Authority Key Identifier:
keyid:50:9B:C6:3E:68:C9:09:32:B4:FC:28:99:7F:C3:BF:78:DE:3B:37:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UJvGPmjJCTK0_CiZf8O_eN47N0M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/34c5b2-b6e3-4b23-a609-16ed3cd0c72a/1/Q5_xDrZBGlwnEe-JRBQNOkYuKX8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/34c5b2-b6e3-4b23-a609-16ed3cd0c72a/1/UJvGPmjJCTK0_CiZf8O_eN47N0M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.164.76.0/23
185.164.79.0/24
Signature Algorithm: sha256WithRSAEncryption
86:5f:1e:8e:de:74:89:9d:f8:97:5f:82:51:5d:a9:7e:d0:73:
0e:82:81:97:c1:80:79:36:bf:86:37:e9:52:f8:09:47:d4:0d:
e6:01:95:74:46:f6:db:87:5b:ee:bb:93:6e:6e:74:e2:98:a4:
c6:64:84:4d:7c:ab:fa:fd:db:25:b7:7d:3a:0d:e9:5b:77:5d:
01:68:4c:b6:57:2c:79:70:dc:f1:a0:17:ca:8f:8e:11:63:d1:
8a:8c:fd:f7:c7:c3:bb:63:ce:d0:eb:d3:34:75:10:c7:1d:23:
a1:4f:ca:53:ec:b2:66:ae:43:97:02:f0:68:9e:22:54:83:78:
5d:94:4b:4c:8c:63:e7:64:f1:82:5e:f1:61:86:6f:c7:a7:c2:
0b:93:c5:90:ac:01:15:6e:21:42:c1:3c:bb:aa:9b:3a:90:cb:
47:d2:b9:05:a3:de:1e:3d:a8:17:b1:15:18:fc:6f:d7:af:08:
f2:20:1c:72:f5:c7:1d:ee:c2:6f:09:ff:68:1b:2e:80:ea:3d:
b0:96:31:0e:6b:22:69:56:f6:08:b7:e9:3c:65:c2:45:46:ba:
38:5b:7a:93:ac:89:e2:fa:87:f8:66:77:25:bd:03:87:a6:a0:
45:9f:d6:92:be:4e:5e:be:09:32:d4:5f:39:e0:fb:64:78:47:
03:83:88:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 8 04:48:32 2025 by rpki-client on console.sobornost.net